๐ฉ๐ช
www.mammazone.it
2026-07-04 09:44:22
(5 days ago)
[Sat Jul 04 11:44:21.384271 2026] [proxy_fcgi:error] [pid 234663] [client 172.71.120.9:11860] AH0107 ...
show more
[Sat Jul 04 11:44:21.384271 2026] [proxy_fcgi:error] [pid 234663] [client 172.71.120.9:11860] AH01071: Got error 'Primary script unknown'
[Sat Jul 04 11:44:22.048163 2026] [proxy_fcgi:error] [pid 234663] [client 172.71.120.9:11860] AH01071: Got error 'Primary script unknown'
...
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-30 21:29:17
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 17:29:14.427520 2026] [security2:error] [pid 21345:tid 21345] [client 172.71.120.9:14221] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.whitmarshinc.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.whitmarshinc.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "akQ1Kk9EtoqXb0st_F-NLAAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-10 22:01:14
(4 weeks ago)
Auto-ban: >3000 req/min op 2026-06-10
Web App Attack
SSH
Hacking
๐บ๐ธ
mnsf
2026-06-09 10:08:28
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-28 10:07:23
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 06:07:20.000173 2026] [security2:error] [pid 31464:tid 31464] [client 172.71.120.9:14000] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.natursac.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.natursac.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "ahgT117yofZtGIpqtFvmUAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
www.mammazone.it
2026-05-24 22:45:14
(1 month ago)
[Mon May 25 00:45:14.331588 2026] [proxy_fcgi:error] [pid 1969495] [client 172.71.120.9:10359] AH010 ...
show more
[Mon May 25 00:45:14.331588 2026] [proxy_fcgi:error] [pid 1969495] [client 172.71.120.9:10359] AH01071: Got error 'Primary script unknown'
...
show less
Hacking
Web App Attack
๐ฉ๐ช
www.mammazone.it
2026-05-09 10:55:23
(2 months ago)
[Sat May 09 12:55:23.696128 2026] [proxy_fcgi:error] [pid 1382254] [client 172.71.120.9:13986] AH010 ...
show more
[Sat May 09 12:55:23.696128 2026] [proxy_fcgi:error] [pid 1382254] [client 172.71.120.9:13986] AH01071: Got error 'Primary script unknown'
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-05 19:09:17
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 15:09:11.903930 2026] [security2:error] [pid 32490:tid 32490] [client 172.71.120.9:12788] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.cameronbenefits.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cameronbenefits.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "afpAV04LyJ2CwtNm5USQ8wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
cg-design.co.uk
2026-04-30 01:13:42
(2 months ago)
(mod_security) mod_security triggered on hostname [redacted] 172.71.120.9 (CA/Canada/-)
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-04-09 03:52:55
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 23:52:51.982829 2026] [security2:error] [pid 3232819:tid 3232819] [client 172.71.120.9:9753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.varobinson.com"] [uri "/.env.production.local"] [unique_id "adcik-Sj5irQ0xAnyhn0tQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 17:32:52
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 13:32:44.012362 2026] [security2:error] [pid 1339308:tid 1339308] [client 172.71.120.9:12397] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.rooksfamily.com"] [uri "/www/.env"] [unique_id "adU_vHhQW0hLv8tS-hnEJgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 14:07:35
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 10:07:29.423169 2026] [security2:error] [pid 1265775:tid 1265888] [client 172.71.120.9:9303] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ceol.com"] [uri "/.env.json"] [unique_id "adUPocF9RU8TViW1iNnZWQAAAcs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 13:13:07
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 09:13:02.090668 2026] [security2:error] [pid 1364061:tid 1364061] [client 172.71.120.9:12528] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.gilmourleigh.vanemby.com"] [uri "/.env.local"] [unique_id "adUC3orPTkoRDo4fadQPFAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-07 01:43:11
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 21:43:03.771099 2026] [security2:error] [pid 574024:tid 574024] [client 172.71.120.9:13923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "united-kingdom-boat-registration.com"] [uri "/.env"] [unique_id "adRhJ53eFUT2cBmrwrie_wAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 23:03:28
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.120.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 19:03:21.574561 2026] [security2:error] [pid 500096:tid 500096] [client 172.71.120.9:12223] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vanduijnencoaching.nl"] [uri "/var/www/html/.env"] [unique_id "adQ7ufgehSy4Nd7AVhM2GQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack