π©πͺ
Holger
2026-03-30 10:54:15
(2 months ago)
Bruteforce WebAttack
Brute-Force
Web App Attack
π©πͺ
Holger
2026-03-27 01:00:43
(2 months ago)
Bruteforce WebAttack
Brute-Force
Web App Attack
π¦πΊ
RedBear IT
2026-03-26 10:00:37
(2 months ago)
"DDoS against public endpoint"
DDoS Attack
πΊπΈ
TPI-Abuse
2026-02-12 04:29:42
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 23:29:38.600619 2026] [security2:error] [pid 460515:tid 460515] [client 104.207.57.212:28191] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arthuregau.com"] [uri "/wp/.git/config"] [unique_id "aY1XMtMCAgODN0Aqf6SCswAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³π±
jjnxpct
2026-02-11 04:53:25
(4 months ago)
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ...
show more
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /backend/.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /backend/.env]
show less
Hacking
Web App Attack
π³π±
ParaBug
2026-02-10 15:32:55
(4 months ago)
104.207.57.212 - - [10/Feb/2026:16:32:55 +0100] "GET /app/.git/config HTTP/1.1" 301 3365 "-" "Mozill ...
show more
104.207.57.212 - - [10/Feb/2026:16:32:55 +0100] "GET /app/.git/config HTTP/1.1" 301 3365 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
...
show less
Phishing
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 15:09:54
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:09:49.334725 2026] [security2:error] [pid 22911:tid 22911] [client 104.207.57.212:23573] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anthraxbooks.info"] [uri "/.env"] [unique_id "aYtKPeSFurQfkZwH5xjO8wAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 05:54:49
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:54:45.301028 2026] [security2:error] [pid 30459:tid 30459] [client 104.207.57.212:45899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kofcasamblea442.org"] [uri "/.git/config"] [unique_id "aYrIJWZ6MKEXxUzU6yzUTAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
big-cloud.nl
2026-02-10 04:41:44
(4 months ago)
Try to access /.env
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 00:48:44
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:48:41.757776 2026] [security2:error] [pid 5164:tid 5164] [client 104.207.57.212:22299] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keyston.net"] [uri "/.git/config"] [unique_id "aYqAae8lpquF5ng2FbPtrQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-09 23:55:32
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:55:25.707261 2026] [security2:error] [pid 21154:tid 21154] [client 104.207.57.212:29181] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kenmalone.com"] [uri "/wp/.git/config"] [unique_id "aYpz7XCQqxeJYXJxVnvfmQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-09 22:56:48
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:56:42.574053 2026] [security2:error] [pid 14399:tid 14399] [client 104.207.57.212:29961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kcpgroup.kz"] [uri "/api/.env"] [unique_id "aYpmKnN_o4D1gSvpxu8m8gAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-09 22:03:59
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.57.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:03:56.166081 2026] [security2:error] [pid 5885:tid 5885] [client 104.207.57.212:48157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathleenhazlett.com"] [uri "/dev/.git/config"] [unique_id "aYpZzIvbkB9vsHcDufuj9QAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
backslash
2026-01-20 13:55:07
(4 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
2025-11-27 22:46:59
(6 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH