๐จ๐ญ
backslash
2026-07-09 06:42:00
(14 hours ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐บ๐ธ
apislytics
2026-06-03 03:12:10
(1 month ago)
Automatic hard ban after repeated rate-limit abuse
Brute-Force
๐ฆ๐บ
oncord
2026-04-06 15:07:54
(3 months ago)
Form spam
Web Spam
๐ณ๐ฑ
Site.eu
2026-03-29 02:32:42
(3 months ago)
Excessive 404/403 errors
Brute-Force
๐ฆ๐บ
MAGIC
2025-12-19 00:04:55
(6 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-11-26 08:13:16
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:13:11.937296 2025] [security2:error] [pid 17257:tid 17257] [client 104.207.46.158:23449] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.equipoperu.org"] [uri "/.svn/wc.db"] [unique_id "aSa2l-jgG-i2jEl8938IcgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 03:37:20
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:37:14.220730 2025] [security2:error] [pid 8565:tid 8565] [client 104.207.46.158:32291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.vibratingharvard.com"] [uri "/.env"] [unique_id "aSZ16vT6otw74NirODAcfgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 01:07:59
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:07:53.770084 2025] [security2:error] [pid 11141:tid 11141] [client 104.207.46.158:14473] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.abastaxteam.homehealth101.com"] [uri "/.git/HEAD"] [unique_id "aSZS6SIqVByOFOtsg6wDJgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 01:53:39
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:53:33.440994 2025] [security2:error] [pid 7326:tid 7527] [client 104.207.46.158:44677] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.amphoracollectors.org"] [uri "/.env"] [unique_id "aSUMHdNUaJ5dFUuoaTx7PwAAAM0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 00:08:22
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:08:14.768875 2025] [security2:error] [pid 1416377:tid 1416428] [client 104.207.46.158:42671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anp-designs.sea2er.com"] [uri "/.svn/wc.db"] [unique_id "aSTzbtsAxesaLzrdi4072gAAARY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-13 23:14:26
(7 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-11 05:25:19
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 00:25:10.961850 2025] [security2:error] [pid 25794:tid 25794] [client 104.207.46.158:59451] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.aabondwnc.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.aabondwnc.com"] [uri "/s3cmd.ini"] [unique_id "aRLItrgwr9EY3eh1z9QUQwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-09 07:13:21
(8 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 09 02:13:19.040300 2025] [security2:error] [pid 18008:tid 18008] [client 104.207.46.158:44951] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kirbyimc.com"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRA_Dx30ftEa3dadyHseMAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-10-19 17:35:43
(8 months ago)
Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.19 is noted in report ti ...
show more
Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.19 is noted in report timestamp
show less
Hacking
Brute-Force
Anonymous
2025-10-18 19:41:47
(8 months ago)
Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.18 is noted in report ti ...
show more
Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.18 is noted in report timestamp
show less
Hacking
Brute-Force