๐ฉ๐ช
abdubhai
2026-07-06 06:01:54
(3 hours ago)
172.70.174.111 - - [06/Jul/2026:
...
Brute-Force
๐ฉ๐ช
abdubhai
2026-05-18 12:49:50
(1 month ago)
172.70.174.111 - - [18/May/2026:
...
Brute-Force
๐ซ๐ฎ
as211431.net
2026-05-15 03:06:56
(1 month ago)
Triggered Cloudflare WAF (linkMaze) from US.
Action taken: LINK_MAZE_INJECTED
Protocol: HTTP/1.1 (GE ...
show more
Triggered Cloudflare WAF (linkMaze) from US.
Action taken: LINK_MAZE_INJECTED
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-04-03 14:02:17
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 10:02:06.488834 2026] [security2:error] [pid 1098:tid 1098] [client 172.70.174.111:13485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.gasoilliquidsdaily.com"] [uri "/.env.prod"] [unique_id "ac_IXpoQgfFfau6lAynKlAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 13:19:51
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 09:19:45.874551 2026] [security2:error] [pid 5358:tid 5358] [client 172.70.174.111:12920] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.rockhillcounselors.com"] [uri "/private/.env"] [unique_id "ac--cfSNfxUBXWKxaUg2EwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 03:01:23
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 23:01:15.247994 2026] [security2:error] [pid 25290:tid 25290] [client 172.70.174.111:12316] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.gardnercastle.com"] [uri "/.env.prod"] [unique_id "ac8teznFw7nntqQ0jW9magAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-02 23:21:13
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 19:21:05.505197 2026] [security2:error] [pid 30387:tid 30387] [client 172.70.174.111:11886] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.pbeyer.org"] [uri "/.env.backup"] [unique_id "ac754SCdELTr05IAZJLFswAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-02 15:13:40
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 11:13:33.663798 2026] [security2:error] [pid 23602:tid 23602] [client 172.70.174.111:11725] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.aarentes.com"] [uri "/.env.staging"] [unique_id "ac6HneKchqfrzCpZ5HoTzgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-02 12:15:13
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 08:15:06.485480 2026] [security2:error] [pid 1828:tid 1828] [client 172.70.174.111:12935] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.worldofeconomics.com"] [uri "/backend/.env"] [unique_id "ac5dytv-r7TkuaZYn3tAnwAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-02 11:52:48
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 07:52:36.034569 2026] [security2:error] [pid 3519:tid 3633] [client 172.70.174.111:9758] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ethicmark.org"] [uri "/.env.development"] [unique_id "ac5YhMnOqMfVxqcG8mVBhwAAAIA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-01 12:52:47
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 08:52:40.004711 2026] [security2:error] [pid 9446:tid 9446] [client 172.70.174.111:13408] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.bigbikers.net"] [uri "/.env.local"] [unique_id "ac0VGCl_3wZMbWJz-MHvRAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-01 09:46:10
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 05:45:56.353828 2026] [security2:error] [pid 26795:tid 26795] [client 172.70.174.111:10282] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.pleaseaddbacon.com"] [uri "/.env.prod"] [unique_id "aczpVHZro3s7PoV-eOg2hgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-01 04:28:42
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 00:28:37.355492 2026] [security2:error] [pid 20153:tid 20153] [client 172.70.174.111:11359] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.computersraleigh.com"] [uri "/.env.tmp"] [unique_id "acye9QtAts_4kBAz-AyTGQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-01 03:34:35
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 23:34:32.093436 2026] [security2:error] [pid 26841:tid 26841] [client 172.70.174.111:13991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.landrdurables.com"] [uri "/.env.php"] [unique_id "acySSKpV36J_nqTY04CnJAAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-31 16:34:07
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 12:34:02.917556 2026] [security2:error] [pid 15818:tid 15818] [client 172.70.174.111:9761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.sircain.net"] [uri "/.env.production"] [unique_id "acv3englGbZoVlZLJKH_vwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack