πΊπΈ
TPI-Abuse
2026-02-12 01:16:11
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 20:16:07.065228 2026] [security2:error] [pid 27184:tid 27184] [client 104.207.46.112:64881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arofish.us"] [uri "/admin/.git/config"] [unique_id "aY0p19TUrF5aHMA1tri6xQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
pm33
2026-02-11 20:16:40
(3 months ago)
Probing for resource vulnerabilities HTTP(S)
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-11 15:44:11
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 10:44:07.862147 2026] [security2:error] [pid 30396:tid 30396] [client 104.207.46.112:10107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apsni.net"] [uri "/backup/.git/config"] [unique_id "aYyjxylx2NtXGkSkTedQ5gAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 04:47:17
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:47:10.276023 2026] [security2:error] [pid 15900:tid 15900] [client 104.207.46.112:24797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magnawebinc.com"] [uri "/wp/.git/config"] [unique_id "aYq4Tv5E8Xdc_TrH8vfeXQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 03:12:23
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:12:16.890994 2026] [security2:error] [pid 25464:tid 25464] [client 104.207.46.112:62711] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnaird.enterprises"] [uri "/app/.git/config"] [unique_id "aYqiEKAU9PclYCMasmLwWQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-09 22:58:18
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:58:10.493190 2026] [security2:error] [pid 882251:tid 882385] [client 104.207.46.112:41081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "howlerrock.com"] [uri "/test/.git/config"] [unique_id "aYpmgjmNNsmiKCeO76fB7wAAAZQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-09 22:38:03
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:37:57.886595 2026] [security2:error] [pid 11165:tid 11165] [client 104.207.46.112:29903] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "macroprintbooks.com"] [uri "/admin/.env"] [unique_id "aYphxVuCKbwclPL9sfwTjQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
myagent.site
2026-02-09 20:06:16
(3 months ago)
Blocking for trying to access an exploit file: /.env.local
Hacking
πΊπΈ
TPI-Abuse
2026-01-21 13:00:22
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 08:00:11.579992 2026] [security2:error] [pid 7109:tid 7109] [client 104.207.46.112:21861] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "quintessence.com"] [uri "/.env"] [unique_id "aXDN2-nyr4vplrhijDfIiAAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-01-20 18:51:27
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 13:51:23.007671 2026] [security2:error] [pid 18217:tid 18217] [client 104.207.46.112:13073] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "flydarkestdays.com"] [uri "/.svn/wc.db"] [unique_id "aW_Oq7xhBqqrok-37-q2vQAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Packets-Decreaser.NET
2025-12-29 14:01:21
(5 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
πͺπΈ
10dencehispahard SL
2025-12-29 09:19:05
(5 months ago)
Wordpress probing for vulnerabilities
Hacking
Exploited Host
π¬π§
SilverZippo
2025-12-01 13:28:04
(6 months ago)
Web App Attack
Web App Attack
2025-10-16 18:26:25
(7 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
π¨π¦
wil.com
2025-10-15 06:41:27
(7 months ago)
GlobalProtect login attempts with user alessi.
VPN IP
Brute-Force