๐บ๐ธ
chrisj
2026-07-05 19:31:39
(2 hours ago)
[Sun Jul 05 19:31:38.437557 2026] [proxy_fcgi:error] [pid 515550:tid 515559] [remote 172.71.120.137: ...
show more
[Sun Jul 05 19:31:38.437557 2026] [proxy_fcgi:error] [pid 515550:tid 515559] [remote 172.71.120.137:10840] AH01071: Got error 'Primary script unknown'
[Sun Jul 05 19:31:38.587791 2026] [proxy_fcgi:error] [pid 515550:tid 515561] [remote 172.71.120.137:10840] AH01071: Got error 'Primary script unknown'
[Sun Jul 05 19:31:38.739741 2026] [proxy_fcgi:error] [pid 515550:tid 515562] [remote 172.71.120.137:10840] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
๐บ๐ธ
chrisj
2026-07-05 17:14:54
(4 hours ago)
[Sun Jul 05 17:14:53.754943 2026] [proxy_fcgi:error] [pid 515550:tid 515589] [remote 172.71.120.137: ...
show more
[Sun Jul 05 17:14:53.754943 2026] [proxy_fcgi:error] [pid 515550:tid 515589] [remote 172.71.120.137:10060] AH01071: Got error 'Primary script unknown'
[Sun Jul 05 17:14:54.012003 2026] [proxy_fcgi:error] [pid 515550:tid 515590] [remote 172.71.120.137:10060] AH01071: Got error 'Primary script unknown'
[Sun Jul 05 17:14:54.163849 2026] [proxy_fcgi:error] [pid 515550:tid 515592] [remote 172.71.120.137:10060] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-02 23:26:36
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 172.71.120.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.71.120.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 19:26:29.059012 2026] [security2:error] [pid 23573:tid 23573] [client 172.71.120.137:9352] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.deanfountain.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.deanfountain.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "akbzpTsMA6PHRvsRaeloQwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
chrisj
2026-07-01 22:28:06
(3 days ago)
[Wed Jul 01 22:28:05.368772 2026] [proxy_fcgi:error] [pid 444698:tid 444719] [remote 172.71.120.137: ...
show more
[Wed Jul 01 22:28:05.368772 2026] [proxy_fcgi:error] [pid 444698:tid 444719] [remote 172.71.120.137:9573] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 22:28:05.877266 2026] [proxy_fcgi:error] [pid 444698:tid 444722] [remote 172.71.120.137:9573] AH01071: Got error 'Primary script unknown'
[Wed Jul 01 22:28:06.107013 2026] [proxy_fcgi:error] [pid 444698:tid 444715] [remote 172.71.120.137:9573] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-21 04:54:04
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 172.71.120.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.71.120.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 00:53:57.440710 2026] [security2:error] [pid 22573:tid 22573] [client 172.71.120.137:14319] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.fixitsmart.com|F|2"] [data "[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.fixitsmart.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "ajduZaafns5A-pDwxdGkdQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-20 08:38:06
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 04:38:02.533744 2026] [security2:error] [pid 7971:tid 7971] [client 172.71.120.137:10096] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dancingbearprinting.com"] [uri "/.git/HEAD"] [unique_id "ajZRalNe-tuCSZSGv0PWOQAAAAc"], referer: https://www.google.com/search?q=dancingbearprinting.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-17 00:09:24
(2 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ฌ๐ง
Axel
2026-06-11 19:38:20
(3 weeks ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env.backup ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env.backup Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐ฌ๐ง
Axel
2026-06-11 18:37:58
(3 weeks ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env.product ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env.production Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐ฌ๐ง
Axel
2026-06-11 17:37:38
(3 weeks ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env.old Ser ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env.old Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐ฆ๐บ
oncord
2026-06-11 15:16:50
(3 weeks ago)
Form spam
Web Spam
๐ณ๐ฑ
homeshowdomain.nl
2026-06-10 21:59:16
(3 weeks ago)
Auto-ban: >3000 req/min op 2026-06-10
Web App Attack
SSH
Hacking
๐บ๐ธ
mnsf
2026-06-10 10:06:30
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-06-09 05:07:12
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 23:35:35
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 172.71.120.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.71.120.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 19:35:30.005419 2026] [security2:error] [pid 23114:tid 23114] [client 172.71.120.137:12858] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.thebradleyclinic.com|F|2"] [data "[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.thebradleyclinic.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "aiC6QW0VO12ZJmL6gjpGKwAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack