๐บ๐ธ
chrisj
2026-07-01 11:37:30
(19 hours ago)
[Wed Jul 01 11:37:30.148071 2026] [proxy_fcgi:error] [pid 444698:tid 444709] [remote 172.70.80.209:1 ...
show more
[Wed Jul 01 11:37:30.148071 2026] [proxy_fcgi:error] [pid 444698:tid 444709] [remote 172.70.80.209:13085] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 11:37:30.493051 2026] [proxy_fcgi:error] [pid 444698:tid 444723] [remote 172.70.80.209:13085] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 11:37:30.609913 2026] [proxy_fcgi:error] [pid 444698:tid 444717] [remote 172.70.80.209:13085] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
Anonymous
2026-07-01 04:21:48
(1 day ago)
Web App Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 03:57:53
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 23:57:45.646489 2026] [security2:error] [pid 24140:tid 24224] [client 172.70.80.209:14228] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.olivelawn.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.olivelawn.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "ajtVuUXVYAqqqGfufvDRUQAAAhM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 08:28:14
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 04:28:06.200737 2026] [security2:error] [pid 12898:tid 12898] [client 172.70.80.209:13776] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.hills-tax.com|F|2"] [data "[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.hills-tax.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "ajT9lsK22GJA947KEwspHQAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-18 09:24:49
(1 week ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
mnsf
2026-06-09 12:05:48
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ฆ๐บ
oncord
2026-05-26 05:54:31
(1 month ago)
Form spam
Web Spam
๐ฆ๐บ
oncord
2026-05-21 11:17:04
(1 month ago)
Form spam
Web Spam
Anonymous
2026-05-07 00:34:37
(1 month ago)
Aggressive web scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 23:59:48
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 19:59:41.742184 2026] [security2:error] [pid 2701391:tid 2701391] [client 172.70.80.209:12610] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.paavoharkonen.com"] [uri "/.env.dev"] [unique_id "adbr7UGHfyHHx8s9MFlXLgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 21:24:57
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 17:24:49.158464 2026] [security2:error] [pid 849179:tid 849179] [client 172.70.80.209:11111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.sierra-broadcasting.com"] [uri "/.env.backup"] [unique_id "adbHoQVaFdF1yjbm0mTtLwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 10:03:02
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 06:02:55.498741 2026] [security2:error] [pid 1883056:tid 1883056] [client 172.70.80.209:13876] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.pizzadata.com"] [uri "/.env.production"] [unique_id "adYnz5iYzDv_5dFPuDPeewAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 00:47:29
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 20:47:21.550683 2026] [security2:error] [pid 2127662:tid 2127662] [client 172.70.80.209:12175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "custominktees.us"] [uri "/.env.backup"] [unique_id "adWlmYQVfS-2D5VTYlLDzQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 22:19:48
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 18:19:39.657507 2026] [security2:error] [pid 1531845:tid 1531845] [client 172.70.80.209:12284] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ji-technovation.com"] [uri "/.env.local"] [unique_id "adWC-68vtOYEubkKgHpmWQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 21:06:02
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 17:05:55.048498 2026] [security2:error] [pid 2071681:tid 2071681] [client 172.70.80.209:12707] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.eeinspect.net"] [uri "/.env.dev"] [unique_id "adVxs2EG4V1LVz0FLohSZwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack