Anonymous
2026-07-03 23:16:02
(11 hours ago)
Web attack blocked by Wordfence on limburgsekunstkring.nl (1 hit). Reported by CRMON.
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-03 01:43:18
(1 day ago)
(y4) Failed scan -byebye- from 104.207.44.197 (US/United States/-): (CF_ENABLE)
Hacking
๐บ๐ธ
lostswordfish.com
2026-07-02 13:24:03
(1 day ago)
Wordfence waf block on taussigtravel
Web App Attack
Anonymous
2026-07-01 17:41:24
(2 days ago)
[ns65.kdns.gr] httpd-login-spray-site: sites=www.iason-ceramics.gr; logs=/var/log/httpd/domains/iaso ...
show more
[ns65.kdns.gr] httpd-login-spray-site: sites=www.iason-ceramics.gr; logs=/var/log/httpd/domains/iason-ceramics.gr.log; samples=site_wide=true | distinct_ips=64 | /wp-login.php
show less
Hacking
Web App Attack
๐บ๐ธ
oncord
2026-06-16 17:22:49
(2 weeks ago)
Form spam
Web Spam
๐บ๐ธ
mnsf
2026-05-28 22:05:49
(1 month ago)
Scanning/Probing (34)
Brute-Force
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-05-27 23:31:10
(1 month ago)
[Thu May 28 09:31:09.883737 2026] [security2:error] [pid 504817] [client 104.207.44.197:35399] [clie ...
show more
[Thu May 28 09:31:09.883737 2026] [security2:error] [pid 504817] [client 104.207.44.197:35399] [client 104.207.44.197] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "iaki.com.au"] [uri "/wp-config.php.save"] [unique_id "ahd-vRz9eUh7qCm73h7TKAAAAAA"]
...
show less
Web App Attack
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-02-13 22:59:40
(4 months ago)
Auto-ban: >3000 req/min op 2026-02-13
Hacking
Web App Attack
SSH
๐บ๐ธ
TPI-Abuse
2026-02-13 08:13:09
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.44.197 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.44.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:13:04.548335 2026] [security2:error] [pid 18421:tid 18421] [client 104.207.44.197:22923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "laboquimia.es"] [uri "/dev/.git/config"] [unique_id "aY7dEHyvJ5EDYohgKmvwEAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-02-13 07:05:33
(4 months ago)
104.207.44.197 - - [13/Feb/2026:09:05:32 +0200] "GET /.env HTTP/1.1" 404 5553 "-" "Mozilla/5.0 (Wind ...
show more
104.207.44.197 - - [13/Feb/2026:09:05:32 +0200] "GET /.env HTTP/1.1" 404 5553 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
104.207.44.197 - - [13/Feb/2026:09:05:33 +0200] "GET /api/.env HTTP/1.1" 404 403 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-13 06:02:43
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.44.197 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.44.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:02:36.832474 2026] [security2:error] [pid 1410830:tid 1410830] [client 104.207.44.197:46721] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koolstra.net"] [uri "/app/.git/config"] [unique_id "aY6-fIpFvAyTNo4pc33JLAAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-13 05:05:20
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.44.197 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.44.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:05:12.452799 2026] [security2:error] [pid 30619:tid 30619] [client 104.207.44.197:48763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kln.ne.jp"] [uri "/api/.git/config"] [unique_id "aY6xCBPP-Otw6ov8O7IDCgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-13 03:19:14
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.44.197 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.44.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:19:09.155731 2026] [security2:error] [pid 23220:tid 23220] [client 104.207.44.197:19547] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kh6jim.com"] [uri "/app/.git/config"] [unique_id "aY6YLaZ_duBcLNYvn3FeyQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Little Iguana
2026-02-12 18:20:06
(4 months ago)
Attempt to hack Wordpress Login, XMLRPC or other login
Hacking