๐ญ๐บ
bcsaba
2026-07-06 12:11:23
(2 hours ago)
CMS (WordPress or Joomla) login attempt.
104.207.53.222 - - [06/Jul/2026:14:11:21 +0200] "POST /wp-l ...
show more
CMS (WordPress or Joomla) login attempt.
104.207.53.222 - - [06/Jul/2026:14:11:21 +0200] "POST /wp-login.php HTTP/1.1" 200 3078 "https://*REDACTED*/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
show less
Hacking
Brute-Force
Web App Attack
Anonymous
2026-07-05 17:06:31
(21 hours ago)
Trying to access config files
Web App Attack
๐ง๐ช
brechtr
2026-07-01 08:02:47
(5 days ago)
[Press84-BanHammer] bad username โ Sourced from: brechtryckaert.com โ Request: POST /wp-login.php
Brute-Force
Anonymous
2026-06-30 13:21:02
(6 days ago)
Web attack blocked by Wordfence on gedichtenlangsdegeul.nl (1 hit). Reported by CRMON.
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-06-28 04:24:08
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-06-27 04:19:30
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐บ๐ธ
nyt
2026-05-10 00:50:37
(1 month ago)
Empty UA + error
Web App Attack
Anonymous
2026-02-07 02:10:01
(4 months ago)
Banned by SPAMHAUS ASN-DROP list (ASN: 200373)
DDoS Attack
Hacking
Bad Web Bot
Web App Attack
Anonymous
2025-12-25 11:37:49
(6 months ago)
2025-12-25T13:37:49.135609+02:00 zanati wp(www.sahpa.co.za)[2918737]: Blocked authentication attempt ...
show more
2025-12-25T13:37:49.135609+02:00 zanati wp(www.sahpa.co.za)[2918737]: Blocked authentication attempt for [email protected] from 104.207.53.222
...
show less
Web App Attack
๐ญ๐บ
bcsaba
2025-12-01 12:46:45
(7 months ago)
Repeated request on blocked xmlrpc.php.
104.207.53.222 - - [01/Dec/2025:13:46:37 +0100] "POST /xmlrp ...
show more
Repeated request on blocked xmlrpc.php.
104.207.53.222 - - [01/Dec/2025:13:46:37 +0100] "POST /xmlrpc.php HTTP/2.0" 400 230 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15"
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 06:35:09
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.53.222 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.53.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:34:49.232574 2025] [security2:error] [pid 25392:tid 25392] [client 104.207.53.222:48687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.binglawoffice.com"] [uri "/.svn/wc.db"] [unique_id "aSVOCTWPyZNlqKf6qICc3gAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 09:14:47
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.53.222 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.53.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:14:39.463191 2025] [security2:error] [pid 11652:tid 11652] [client 104.207.53.222:47505] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.jbaydeliveries.com"] [uri "/.git/HEAD"] [unique_id "aSQh_8bKbgUplw7DRQAA4QAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 07:55:42
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.53.222 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.53.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:55:33.205812 2025] [security2:error] [pid 12686:tid 12686] [client 104.207.53.222:18947] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.automotiveforms.net"] [uri "/.git/HEAD"] [unique_id "aSQPdda21wVSrcR1f6IZlQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 07:19:53
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.53.222 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.53.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:19:46.223590 2025] [security2:error] [pid 10694:tid 10781] [client 104.207.53.222:52019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.crowns.org"] [uri "/.svn/wc.db"] [unique_id "aSQHEu8eCgFpdVGM0y1xTwAAARg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-15 06:48:20
(7 months ago)
Ports: *; Direction: 0; Trigger: CT_LIMIT
Brute-Force
SSH