π¦π±
router.al
2026-06-30 20:10:11
(16 hours ago)
06/30/2026-20:10:10.906884 172.70.80.111 Protocol: 6 ET SCAN LeakIX Inbound User-Agent
Hacking
Anonymous
2026-06-29 14:40:10
(1 day ago)
Aggressive web scan
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-08 06:17:20
(3 weeks ago)
(mod_security) mod_security (id:210730) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 02:17:16.075361 2026] [security2:error] [pid 14600:tid 14625] [client 172.70.80.111:13851] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.illianapartyrentals.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.illianapartyrentals.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "aiZebITh3_i-q_i0x0EsAQAAAVc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
www.mammazone.it
2026-05-21 18:03:18
(1 month ago)
[Thu May 21 20:03:18.303596 2026] [proxy_fcgi:error] [pid 773141] [client 172.70.80.111:11039] AH010 ...
show more
[Thu May 21 20:03:18.303596 2026] [proxy_fcgi:error] [pid 773141] [client 172.70.80.111:11039] AH01071: Got error 'Primary script unknown'
[Thu May 21 20:03:18.563092 2026] [proxy_fcgi:error] [pid 773141] [client 172.70.80.111:11039] AH01071: Got error 'Primary script unknown'
...
show less
Hacking
Anonymous
2026-04-19 07:44:48
(2 months ago)
Aggressive web scan
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-09 04:03:50
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 00:03:43.138388 2026] [security2:error] [pid 1579:tid 1579] [client 172.70.80.111:9393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.edfisherco.com"] [uri "/.env.production"] [unique_id "adclH2V5QUtMDTdtDRR1lAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-08 09:06:49
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 05:06:37.385178 2026] [security2:error] [pid 2351856:tid 2351856] [client 172.70.80.111:10449] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sr.handyrehab.com"] [uri "/.env.bak"] [unique_id "adYanaJ3d_BUrAud2zcdIAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-08 06:05:41
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 02:05:35.387828 2026] [security2:error] [pid 1949487:tid 1949487] [client 172.70.80.111:12608] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.lonescouting.us"] [uri "/.git/logs/HEAD"] [unique_id "adXwL_e9AvCPYMQ6eX3TCQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-07 00:20:25
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 20:20:19.559893 2026] [security2:error] [pid 519375:tid 519375] [client 172.70.80.111:14254] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "iammeapparel.liddlesports.com"] [uri "/.env1"] [unique_id "adRNw42uZwqxbONfPDeZxQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 15:14:54
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 11:14:45.230576 2026] [security2:error] [pid 224382:tid 224382] [client 172.70.80.111:11634] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.stkm.com"] [uri "/.env.test"] [unique_id "adPN5coF-zveyGH1DtKUZwAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 10:13:06
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 06:13:02.599736 2026] [security2:error] [pid 5682:tid 5682] [client 172.70.80.111:9246] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.makaihe.com"] [uri "/.env.json"] [unique_id "adOHLgnfvQsAGC0kewLO6AAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-06 00:47:10
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 20:47:01.886227 2026] [security2:error] [pid 10889:tid 10889] [client 172.70.80.111:12215] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.d-sinema.com"] [uri "/.env.dev"] [unique_id "adMChTHCFMuPZxfhrihZ9QAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-05 19:52:35
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 15:52:27.748114 2026] [security2:error] [pid 27063:tid 27063] [client 172.70.80.111:9286] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.collectorcarconsultants.com"] [uri "/.env.dev.local"] [unique_id "adK9e7vMhuxXds1m2AcKWQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-05 16:30:50
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 12:30:45.873283 2026] [security2:error] [pid 5777:tid 5777] [client 172.70.80.111:13199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cynosurehomeservices.pluralmatrix.net"] [uri "/.env.staging"] [unique_id "adKONavU7oGqp9NDrc9ufQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-05 15:45:44
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 11:45:35.470869 2026] [security2:error] [pid 15735:tid 15735] [client 172.70.80.111:12980] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.fastquizmaker.com"] [uri "/.env.staging"] [unique_id "adKDn0hGO0JY5Y8j_3tyHAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack