π«π·
MatStef132
2026-05-19 21:11:03
(2 weeks ago)
MatShield L7: blocked on mathost.eu (ua-quarantined)
Bad Web Bot
π³π±
MatStef132
2026-05-19 20:21:32
(2 weeks ago)
MatShield L7: blocked on chat.justchat.icu (ua-quarantined)
Bad Web Bot
π¦πΊ
MAGIC
2026-05-16 00:11:23
(3 weeks ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
π«π·
MatStef132
2026-05-15 15:39:10
(3 weeks ago)
MatShield L7 blocked request to mathost.eu for reason ua-q
DDoS Attack
Bad Web Bot
Web App Attack
π«π·
MatStef132
2026-05-14 21:32:38
(3 weeks ago)
[mathost.eu] ua-q
DDoS Attack
Bad Web Bot
Web App Attack
π«π·
Kenshin869
2026-04-16 10:12:41
(1 month ago)
Wordpress unauthorized access attempt
Brute-Force
π©πͺ
Lino Project
2026-04-05 16:39:14
(2 months ago)
104.207.56.25 - - [05/Apr/2026:18:39:13 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3963 "https://www.pri ...
show more
104.207.56.25 - - [05/Apr/2026:18:39:13 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3963 "https://www.primobio.it/" "PHP/5.3.63"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Jochen Pretli
2026-02-24 00:51:30
(3 months ago)
connection to honeypot
Email Spam
Port Scan
π¬π§
consul.to
2026-02-15 12:50:39
(3 months ago)
Web attack/malicious scanning detected
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 11:55:15
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:55:09.687831 2026] [security2:error] [pid 26560:tid 26560] [client 104.207.56.25:27515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teamsewusa.com"] [uri "/.env.local"] [unique_id "aZG0HREsEr7pZK_HJdrflAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 06:04:12
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:04:03.307962 2026] [security2:error] [pid 28837:tid 28837] [client 104.207.56.25:40381] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "syconline.com"] [uri "/site/.git/config"] [unique_id "aZFh0xsu0g9ku_Tx_xyKwQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 05:06:55
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:06:51.733240 2026] [security2:error] [pid 19271:tid 19271] [client 104.207.56.25:11807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sundolls.org"] [uri "/site/.git/config"] [unique_id "aZFUa2xD3ebqlyQhi38olwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 04:21:27
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:21:18.930920 2026] [security2:error] [pid 22409:tid 22409] [client 104.207.56.25:28315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "streetcarz.net"] [uri "/app/.env"] [unique_id "aZFJvt2THusS8tSx1TdSngAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
big-cloud.nl
2026-02-15 04:02:54
(3 months ago)
Try to access /admin/.git/config
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 02:32:00
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.56.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:31:56.086807 2026] [security2:error] [pid 27073:tid 27073] [client 104.207.56.25:48991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "spiritofacorn.com"] [uri "/admin/.git/config"] [unique_id "aZEwHM4wT5BwyHAUhPRlCgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack