πͺπΈ
librebit
2026-05-17 06:41:44
(3 weeks ago)
Brute force
Brute-Force
πͺπΈ
librebit
2026-05-15 00:16:48
(3 weeks ago)
Brute force
Brute-Force
π«π·
LRob.fr
2026-05-12 00:45:02
(3 weeks ago)
Repeated 403 errors, blocked by Fail2ban in custom-403 jail
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-02-13 13:43:04
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:42:58.961755 2026] [security2:error] [pid 18656:tid 18656] [client 104.207.46.54:11563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mindforestmovie.com"] [uri "/.env.local"] [unique_id "aY8qYjVE7L1GdpmAOukYZAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-13 13:08:59
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:08:51.722040 2026] [security2:error] [pid 30357:tid 30357] [client 104.207.46.54:33883] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mikeberro.com"] [uri "/wp/.git/config"] [unique_id "aY8iYwuyIk2ekzDfJlJZrAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-13 05:15:36
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:15:31.978059 2026] [security2:error] [pid 2426880:tid 2426880] [client 104.207.46.54:20019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matronasoy.com"] [uri "/backup/.git/config"] [unique_id "aY6zc6WPBrR2eLktfNy7SAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-13 04:55:18
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:55:13.188326 2026] [security2:error] [pid 5490:tid 5490] [client 104.207.46.54:60179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "masterfulenlighteningfreestudies.org"] [uri "/wp/.git/config"] [unique_id "aY6useNYYIfkNnqaEGxejAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-13 03:43:47
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:43:39.865278 2026] [security2:error] [pid 27016:tid 27016] [client 104.207.46.54:39791] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marionenv.com"] [uri "/dev/.git/config"] [unique_id "aY6d6x8Od25zijhlYgOlTwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
mnsf
2026-02-13 03:06:18
(3 months ago)
Too many Status 40X (13)
Scanning/Probing (13)
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-13 00:56:21
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 19:56:15.711499 2026] [security2:error] [pid 24278:tid 24278] [client 104.207.46.54:30467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madbanana.com"] [uri "/test/.git/config"] [unique_id "aY52r3b7-C7N1uBQnPxM1AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-12 20:05:22
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 15:05:15.133025 2026] [security2:error] [pid 514492:tid 514492] [client 104.207.46.54:53935] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icansayit.com"] [uri "/.git/config"] [unique_id "aY4ye2DNyi2aqs6mguUjswAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-12 15:57:16
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 10:57:08.286148 2026] [security2:error] [pid 10656:tid 10691] [client 104.207.46.54:49499] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deyyoungart.com"] [uri "/.git/config"] [unique_id "aY34VMnfJvNKa7cba1pomQAAAME"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2026-02-12 00:35:16
(3 months ago)
104.207.46.54 - - [12/Feb/2026:00:35:15 +0000] "GET /app/.env HTTP/1.1" 404 6185 "-" "Mozilla/5.0 (W ...
show more
104.207.46.54 - - [12/Feb/2026:00:35:15 +0000] "GET /app/.env HTTP/1.1" 404 6185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
...
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-11 08:10:50
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 03:10:42.959999 2026] [security2:error] [pid 15306:tid 15306] [client 104.207.46.54:55313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gabosoftware.com"] [uri "/wp/.git/config"] [unique_id "aYw5gqdPCpSup84BgGwCygAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-10 08:42:15
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.46.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 03:42:07.956271 2025] [security2:error] [pid 21548:tid 21548] [client 104.207.46.54:59609] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "unityhealthpharmaceutical.com"] [uri "/.env"] [unique_id "aTkyX0e3lNnBaS6KDl2l8AAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack