๐บ๐ธ
chrisj
2026-07-05 17:14:54
(1 hour ago)
[Sun Jul 05 17:14:53.931591 2026] [proxy_fcgi:error] [pid 515552:tid 515573] [remote 172.71.120.76:1 ...
show more
[Sun Jul 05 17:14:53.931591 2026] [proxy_fcgi:error] [pid 515552:tid 515573] [remote 172.71.120.76:13971] AH01071: Got error 'Primary script unknown'
[Sun Jul 05 17:14:54.087725 2026] [proxy_fcgi:error] [pid 515552:tid 515574] [remote 172.71.120.76:13971] AH01071: Got error 'Primary script unknown'
[Sun Jul 05 17:14:54.239797 2026] [proxy_fcgi:error] [pid 515552:tid 515576] [remote 172.71.120.76:13971] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
๐บ๐ธ
octageeks.com
2026-05-26 04:06:34
(1 month ago)
Wordpress malicious attack:[octausername]
Web App Attack
๐บ๐ธ
octageeks.com
2026-05-20 04:07:06
(1 month ago)
Wordpress malicious attack:[octawp]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-09 03:57:11
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 23:57:05.397965 2026] [security2:error] [pid 3236014:tid 3236014] [client 172.71.120.76:12499] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.varobinson.com"] [uri "/.git/refs/heads/master"] [unique_id "adcjkQRUtmd1KRW_uYwWnwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-08 11:46:23
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 07:46:17.434122 2026] [security2:error] [pid 765348:tid 765369] [client 172.71.120.76:14298] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.mhrocket.com"] [uri "/.git/refs/heads/master"] [unique_id "adZACTvNl5VVBT5Yzc5dmgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 16:59:15
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 12:59:06.693591 2026] [security2:error] [pid 261968:tid 261968] [client 172.71.120.76:10600] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wordandwisdom.org"] [uri "/.env~"] [unique_id "adPmWki7z8UsPlRgcDL-sgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 12:19:22
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 08:19:12.577375 2026] [security2:error] [pid 4681:tid 4723] [client 172.71.120.76:11967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shieldsenterprisesusallccom.shieldsenterprisesusa.com"] [uri "/.env.local"] [unique_id "adOkwC-oh71BFy8-VVuxUgAAAIY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 14:44:23
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 10:44:17.394021 2026] [security2:error] [pid 11359:tid 11359] [client 172.71.120.76:12431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.lalalana.mx"] [uri "/root/.env"] [unique_id "adJ1QYdU5fu5yA0NkjS1yAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 07:16:20
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 03:16:14.760752 2026] [security2:error] [pid 23731:tid 23731] [client 172.71.120.76:13097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "impressionsinthread.com"] [uri "/.env"] [unique_id "adIMPs9TXnb2fMszHsE9zwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 02:36:05
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 22:36:01.154121 2026] [security2:error] [pid 2839:tid 2839] [client 172.71.120.76:11243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.fortwaynepartybuses.com"] [uri "/.env.php"] [unique_id "adHKkREkjENHkTh3ZaRStwAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 20:35:25
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 16:35:20.958409 2026] [security2:error] [pid 18261:tid 18261] [client 172.71.120.76:11202] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.talkingmess.com"] [uri "/.env.docker"] [unique_id "adF2CGhookznHNK8wwZhewAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 08:35:57
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 04:35:49.699685 2026] [security2:error] [pid 26528:tid 26528] [client 172.71.120.76:12503] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.dragoldio.com"] [uri "/web/.env"] [unique_id "adDNZUfx8gWbrrMQ9kXumAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 06:43:45
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 02:43:35.172685 2026] [security2:error] [pid 16729:tid 16729] [client 172.71.120.76:13456] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "curiousnarwhal.gregorii.com"] [uri "/.env.tmp"] [unique_id "adCzF6vk1fvZh7aCwDHjPwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 04:38:32
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 00:38:25.445672 2026] [security2:error] [pid 1663:tid 1663] [client 172.71.120.76:13401] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.technesa.com"] [uri "/admin/.env"] [unique_id "adCVwZGONwCesdKvlnN6nAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 04:01:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 00:01:43.228017 2026] [security2:error] [pid 20549:tid 20549] [client 172.71.120.76:12373] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.civilwarzone.com"] [uri "/app/.env"] [unique_id "adCNJ2HiVz34vjxWRrAuwAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack