π©πͺ
brechtr
2026-07-14 03:05:03
(1 day ago)
[Press84-BanHammer] bad username β Sourced from: press84.com β Request: POST /wp-login.php
Brute-Force
Anonymous
2026-07-05 06:24:49
(1 week ago)
Aggressive web scan
Web App Attack
Anonymous
2026-06-18 11:49:30
(3 weeks ago)
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /ffile.php HTTP/1.1" 403 12583 "-" "-"
172.70.50 ...
show more
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /ffile.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /wp-conflg.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /jp.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /t.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /s.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /ct.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /wp-conflg.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /il.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /tphp.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /shell.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.132 - - [18/Jun/2026:13:49:28 +0200] "GET /x_3.php HTTP/1.1" 403 12583 "-" "-"
172.70.50.1
...
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-13 16:08:44
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 12:08:38.504086 2026] [security2:error] [pid 7831:tid 7831] [client 172.70.50.132:9685] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.tannersvilleworks.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.tannersvilleworks.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "ai2Aho31nstCss-hvpkXfAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
mnsf
2026-06-11 02:05:23
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
πΊπΈ
mnsf
2026-06-10 22:05:21
(1 month ago)
Abuse Detected (2)
Brute-Force
Web App Attack
Anonymous
2026-05-17 05:09:37
(1 month ago)
Aggressive web scan
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-09 00:32:10
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 20:32:04.556403 2026] [security2:error] [pid 3353494:tid 3353494] [client 172.70.50.132:9814] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "corporatepedals.vanemby.com"] [uri "/.git/refs/heads/main"] [unique_id "adbzhKO2SWh_3t92Gz2u4QAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-08 14:51:20
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 10:51:05.712155 2026] [security2:error] [pid 2755451:tid 2755451] [client 172.70.50.132:13874] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.shafoo.com.sentientresearch.com"] [uri "/.env.development"] [unique_id "adZrWVNlKcAykOho8hOEnQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 20:08:21
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 16:08:15.458296 2026] [security2:error] [pid 375049:tid 375049] [client 172.70.50.132:10869] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.aroilcontrolsystem.com"] [uri "/config/.env.local"] [unique_id "adQSr2UXY9Xj3mXwXQlrDwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 19:12:32
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 15:12:26.786907 2026] [security2:error] [pid 460644:tid 460644] [client 172.70.50.132:11008] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kayelynn.com"] [uri "/server/.env"] [unique_id "adQFmvlohlhboKgXF8nFMAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 17:58:24
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 13:58:16.986402 2026] [security2:error] [pid 381183:tid 381183] [client 172.70.50.132:10442] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.nchsfootballgolfouting.com"] [uri "/var/www/html/.env"] [unique_id "adP0OK0-kzA4MBA4htS8YwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 13:13:59
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 09:13:54.123096 2026] [security2:error] [pid 3047:tid 3080] [client 172.70.50.132:13901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.love-spells-magic.com"] [uri "/config/.env.local"] [unique_id "adOxkpea40y5qwYuN5blhgAAAIE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 07:40:18
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 03:40:13.230847 2026] [security2:error] [pid 2318:tid 2318] [client 172.70.50.132:13203] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.novoventa.scala-global.com"] [uri "/.env_settings"] [unique_id "adNjXQUq395QG3Qmr1O24wAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 06:58:22
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 02:58:13.475918 2026] [security2:error] [pid 18849:tid 18849] [client 172.70.50.132:13002] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.pawzy.app"] [uri "/.env.json"] [unique_id "adNZhZF7VFUOf-YgIpVAJwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack