๐บ๐ธ
TPI-Abuse
2026-06-02 20:03:44
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 16:03:41.548634 2026] [security2:error] [pid 8220:tid 8220] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:13977] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "painting-with-numbers.com"] [uri "/.git/config"] [unique_id "ah83HcsPtvAnh5-jTp1wYAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-31 08:07:48
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 04:07:42.603173 2026] [security2:error] [pid 13530:tid 13530] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:13605] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.christianbroadcastingleague.com"] [uri "/admin/.env"] [unique_id "acuAzhdGJD9UW9kB-TmSqQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-31 00:51:58
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 20:51:51.770576 2026] [security2:error] [pid 709:tid 709] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:14051] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.motioncontrolpartners.com"] [uri "/.env.development.local"] [unique_id "acsap04jizP7HZ4-FY2E4wAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 15:25:20
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 11:25:15.999087 2026] [security2:error] [pid 14144:tid 14144] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:10758] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.pelicancovecondo.com"] [uri "/.env.staging"] [unique_id "acqV26qquvd144LudbRD2AAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 15:02:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 11:02:46.883084 2026] [security2:error] [pid 16483:tid 16483] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:10506] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "newcastle91.org"] [uri "/.git/refs/heads/master"] [unique_id "acqQllnyWGW8gfmCHbWlowAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 06:36:12
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 02:36:04.319386 2026] [security2:error] [pid 16043:tid 16043] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:12018] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.jannetta.com"] [uri "/.env.tmp"] [unique_id "acoZ1Hx2P603alFj1b8kGAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 02:22:55
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 22:22:48.589071 2026] [security2:error] [pid 23329:tid 23329] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:11460] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.daisyweddinginvitations.com"] [uri "/.env.bak"] [unique_id "acneeMKTBNeHjia6-fSozQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-26 02:07:12
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 22:07:04.971773 2026] [security2:error] [pid 31870:tid 31870] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:12445] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.iktonline.org"] [uri "/.git/HEAD"] [unique_id "acSUyCIqntmrtYjl2P-NVwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 03:17:47
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 23:17:39.811827 2026] [security2:error] [pid 30918:tid 30918] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:13268] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.carl-fink.name"] [uri "/.env.tmp"] [unique_id "ab4N04ciN0pj_Y5pFybaWQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 02:14:01
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 22:13:54.653030 2026] [security2:error] [pid 20627:tid 20668] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:10653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.driftwoodblue.com"] [uri "/config/.env.local"] [unique_id "ab3-4hSm-ID_Jx8YGdfHnQAAAII"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 00:43:16
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 20:43:10.562952 2026] [security2:error] [pid 21241:tid 21241] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:10590] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.daveroozendaal.com"] [uri "/core/.env"] [unique_id "abyYHum6U-a-Wddq5y0gqAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-20 00:11:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 20:11:30.620329 2026] [security2:error] [pid 30393:tid 30393] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:13198] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "au.tonylai.com"] [uri "/.env.bak"] [unique_id "abyQsoBGgcZ--rZP0KLNKgAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-19 09:43:27
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2400:cb00:636:1000:bb3:bc2b:b003:37cb (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 05:43:21.258796 2026] [security2:error] [pid 20238:tid 20238] [client 2400:cb00:636:1000:bb3:bc2b:b003:37cb:11902] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.qavideo.com"] [uri "/.env.production.local"] [unique_id "abvFOTM9aNd8SKCQMWjOrwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-01-10 23:05:55
(5 months ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-01-09.
show less
Hacking
Web App Attack
SSH