๐บ๐ธ
TPI-Abuse
2026-07-13 20:32:30
(3 days ago)
(mod_security) mod_security (id:210730) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 16:32:25.588504 2026] [security2:error] [pid 31664:tid 31664] [client 172.70.50.160:10777] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.surrenderhouse.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.surrenderhouse.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "alVLWQIgSt2u1ZsAmcGySAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-30 05:04:38
(2 weeks ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 02:19:32
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 22:19:28.118757 2026] [security2:error] [pid 13449:tid 13449] [client 172.70.50.160:9420] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ticmatopografiaeingenieria.com"] [uri "/.env.development.local"] [unique_id "ajyQMN_4rPBWVx-DuLSHbQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 08:37:22
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 04:37:12.646458 2026] [security2:error] [pid 7697:tid 7697] [client 172.70.50.160:11592] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dancingbearprinting.com"] [uri "/.git/HEAD"] [unique_id "ajZROGCX1MPOGPYhl1K5fAAAAAw"], referer: https://www.google.com/search?q=dancingbearprinting.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-10 09:05:33
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
Anonymous
2026-05-29 01:50:31
(1 month ago)
Aggressive web scan
Web App Attack
Anonymous
2026-05-27 19:34:58
(1 month ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-24 12:09:45
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 08:09:39.942600 2026] [security2:error] [pid 25343:tid 25343] [client 172.70.50.160:13245] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.panesarlaw.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.panesarlaw.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "ahLqg0cMoIgYE-aYk_iVswAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-12 05:19:49
(2 months ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 07:17:22
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 03:17:08.453833 2026] [security2:error] [pid 103478:tid 103478] [client 172.70.50.160:11092] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.arabou.co"] [uri "/.env.save"] [unique_id "adYA9I6G6qcAlQM6kERVjgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 02:29:08
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 22:28:59.005067 2026] [security2:error] [pid 1797443:tid 1797443] [client 172.70.50.160:11652] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.7bsuperfruit.com"] [uri "/.env.example"] [unique_id "adW9a-kO7vwhdR7Gz7tOWQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 00:04:38
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 20:04:30.382361 2026] [security2:error] [pid 1553649:tid 1553649] [client 172.70.50.160:10201] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.zztp.ws"] [uri "/home/.env"] [unique_id "adWbjlyPgQFN4rMMHUyNfQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 12:33:36
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 08:33:30.920931 2026] [security2:error] [pid 1129786:tid 1129786] [client 172.70.50.160:13334] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sellingcarshandbook.org"] [uri "/app/.env"] [unique_id "adT5miPD1W3gkhqt1-ZWdAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 20:06:37
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 16:06:33.513385 2026] [security2:error] [pid 695143:tid 695143] [client 172.70.50.160:12608] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.sugarsdowntown.com"] [uri "/.env.backup"] [unique_id "adQSSa85wpP8ywV87TBLQwAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 18:42:43
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.50.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 14:42:37.322963 2026] [security2:error] [pid 27690:tid 27690] [client 172.70.50.160:11667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nbcnewsradio.indie100.com"] [uri "/.env"] [unique_id "adKtHRYgTNEXuzNRfFRbgAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack