๐บ๐ธ
chrisj
2026-07-05 17:14:18
(3 days ago)
[Sun Jul 05 17:14:18.248111 2026] [proxy_fcgi:error] [pid 515552:tid 515602] [remote 172.70.80.208:1 ...
show more
[Sun Jul 05 17:14:18.248111 2026] [proxy_fcgi:error] [pid 515552:tid 515602] [remote 172.70.80.208:14292] AH01071: Got error 'Primary script unknown'
[Sun Jul 05 17:14:18.324920 2026] [proxy_fcgi:error] [pid 515552:tid 515603] [remote 172.70.80.208:14292] AH01071: Got error 'Primary script unknown'
[Sun Jul 05 17:14:18.403112 2026] [proxy_fcgi:error] [pid 515552:tid 515604] [remote 172.70.80.208:14292] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
๐บ๐ธ
chrisj
2026-07-01 22:27:10
(1 week ago)
[Wed Jul 01 22:27:08.943833 2026] [proxy_fcgi:error] [pid 444698:tid 444709] [remote 172.70.80.208:1 ...
show more
[Wed Jul 01 22:27:08.943833 2026] [proxy_fcgi:error] [pid 444698:tid 444709] [remote 172.70.80.208:10279] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 22:27:09.177837 2026] [proxy_fcgi:error] [pid 444698:tid 444714] [remote 172.70.80.208:10279] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 22:27:10.315344 2026] [proxy_fcgi:error] [pid 444698:tid 444708] [remote 172.70.80.208:10279] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
๐บ๐ธ
chrisj
2026-07-01 11:37:36
(1 week ago)
[Wed Jul 01 11:37:35.820100 2026] [proxy_fcgi:error] [pid 444698:tid 444722] [remote 172.70.80.208:1 ...
show more
[Wed Jul 01 11:37:35.820100 2026] [proxy_fcgi:error] [pid 444698:tid 444722] [remote 172.70.80.208:11410] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 11:37:35.989139 2026] [proxy_fcgi:error] [pid 444698:tid 444715] [remote 172.70.80.208:11410] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 11:37:36.112818 2026] [proxy_fcgi:error] [pid 444698:tid 444720] [remote 172.70.80.208:11410] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
๐ฆ๐บ
oncord
2026-06-26 23:24:19
(1 week ago)
Form spam
Web Spam
๐บ๐ธ
TPI-Abuse
2026-06-23 13:17:51
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 09:17:48.572527 2026] [security2:error] [pid 24681:tid 24681] [client 172.70.80.208:9264] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.styxwetworld.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.styxwetworld.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "ajqHfOj0hwHE6XXpGrfaGwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-11 22:05:24
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-10 21:59:02
(4 weeks ago)
Auto-ban: >3000 req/min op 2026-06-10
Web App Attack
SSH
Hacking
๐บ๐ธ
mnsf
2026-06-10 11:05:41
(4 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-09 00:05:39
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 20:05:32.443255 2026] [security2:error] [pid 2707522:tid 2707522] [client 172.70.80.208:14053] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.paavoharkonen.com"] [uri "/.git/refs/heads/main"] [unique_id "adbtTBIsgra_-fYON3Fa8AAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 13:03:33
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 09:03:24.316712 2026] [security2:error] [pid 3214600:tid 3214600] [client 172.70.80.208:11354] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.puregoldmorgans.com"] [uri "/srv/.env"] [unique_id "adZSHCP-fnJhLHmLsxSCIQAAACg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 11:47:21
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 07:47:14.016087 2026] [security2:error] [pid 2599990:tid 2599990] [client 172.70.80.208:10037] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.bywaterpress.com"] [uri "/.env.bak"] [unique_id "adZAQkwwm9E0btFgocUYvwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 10:03:02
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 06:02:55.640266 2026] [security2:error] [pid 1883844:tid 1883844] [client 172.70.80.208:11933] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.pizzadata.com"] [uri "/.env.staging"] [unique_id "adYnz424qiHTMMlJDeU4rAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 22:19:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 18:19:41.325095 2026] [security2:error] [pid 1529378:tid 1529378] [client 172.70.80.208:11642] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ji-technovation.com"] [uri "/.env.test"] [unique_id "adWC_ca-vNI8qMw3cIZ10wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 01:53:18
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 21:53:14.793858 2026] [security2:error] [pid 940631:tid 940631] [client 172.70.80.208:13754] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.jonesypop.com"] [uri "/.env_backup"] [unique_id "adRjiphouvcJ8_qVSb7eUQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 23:28:39
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 19:28:35.375207 2026] [security2:error] [pid 543202:tid 543202] [client 172.70.80.208:12633] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jennyfiore.com"] [uri "/public/.env"] [unique_id "adRBo3u2DZD2ZYxdI1qkcgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack