Eric - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User Eric joined AbuseIPDB in December 2019 and has reported 27,807 IP addresses.

Standing (weight) is good.

ACTIVE USER WEBMASTER

IP	Date	Comment	Categories
🇺🇸 64.62.197.77	2 hours ago	[Tue Jun 09 10:10:33.157872 2026] [security2:error] [pid 474872:tid 474872] [client 64.62.197.77:586 ... show more [Tue Jun 09 10:10:33.157872 2026] [security2:error] [pid 474872:tid 474872] [client 64.62.197.77:58692] [client 64.62.197.77] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/"] [unique_id "aifmmfZaFbXb23fpNytp1gAAAAQ"] [Tue Jun 09 10:27:36.776947 2026] [security2:error] [pid 491000:tid 491000] [client 64.62.197.77:32839] [client 64.62.197.77] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg " ... show less	Hacking Web App Attack
🇳🇱 45.128.199.24	2 hours ago	[Tue Jun 09 10:39:45.668190 2026] [security2:error] [pid 474885:tid 474885] [client 45.128.199.24:48 ... show more [Tue Jun 09 10:39:45.668190 2026] [security2:error] [pid 474885:tid 474885] [client 45.128.199.24:48019] [client 45.128.199.24] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/wp-content/uploads/wp-config.php"] [unique_id "aiftcUGYr71Or7dPR0R9bQAAABM"], referer: http://fambus.nl/wp-content/uploads/wp-config.php [Tue Jun 09 10:39:45.988656 2026] [security2:error] [pid 474885:tid 474885] [client 45.128.199.24:48019] [client 45.128.199.24] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line ... show less	Hacking Web App Attack
🇬🇧 34.13.32.255	3 hours ago	[Tue Jun 09 10:00:03.056429 2026] [security2:error] [pid 490991:tid 490991] [client 34.13.32.255:0] ... show more [Tue Jun 09 10:00:03.056429 2026] [security2:error] [pid 490991:tid 490991] [client 34.13.32.255:0] [client 34.13.32.255] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.fambus.nl"] [uri "/wp-json/gravitysmtp/v1/tests/mock-data"] [unique_id "aifkI4YYhi3ZAY-HwdrCIAAAAAI"] [Tue Jun 09 10:00:03.066577 2026] [security2:error] [pid 474885:tid 474885] [client 34.13.32.255:0] [client 34.13.32.255] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Tota ... show less	Hacking Web App Attack
🇩🇪 134.209.232.173	3 hours ago	[Tue Jun 09 09:50:02.216739 2026] [security2:error] [pid 442286:tid 442286] [client 134.209.232.173: ... show more [Tue Jun 09 09:50:02.216739 2026] [security2:error] [pid 442286:tid 442286] [client 134.209.232.173:19239] [client 134.209.232.173] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/odinhttpcall1780998602"] [unique_id "aifhyjdaLRV1SrwwX1JwAAAAAAs"] [Tue Jun 09 09:50:02.218263 2026] [security2:error] [pid 474876:tid 474876] [client 134.209.232.173:18777] [client 134.209.232.173] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] ... show less	Hacking Web App Attack
🇳🇱 2001:1c00:3:400:31e6:7a63:7db5:6186	4 hours ago	[Tue Jun 09 08:46:18.875177 2026] [security2:error] [pid 442289:tid 442289] [client 2001:1c00:3:400: ... show more [Tue Jun 09 08:46:18.875177 2026] [security2:error] [pid 442289:tid 442289] [client 2001:1c00:3:400:31e6:7a63:7db5:6186:6241] [client 2001:1c00:3:400:31e6:7a63:7db5:6186] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/wpad.dat"] [unique_id "aifS2nCd7B4hbV6PxT3PlwAAAAw"] [Tue Jun 09 08:46:18.947284 2026] [security2:error] [pid 474864:tid 474864] [client 2001:1c00:3:400:31e6:7a63:7db5:6186:6244] [client 2001:1c00:3:400:31e6:7a63:7db5:6186] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [lin ... show less	Hacking Web App Attack
🇦🇪 47.91.125.252	6 hours ago	[Tue Jun 09 07:15:00.167823 2026] [security2:error] [pid 389285:tid 389285] [client 47.91.125.252:38 ... show more [Tue Jun 09 07:15:00.167823 2026] [security2:error] [pid 389285:tid 389285] [client 47.91.125.252:38182] [client 47.91.125.252] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/dns-query"] [unique_id "aie9dBtacSuCeXgE-eeKlgAAAAM"] [Tue Jun 09 07:15:00.168651 2026] [security2:error] [pid 389285:tid 389285] [client 47.91.125.252:38182] [client 47.91.125.252] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [l ... show less	Hacking Web App Attack
🇳🇱 91.92.243.210	6 hours ago	[Tue Jun 09 07:10:15.483866 2026] [security2:error] [pid 100496:tid 100496] [client 91.92.243.210:60 ... show more [Tue Jun 09 07:10:15.483866 2026] [security2:error] [pid 100496:tid 100496] [client 91.92.243.210:60254] [client 91.92.243.210] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/.env"] [unique_id "aie8V61D8cf7HCY1_es6aAAAAAI"] [Tue Jun 09 07:10:15.729878 2026] [security2:error] [pid 167931:tid 167931] [client 91.92.243.210:64582] [client 91.92.243.210] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "C ... show less	Hacking Web App Attack
🇳🇱 91.92.42.86	6 hours ago	[Tue Jun 09 06:38:23.287333 2026] [security2:error] [pid 100495:tid 100495] [client 91.92.42.86:4922 ... show more [Tue Jun 09 06:38:23.287333 2026] [security2:error] [pid 100495:tid 100495] [client 91.92.42.86:49228] [client 91.92.42.86] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/.git/config"] [unique_id "aie03-63cF-uDNq9SUcYrQAAAAA"], referer: http://fambus.nl/.git/config [Tue Jun 09 06:38:23.289232 2026] [security2:error] [pid 102499:tid 102499] [client 91.92.42.86:49214] [client 91.92.42.86] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Ex ... show less	Hacking Web App Attack
🇺🇸 136.116.198.170	7 hours ago	[Tue Jun 09 06:14:52.458519 2026] [security2:error] [pid 102564:tid 102564] [client 136.116.198.170: ... show more [Tue Jun 09 06:14:52.458519 2026] [security2:error] [pid 102564:tid 102564] [client 136.116.198.170:58542] [client 136.116.198.170] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 10)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/"] [unique_id "aievXLuVi1qR7ywWiRyzeQAAAAY"], referer: https://fambus.nl/ [Tue Jun 09 06:14:53.160388 2026] [security2:error] [pid 167929:tid 167929] [client 136.116.198.170:58550] [client 136.116.198.170] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceed ... show less	Hacking Web App Attack
🇩🇪 213.209.159.74	7 hours ago	[Tue Jun 09 05:41:13.078372 2026] [security2:error] [pid 167929:tid 167929] [client 213.209.159.74:5 ... show more [Tue Jun 09 05:41:13.078372 2026] [security2:error] [pid 167929:tid 167929] [client 213.209.159.74:50968] [client 213.209.159.74] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171:443"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/"] [unique_id "aienee3U7fSOUYu9pPTXxwAAAAc"] [Tue Jun 09 05:41:13.152407 2026] [security2:error] [pid 102324:tid 102324] [client 213.209.159.74:51198] [client 213.209.159.74] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920 ... show less	Hacking Web App Attack
🇺🇸 66.132.186.197	8 hours ago	[Tue Jun 09 05:16:37.987132 2026] [security2:error] [pid 102499:tid 102499] [client 66.132.186.197:5 ... show more [Tue Jun 09 05:16:37.987132 2026] [security2:error] [pid 102499:tid 102499] [client 66.132.186.197:52302] [client 66.132.186.197] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/"] [unique_id "aiehtTrqip8tAzUz49yj-QAAAAU"] [Tue Jun 09 05:16:39.958756 2026] [security2:error] [pid 100499:tid 100499] [client 66.132.186.197:52384] [client 66.132.186.197] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350" ... show less	Hacking Web App Attack
🇳🇱 2001:1c00:3:400:28ac:210c:2b4b:f696	11 hours ago	[Tue Jun 09 01:52:43.802827 2026] [security2:error] [pid 52646:tid 52646] [client 2001:1c00:3:400:28 ... show more [Tue Jun 09 01:52:43.802827 2026] [security2:error] [pid 52646:tid 52646] [client 2001:1c00:3:400:28ac:210c:2b4b:f696:12042] [client 2001:1c00:3:400:28ac:210c:2b4b:f696] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/wpad.dat"] [unique_id "aidx69lkjM4IR-tJ3DG-PQAAAAk"] [Tue Jun 09 01:52:58.835727 2026] [security2:error] [pid 52648:tid 52648] [client 2001:1c00:3:400:28ac:210c:2b4b:f696:12048] [client 2001:1c00:3:400:28ac:210c:2b4b:f696] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line ... show less	Hacking Web App Attack
🇺🇸 45.45.237.8	11 hours ago	[Tue Jun 09 01:45:32.769949 2026] [security2:error] [pid 4174335:tid 4174335] [client 45.45.237.8:0] ... show more [Tue Jun 09 01:45:32.769949 2026] [security2:error] [pid 4174335:tid 4174335] [client 45.45.237.8:0] [client 45.45.237.8] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "pop-the-slots.com"] [uri "/.git/config"] [unique_id "aidwPO_KaRGF41W7gl_xOAAAAAw"] [Tue Jun 09 01:45:33.185867 2026] [security2:error] [pid 4174336:tid 4174336] [client 45.45.237.8:0] [client 45.45.237.8] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity ... show less	Hacking Web App Attack
🇳🇱 45.148.10.200	15 hours ago	[Mon Jun 08 21:29:02.467569 2026] [security2:error] [pid 4037099:tid 4037099] [client 45.148.10.200: ... show more [Mon Jun 08 21:29:02.467569 2026] [security2:error] [pid 4037099:tid 4037099] [client 45.148.10.200:38862] [client 45.148.10.200] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/"] [unique_id "aic0HiTgkCj2l3lr9_hdgwAAAAI"] [Mon Jun 08 21:29:02.533468 2026] [security2:error] [pid 4017404:tid 4017404] [client 45.148.10.200:38864] [client 45.148.10.200] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350" ... show less	Hacking Web App Attack
🇳🇱 2001:1c00:3:400:28ac:210c:2b4b:f696	17 hours ago	[Mon Jun 08 19:31:26.036216 2026] [security2:error] [pid 3995666:tid 3995666] [client 2001:1c00:3:40 ... show more [Mon Jun 08 19:31:26.036216 2026] [security2:error] [pid 3995666:tid 3995666] [client 2001:1c00:3:400:28ac:210c:2b4b:f696:6895] [client 2001:1c00:3:400:28ac:210c:2b4b:f696] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/wpad.dat"] [unique_id "aicYjlt05e0-aK94IRMHKAAAAAU"] [Mon Jun 08 19:31:36.402576 2026] [security2:error] [pid 3996230:tid 3996230] [client 2001:1c00:3:400:28ac:210c:2b4b:f696:6901] [client 2001:1c00:3:400:28ac:210c:2b4b:f696] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] ... show less	Hacking Web App Attack
🇷🇴 80.94.95.211	17 hours ago	[Mon Jun 08 19:25:02.658929 2026] [security2:error] [pid 3979239:tid 3979239] [client 80.94.95.211:2 ... show more [Mon Jun 08 19:25:02.658929 2026] [security2:error] [pid 3979239:tid 3979239] [client 80.94.95.211:2025] [client 80.94.95.211] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171:443"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/.env"] [unique_id "aicXDl80s91McwsRWvo_5gAAABE"] [Mon Jun 08 19:25:02.659551 2026] [security2:error] [pid 3979239:tid 3979239] [client 80.94.95.211:2025] [client 80.94.95.211] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line ... show less	Hacking Web App Attack
🇳🇱 195.178.110.199	18 hours ago	[Mon Jun 08 19:05:25.976574 2026] [security2:error] [pid 3903143:tid 3903143] [client 195.178.110.19 ... show more [Mon Jun 08 19:05:25.976574 2026] [security2:error] [pid 3903143:tid 3903143] [client 195.178.110.199:45702] [client 195.178.110.199] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 10)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\var/log/apache2/access.log"] [unique_id "aicSdVWdfTAh_qLH-OcpXgAAABk"] [Mon Jun 08 19:05:25.978492 2026] [security2:error] [pid 3971439:tid 3971439] [client 195.178.110.199:45684] [client 195.178.110.199] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110 ... show less	Hacking Web App Attack
🇳🇱 2001:1c00:3:400:8d6f:36d7:a3fa:acfd	20 hours ago	[Mon Jun 08 16:42:11.529772 2026] [security2:error] [pid 3775203:tid 3775203] [client 2001:1c00:3:40 ... show more [Mon Jun 08 16:42:11.529772 2026] [security2:error] [pid 3775203:tid 3775203] [client 2001:1c00:3:400:8d6f:36d7:a3fa:acfd:59408] [client 2001:1c00:3:400:8d6f:36d7:a3fa:acfd] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/wpad.dat"] [unique_id "aibw49T0cvO-I7CL1TlqdgAAAG8"] [Mon Jun 08 16:42:13.729099 2026] [security2:error] [pid 3829530:tid 3829530] [client 2001:1c00:3:400:8d6f:36d7:a3fa:acfd:58761] [client 2001:1c00:3:400:8d6f:36d7:a3fa:acfd] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf" ... show less	Hacking Web App Attack
🇫🇮 34.88.51.176	21 hours ago	[Mon Jun 08 15:32:10.078193 2026] [security2:error] [pid 3829535:tid 3829535] [client 34.88.51.176:0 ... show more [Mon Jun 08 15:32:10.078193 2026] [security2:error] [pid 3829535:tid 3829535] [client 34.88.51.176:0] [client 34.88.51.176] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "pop-the-slots.com"] [uri "/wp-json/gravitysmtp/v1/settings"] [unique_id "aibgegKJbLlF4GDzoq6-2AAAAAk"] [Mon Jun 08 15:32:10.085220 2026] [security2:error] [pid 3777473:tid 3777473] [client 34.88.51.176:0] [client 34.88.51.176] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Tot ... show less	Hacking Web App Attack
🇧🇪 34.79.242.244	21 hours ago	[Mon Jun 08 15:32:05.855517 2026] [security2:error] [pid 3828876:tid 3828876] [client 34.79.242.244: ... show more [Mon Jun 08 15:32:05.855517 2026] [security2:error] [pid 3828876:tid 3828876] [client 34.79.242.244:0] [client 34.79.242.244] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 10)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "pop-the-slots.com"] [uri "/ads.txt"] [unique_id "aibgdeB0_sZMF8pjUs387wAAAAU"] [Mon Jun 08 15:32:05.964092 2026] [security2:error] [pid 3828876:tid 3828876] [client 34.79.242.244:0] [client 34.79.242.244] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 10)"] [se ... show less	Hacking Web App Attack
🇺🇸 185.238.231.46	22 hours ago	[Mon Jun 08 15:20:51.358082 2026] [security2:error] [pid 3777475:tid 3777475] [client 185.238.231.46 ... show more [Mon Jun 08 15:20:51.358082 2026] [security2:error] [pid 3777475:tid 3777475] [client 185.238.231.46:54337] [client 185.238.231.46] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "fambus.nl"] [uri "/wp-content/uploads/wp-config.php"] [unique_id "aibd0xuqMjE5j0rbJlAmqgAAAAE"], referer: http://fambus.nl/wp-content/uploads/wp-config.php [Mon Jun 08 15:20:51.696979 2026] [security2:error] [pid 3777475:tid 3777475] [client 185.238.231.46:54337] [client 185.238.231.46] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf" ... show less	Hacking Web App Attack
🇳🇱 45.148.10.200	22 hours ago	[Mon Jun 08 15:05:20.828247 2026] [security2:error] [pid 3777473:tid 3777473] [client 45.148.10.200: ... show more [Mon Jun 08 15:05:20.828247 2026] [security2:error] [pid 3777473:tid 3777473] [client 45.148.10.200:49768] [client 45.148.10.200] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/"] [unique_id "aibaMDpBFh4HNXFk2TlDBQAAAAA"] [Mon Jun 08 15:05:20.889621 2026] [security2:error] [pid 3775200:tid 3775200] [client 45.148.10.200:49772] [client 45.148.10.200] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350" ... show less	Hacking Web App Attack
🇧🇷 45.205.1.80	22 hours ago	[Mon Jun 08 14:57:57.195023 2026] [security2:error] [pid 3775201:tid 3775201] [client 45.205.1.80:48 ... show more [Mon Jun 08 14:57:57.195023 2026] [security2:error] [pid 3775201:tid 3775201] [client 45.205.1.80:48420] [client 45.205.1.80] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171:443"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/"] [unique_id "aibYdYS7G4Q5Oej4GbnB-wAAAG0"] [Mon Jun 08 14:57:59.814820 2026] [security2:error] [pid 3775193:tid 3775193] [client 45.205.1.80:48432] [client 45.205.1.80] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [m ... show less	Hacking Web App Attack
🇺🇸 165.154.206.222	22 hours ago	[Mon Jun 08 14:39:00.098579 2026] [security2:error] [pid 3775207:tid 3775207] [client 165.154.206.22 ... show more [Mon Jun 08 14:39:00.098579 2026] [security2:error] [pid 3775207:tid 3775207] [client 165.154.206.222:37256] [client 165.154.206.222] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/"] [unique_id "aibUBFILF9w6ZakuRDR4MAAAAHE"] [Mon Jun 08 14:39:00.737087 2026] [security2:error] [pid 3777473:tid 3777473] [client 165.154.206.222:37432] [client 165.154.206.222] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id ... show less	Hacking Web App Attack
🇬🇧 34.142.50.103	22 hours ago	[Mon Jun 08 14:34:16.817057 2026] [security2:error] [pid 3777475:tid 3777475] [client 34.142.50.103: ... show more [Mon Jun 08 14:34:16.817057 2026] [security2:error] [pid 3777475:tid 3777475] [client 34.142.50.103:33394] [client 34.142.50.103] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "onderdelen.fambus.nl"] [uri "/wp-json/gravitysmtp/v1/tests/mock-data"] [unique_id "aibS6BuqMjE5j0rbJlAmFgAAAAE"] [Mon Jun 08 14:34:16.828385 2026] [security2:error] [pid 3775193:tid 3775193] [client 34.142.50.103:33390] [client 34.142.50.103] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anoma ... show less	Hacking Web App Attack