๐ฉ๐ช
Blexyel
2026-06-29 01:04:10
(1 week ago)
172.70.38.248 - - [29/Jun/2026:03:04:10 +0200] "GET /.git/info/exclude HTTP/1.1" 200 240 "-" "Mozill ...
show more
172.70.38.248 - - [29/Jun/2026:03:04:10 +0200] "GET /.git/info/exclude HTTP/1.1" 200 240 "-" "Mozilla/5.0 (compatible; ClaudeBot/1.0; [email protected] )" "136.243.2.38"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-14 03:45:19
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 23:45:16.319824 2026] [security2:error] [pid 11552:tid 11552] [client 172.70.38.248:13795] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.title30.com"] [uri "/.env"] [unique_id "agVFTJMhKfJ5rx5e4Qk4JwAAAAk"], referer: https://www.google.com/search?q=cpcalendars.title30.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-09 18:36:10
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 14:36:05.321669 2026] [security2:error] [pid 11323:tid 11323] [client 172.70.38.248:9840] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kimpitchellandassociatesinc.com"] [uri "/.git/config"] [unique_id "af9-lVbEKoAht10H228bcwAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 10:59:21
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 06:59:13.743128 2026] [security2:error] [pid 22098:tid 22115] [client 172.70.38.248:11775] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.filterchoice.com"] [uri "/.env.save"] [unique_id "adJAgWMwmYmpD8SshuuHdwAAAM8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 08:46:32
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 04:46:26.583282 2026] [security2:error] [pid 17400:tid 17400] [client 172.70.38.248:9516] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.healthpointphysicians.co.helpkccare.org"] [uri "/.env.bak"] [unique_id "adIhYhuQMXvlIzAgbX60aAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 17:30:20
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 13:30:11.848596 2026] [security2:error] [pid 10985:tid 10985] [client 172.70.38.248:11596] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.lordhari.com"] [uri "/.env.tmp"] [unique_id "adFKozWxy-j3BDm8L5H4AgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 15:00:48
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 11:00:40.250490 2026] [security2:error] [pid 20839:tid 20839] [client 172.70.38.248:12429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.1cdn.com"] [uri "/core/.env"] [unique_id "adEnmKZZ4Ik02jMGe5DrogAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 14:27:29
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 10:27:23.500596 2026] [security2:error] [pid 29058:tid 29058] [client 172.70.38.248:10979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.register-yacht-gibraltar.com"] [uri "/.env"] [unique_id "adEfy0mcnf0TnDECUWkA0wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 11:59:39
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 07:59:32.776191 2026] [security2:error] [pid 17603:tid 17603] [client 172.70.38.248:10437] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.c470techarchive.net"] [uri "/.env.json"] [unique_id "adD9JJDXhyzkYoRiFLHxGQAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 09:52:22
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 05:52:14.777347 2026] [security2:error] [pid 13584:tid 13584] [client 172.70.38.248:12699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.sundolls.org"] [uri "/.env.tmp"] [unique_id "adDfTr3oYWjnliCM61nB-QAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 03:20:40
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 23:20:32.326201 2026] [security2:error] [pid 25383:tid 25383] [client 172.70.38.248:13916] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.alessiaalessandra.com"] [uri "/.env.example"] [unique_id "adCDgA1R-RUdae4sRNn07AAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 19:35:57
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 15:35:51.349184 2026] [security2:error] [pid 27853:tid 27853] [client 172.70.38.248:9354] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.bizzybeejunkremoval.com"] [uri "/.git/config"] [unique_id "adAWl5lQfpgJGILNe0bk0gAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 18:48:17
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 14:48:09.753830 2026] [security2:error] [pid 15477:tid 15477] [client 172.70.38.248:12169] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.lpass.net"] [uri "/.env.save"] [unique_id "adALaenKi0TtF0ZfkMeCKAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 16:05:42
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 12:05:36.619761 2026] [security2:error] [pid 21827:tid 21827] [client 172.70.38.248:13802] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.batesstrategygroup.com"] [uri "/.env.production"] [unique_id "ac_lUFkQ6BCHkC4No4dkzAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 10:50:46
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.38.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 06:50:41.476255 2026] [security2:error] [pid 8662:tid 8662] [client 172.70.38.248:12331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.comitedelafamille.org"] [uri "/.env.dev"] [unique_id "ac-bgXOvIccCLyYo6ehBRgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack