πΊπΈ
TPI-Abuse
2026-02-12 02:16:52
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 21:16:45.914884 2026] [security2:error] [pid 24253:tid 24253] [client 104.207.61.145:51425] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arroceraomoa.com"] [uri "/wp/.git/config"] [unique_id "aY04DVRKVOsZg9c3I4sEAQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-11 17:09:56
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 12:09:52.557041 2026] [security2:error] [pid 12589:tid 12589] [client 104.207.61.145:40715] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aquascapes.net"] [uri "/api/.git/config"] [unique_id "aYy34GT9A9mw2tmcNWbShgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³πΏ
FaB Property Group
2026-02-10 11:44:42
(4 months ago)
Requested file: .env.staging
Web App Attack
πΊπΈ
ambor
2026-02-10 05:24:54
(4 months ago)
Honeypot triggered: /admin/.git/config on ifebridge.com. User-Agent: Mozilla/5.0 (Windows NT 10.0; W ...
show more
Honeypot triggered: /admin/.git/config on ifebridge.com. User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36. Method: GET
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 02:01:20
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:01:11.978229 2026] [security2:error] [pid 13340:tid 13340] [client 104.207.61.145:41011] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kidswow.net"] [uri "/test/.git/config"] [unique_id "aYqRZ8K7GjcqAUNWG2WVywAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³π±
homeshowdomain.nl
2026-02-09 22:59:42
(4 months ago)
Auto-ban: >3000 req/min op 2026-02-09
Hacking
Web App Attack
SSH
πΊπΈ
TPI-Abuse
2026-02-09 22:04:00
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:03:56.355532 2026] [security2:error] [pid 6049:tid 6049] [client 104.207.61.145:58503] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathleenhazlett.com"] [uri "/dev/.git/config"] [unique_id "aYpZzPxAb09W7NPWpwtl_AAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π¦
SSH-Admin
2026-02-07 17:12:28
(4 months ago)
Probing for Exploits
Exploited Host
Web App Attack
πΊπΈ
myagent.site
2025-12-29 15:38:57
(5 months ago)
Blocking for trying to access an exploit file: /wp//installer.php
Hacking
π¨π¦
SSH-Admin
2025-12-27 22:05:38
(5 months ago)
Probing for Exploits
Exploited Host
Web App Attack
ππ³
soporte
2025-12-27 05:49:34
(5 months ago)
Probe for vulnerabilities. Path attempted: /old/wp-admin/setup-config.php
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-27 20:34:36
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 15:34:29.544858 2025] [security2:error] [pid 29470:tid 29470] [client 104.207.61.145:10645] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chickiesbeef.com"] [uri "/.git/HEAD"] [unique_id "aSi11R_fBM-JCQqEnbHqTQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 05:08:54
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:08:34.579162 2025] [security2:error] [pid 3504:tid 3504] [client 104.207.61.145:41163] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.benjaminshaw.com"] [uri "/.env"] [unique_id "aSPoUt50s3kbkeJ4CQZO_QAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 04:51:02
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.61.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:50:54.083765 2025] [security2:error] [pid 7929:tid 7929] [client 104.207.61.145:14337] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.dppc.studio"] [uri "/.git/HEAD"] [unique_id "aSPkLkWaNXKTxFPcK0gV7QAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2025-10-16 14:05:44
(8 months ago)
WordPress Brute Force
Brute-Force