๐บ๐ธ
TPI-Abuse
2026-06-29 23:56:05
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 172.70.80.50 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.80.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 19:55:58.435068 2026] [security2:error] [pid 22912:tid 22912] [client 172.70.80.50:11557] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.forsythfixit.com|F|2"] [data "[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.forsythfixit.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "akMGDlaCh7qCWDphuU4zNwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-29 20:11:12
(1 day ago)
172.70.80.50 - - [29/Jun/2026:23:11:10 +0300] "GET /wp-includes/about.php HTTP/1.1" 404 791 "-" "Moz ...
show more
172.70.80.50 - - [29/Jun/2026:23:11:10 +0300] "GET /wp-includes/about.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.70.80.50 - - [29/Jun/2026:23:11:11 +0300] "GET /wp-content/ HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-28 15:10:31
(2 days ago)
172.70.80.50 - - [28/Jun/2026:18:10:28 +0300] "GET /wp-content/uploads/index.php HTTP/1.1" 404 791 " ...
show more
172.70.80.50 - - [28/Jun/2026:18:10:28 +0300] "GET /wp-content/uploads/index.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.70.80.50 - - [28/Jun/2026:18:10:31 +0300] "GET /wp-admin/user/index.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-27 07:14:12
(4 days ago)
172.70.80.50 - - [27/Jun/2026:10:14:06 +0300] "GET /wp-content/uploads/index.php HTTP/1.1" 404 791 " ...
show more
172.70.80.50 - - [27/Jun/2026:10:14:06 +0300] "GET /wp-content/uploads/index.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.70.80.50 - - [27/Jun/2026:10:14:11 +0300] "GET /wp-login.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-24 11:55:20
(1 week ago)
172.70.80.50 - - [24/Jun/2026:14:55:16 +0300] "GET /wp-content/uploads/index.php HTTP/1.1" 404 791 " ...
show more
172.70.80.50 - - [24/Jun/2026:14:55:16 +0300] "GET /wp-content/uploads/index.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
172.70.80.50 - - [24/Jun/2026:14:55:19 +0300] "GET /wp-admin/user.php HTTP/1.1" 404 791 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
Anonymous
2026-06-22 13:54:36
(1 week ago)
Aggressive web scan
Web App Attack
Anonymous
2026-06-17 11:01:04
(2 weeks ago)
LH-Watcher: FAKE_ID [Fake Googlebot]
Bad Web Bot
๐ณ๐ฑ
homeshowdomain.nl
2026-06-11 22:00:55
(2 weeks ago)
Auto-ban: >3000 req/min op 2026-06-11
Web App Attack
SSH
Hacking
Anonymous
2026-06-11 05:19:21
(2 weeks ago)
172.70.80.50 - - [11/Jun/2026:07:19:20 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 436 " ...
show more
172.70.80.50 - - [11/Jun/2026:07:19:20 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 436 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
172.70.80.50 - - [11/Jun/2026:07:19:20 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 243 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
172.70.80.50 - - [11/Jun/2026:07:19:21 +0200] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 436 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
172.70.80.50 - - [11/Jun/2026:07:19:21 +0200] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 243 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
172.70.80.50 - - [11/Jun/2026:07:19:21 +0200] "GET //website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 436 "
...
show less
Brute-Force
Web App Attack
Anonymous
2026-06-10 20:29:48
(2 weeks ago)
Aggressive web scan
Web App Attack
Anonymous
2026-06-02 00:34:38
(4 weeks ago)
Aggressive web scan
Web App Attack
Anonymous
2026-05-17 01:04:38
(1 month ago)
Aggressive web scan
Web App Attack
Anonymous
2026-05-12 13:16:55
(1 month ago)
invalid request
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-09 00:44:02
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.50 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 20:43:56.975545 2026] [security2:error] [pid 3467687:tid 3467687] [client 172.70.80.50:10921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.compupackinc.com"] [uri "/www/.env"] [unique_id "adb2TDPDkQ9uI0QFNVNTewAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 22:30:39
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.80.50 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.80.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 18:30:34.613081 2026] [security2:error] [pid 1534272:tid 1534272] [client 172.70.80.50:13252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.mathewsdental.com"] [uri "/.env.development.local"] [unique_id "adWFisENznfMedJmJEhArwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack