๐บ๐ธ
TPI-Abuse
2026-07-01 13:31:45
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 09:31:41.270570 2026] [security2:error] [pid 30973:tid 30973] [client 172.70.80.191:12593] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.cooteconsultinggroup.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cooteconsultinggroup.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "akUWvQdHqsz4kCh5OjStvAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
octageeks.com
2026-05-13 04:07:26
(1 month ago)
Wordpress malicious attack:[octawpauthor]
Web App Attack
Anonymous
2026-04-12 03:10:10
(2 months ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 20:17:03
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 16:16:56.091214 2026] [security2:error] [pid 2616596:tid 2616596] [client 172.70.80.191:9372] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.geriking.com"] [uri "/.env.dev"] [unique_id "ada3uNHMS0KLp5SAQgzF9QAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 15:48:04
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 11:47:59.995914 2026] [security2:error] [pid 3519858:tid 3519858] [client 172.70.80.191:13163] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.delicatessefoods.com"] [uri "/config/.env.local"] [unique_id "adZ4r_fHwXtB_FNsJvqRKQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 12:26:29
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 08:26:22.750008 2026] [security2:error] [pid 1631449:tid 1631449] [client 172.70.80.191:11354] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.starktigers75.com"] [uri "/.git/refs/heads/main"] [unique_id "adT37jds0mZ6eB75bNpI_gAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 12:10:40
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 08:10:37.473385 2026] [security2:error] [pid 1044529:tid 1044529] [client 172.70.80.191:12188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "804websolutions.com"] [uri "/.env.dev"] [unique_id "adT0PV_kpzlOQ52lLqWj1gAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 11:06:38
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 07:06:33.931955 2026] [security2:error] [pid 1030521:tid 1030539] [client 172.70.80.191:13528] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.woodamy.com"] [uri "/public/.env"] [unique_id "adTlOWwDxZCN0xCq71PZCgAAANA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 08:19:42
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 04:19:35.979162 2026] [security2:error] [pid 962845:tid 962845] [client 172.70.80.191:10157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.susanleeward.com"] [uri "/.env.staging"] [unique_id "adS-F1j8B4_UiU--VYgluAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 12:54:29
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 08:54:23.955531 2026] [security2:error] [pid 256381:tid 256381] [client 172.70.80.191:12240] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.solucionesmercadeodigital.com"] [uri "/.env.test"] [unique_id "adOs_7_Q7akeTXklFv9EgQAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 18:45:36
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 14:45:22.839305 2026] [security2:error] [pid 26633:tid 26633] [client 172.70.80.191:12141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "positivecreatespositive.zavijava.net"] [uri "/.env2"] [unique_id "adKtwiOO_77p4yF1TdQlaAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 17:05:04
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 13:04:50.471960 2026] [security2:error] [pid 2796:tid 2796] [client 172.70.80.191:13839] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.platinumkissband.com"] [uri "/.env.production"] [unique_id "adKWMr_m8I4YZF3x2WwbQgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 04:59:15
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 00:59:08.424781 2026] [security2:error] [pid 20443:tid 20443] [client 172.70.80.191:9919] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roughexports.velvetculture.com"] [uri "/.env.example"] [unique_id "adHsHLy6XKBLiUDXuKc6agAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 00:47:00
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 20:46:52.883232 2026] [security2:error] [pid 7399:tid 7399] [client 172.70.80.191:10560] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stmaarten.fishing"] [uri "/.env.local"] [unique_id "adGw_P-hhh0ZwjGGGTn2KQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 22:31:34
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 18:31:30.612519 2026] [security2:error] [pid 2121:tid 2121] [client 172.70.80.191:13717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.robertminuzzo.com"] [uri "/.git/logs/HEAD"] [unique_id "adGRQlwxv5_KMSv95EYCSAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack