๐ฆ๐บ
oncord
2026-06-24 00:19:32
(3 weeks ago)
Form spam
Web Spam
๐บ๐ธ
mw
2026-04-06 04:55:03
(3 months ago)
GET /.env_backup HTTP/1.1
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 21:32:49
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 17:32:42.734905 2026] [security2:error] [pid 12945:tid 12945] [client 172.70.230.138:10275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kmashburn.com"] [uri "/.env.development"] [unique_id "adAx-imyWeFBG3BSGdO6BQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-02 01:40:27
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 21:40:21.477953 2026] [security2:error] [pid 8217:tid 8217] [client 172.70.230.138:10758] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.bikinipageone.com"] [uri "/.env.json"] [unique_id "ac3JBUn-guekiDMOV7Hs8QAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-27 02:11:36
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 22:11:28.308682 2026] [security2:error] [pid 1029568:tid 1029568] [client 172.70.230.138:13998] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mark-et-ing-1llc.com.nldi.us"] [uri "/.env"] [unique_id "acXnUDDV_BpogM0pDjOfUAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-26 14:32:27
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 10:32:19.100594 2026] [security2:error] [pid 11807:tid 11807] [client 172.70.230.138:10839] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.scr-publications.com"] [uri "/.env2"] [unique_id "acVDcxtEjGLvTtnO0It9oAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-26 11:08:16
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 07:08:10.734132 2026] [security2:error] [pid 8899:tid 9022] [client 172.70.230.138:12511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ceol.com"] [uri "/.env.prod"] [unique_id "acUTmkj-wVmbRhIXZxEjsAAAAFY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-26 08:03:16
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 04:03:10.406957 2026] [security2:error] [pid 26846:tid 26846] [client 172.70.230.138:13987] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.my1611.com"] [uri "/.env.save"] [unique_id "acToPvdMGfMScKxUYJqcvQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-26 00:24:52
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 20:24:46.326839 2026] [security2:error] [pid 31621:tid 31621] [client 172.70.230.138:9465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.koolcoastalnights.com"] [uri "/core/.env"] [unique_id "acR8zon-rGobG2R6NHQZIAAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-25 23:18:04
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 19:17:58.874453 2026] [security2:error] [pid 25892:tid 25892] [client 172.70.230.138:10272] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.nihlabs.org"] [uri "/.env.test"] [unique_id "acRtJlj59JVckj-5K4DfCgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-25 22:14:45
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 18:14:33.516329 2026] [security2:error] [pid 11675:tid 11675] [client 172.70.230.138:11619] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.thebrotherhoodlounge.com"] [uri "/.env.staging"] [unique_id "acReSSvCHdjlzijFY2WG1AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-25 14:34:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 10:34:43.678273 2026] [security2:error] [pid 29733:tid 29733] [client 172.70.230.138:14249] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.peaksalesnw.com"] [uri "/.env.production.local"] [unique_id "acPygwybJRZNWsTcCsh7EQAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-25 04:34:45
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 00:34:34.102739 2026] [security2:error] [pid 8434:tid 8434] [client 172.70.230.138:14087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fydelityco.com.fydelity.net"] [uri "/core/.env"] [unique_id "acNl2k9GL4qQTtlpenxwLgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-25 02:33:15
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 22:33:07.516754 2026] [security2:error] [pid 1293:tid 1293] [client 172.70.230.138:12236] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cleanbuildingservices.com"] [uri "/.env.development"] [unique_id "acNJY8CghRZEZeC9--RyOQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-24 17:48:18
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.230.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 13:48:02.931490 2026] [security2:error] [pid 32113:tid 32113] [client 172.70.230.138:13924] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.joelsarakula.com"] [uri "/.env.test"] [unique_id "acLOUsITSIX_S62xnmBbhgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack