πΊπΈ
TPI-Abuse
2026-07-18 21:42:48
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 17:42:42.320527 2026] [security2:error] [pid 7619:tid 7619] [client 172.111.80.35:2708] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.paragonprintingcenter.com"] [uri "/.git/config"] [unique_id "alvzUsn36IELQFIfCS_RSwAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-18 20:51:13
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 16:51:08.722596 2026] [security2:error] [pid 963467:tid 963467] [client 172.111.80.35:20700] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.qwik-wash.com"] [uri "/.git/HEAD"] [unique_id "alvnPBvZisoVGzt13kLmyQAAACo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-17 07:30:54
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 03:30:46.149900 2026] [security2:error] [pid 25887:tid 25887] [client 172.111.80.35:17218] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.americanureport.com"] [uri "/.git/config"] [unique_id "alnaJruDphGzKeK3Mftn8AAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 13:00:19
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 09:00:13.212759 2026] [security2:error] [pid 24357:tid 24357] [client 172.111.80.35:58502] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.iclog.us"] [uri "/.git/config"] [unique_id "aljV3f8uuvIqlTQRHwPTawAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 05:07:12
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 01:07:04.493949 2026] [security2:error] [pid 23498:tid 23498] [client 172.111.80.35:43252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.mrcd.org"] [uri "/.git/config"] [unique_id "alhm-JpG95tET2067yn2lQAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 03:53:37
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 23:53:30.595183 2026] [security2:error] [pid 31589:tid 31589] [client 172.111.80.35:10258] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "commonbridges.org"] [uri "/.git/HEAD"] [unique_id "alhVuqPLO18iKFDo8StRvAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-16 03:27:06
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 23:26:59.854234 2026] [security2:error] [pid 21861:tid 21893] [client 172.111.80.35:9200] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "certifiedfinancialanalyst.org"] [uri "/.git/config"] [unique_id "alhPg-3qYTTg7o7-9jlSpQAAAE4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-15 03:15:37
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 23:15:28.925803 2026] [security2:error] [pid 9443:tid 9443] [client 172.111.80.35:22160] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.fxztrader.com"] [uri "/.git/config"] [unique_id "alb7UO28F6FWoRe6VL59OgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Ba-Yu
2026-07-10 08:09:47
(1 week ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-09 09:06:22
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 05:06:16.358275 2026] [security2:error] [pid 16142:tid 16142] [client 172.111.80.35:21290] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cygnuslabs.com"] [uri "/.git/config"] [unique_id "ak9kiM1Zz_qAoHIBjc36AwAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-06 21:46:45
(1 week ago)
Try to connect to Port_Scan_443_stealth
Port Scan
π©πͺ
big-cloud.nl
2026-07-02 23:57:15
(2 weeks ago)
Try to access /.git/HEAD
Web App Attack
πΊπΈ
TPI-Abuse
2026-03-23 19:24:25
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.111.80.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 23 15:24:18.320740 2026] [security2:error] [pid 21284:tid 21284] [client 172.111.80.35:38100] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/storage/.env.production"] [unique_id "acGTYrLk03Z_8x5C3arxuAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack