π«π·
MatStef132
2026-05-19 21:11:03
(2 weeks ago)
MatShield L7: blocked on mathost.eu (ua-quarantined)
Bad Web Bot
π³π±
MatStef132
2026-05-19 20:59:02
(2 weeks ago)
MatShield L7: blocked on dstat.selify.io (ua-quarantined)
Bad Web Bot
π«π·
MatStef132
2026-05-19 20:55:42
(2 weeks ago)
MatShield L7: blocked on mathost.eu (ua-quarantined)
Bad Web Bot
πͺπΈ
librebit
2026-05-17 05:42:55
(2 weeks ago)
Brute force
Brute-Force
π«π·
MatStef132
2026-05-15 15:39:09
(2 weeks ago)
MatShield L7 blocked request to mathost.eu for reason ua-q
DDoS Attack
Bad Web Bot
Web App Attack
π«π·
MatStef132
2026-05-14 21:32:37
(3 weeks ago)
[mathost.eu] ua-q
DDoS Attack
Bad Web Bot
Web App Attack
πΈπͺ
Juha Jurvanen
2026-05-11 12:31:24
(3 weeks ago)
RdpGuard detected brute-force attempt on RD-WEB
Brute-Force
2026-05-11 10:15:22
(3 weeks ago)
Multiple failed login attemps RDS-Web-Access-Server
Brute-Force
Web App Attack
πͺπΈ
el-brujo
2026-04-28 15:44:20
(1 month ago)
Cloudflare WAF: Request Path: /123456 Request Query: ?ref=1777391060210552290 Host: elhacker.net use ...
show more
Cloudflare WAF: Request Path: /123456 Request Query: ?ref=1777391060210552290 Host: elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.129 Safari/537.36 Action: block Source: ratelimit ASN Description: 3xK Tech GmbH Country: US Method: GET Timestamp: 2026-04-28T15:44:20Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-18 00:51:13
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:51:08.285671 2026] [security2:error] [pid 16659:tid 16659] [client 104.207.32.56:23463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paulpasquali.com"] [uri "/backup/.git/config"] [unique_id "aZUM_O9kNwZF9YZOMwUOxgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 15:31:19
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:31:09.123361 2026] [security2:error] [pid 31417:tid 31417] [client 104.207.32.56:39877] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestcountryclubs.com"] [uri "/.env.save"] [unique_id "aYtPPWfRa_E3rQp4Kz3NbgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-10 03:52:33
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:52:26.068784 2026] [security2:error] [pid 2733357:tid 2733357] [client 104.207.32.56:60919] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kittencream.com"] [uri "/backend/.env"] [unique_id "aYqret7j-obsX9woNOJzlwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-09 23:47:07
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:47:01.397042 2026] [security2:error] [pid 19698:tid 19698] [client 104.207.32.56:21207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "htaautosales.com"] [uri "/new/.git/config"] [unique_id "aYpx9T7hI_3ghROIVqvxrgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
myagent.site
2026-02-09 23:39:16
(3 months ago)
Blocking for trying to access an exploit file: /.env.staging
Hacking
πΊπΈ
TPI-Abuse
2026-02-09 23:01:22
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.32.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:01:16.373347 2026] [security2:error] [pid 10242:tid 10242] [client 104.207.32.56:10341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kdeering.net"] [uri "/.git/config"] [unique_id "aYpnPCD90Rh8htDTqN1vEwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack