๐ซ๐ท
Sklurk
2026-07-09 00:33:29
(1 day ago)
Web App Attack
Web App Attack
Anonymous
2026-05-13 11:40:28
(1 month ago)
RdpGuard detected brute-force attempt on RD-WEB
Brute-Force
๐ช๐ธ
librebit
2026-02-06 05:13:09
(5 months ago)
Brute force
Brute-Force
๐บ๐ธ
TPI-Abuse
2025-12-29 09:38:44
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.40.164 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.40.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:38:36.345287 2025] [security2:error] [pid 1471819:tid 1471819] [client 104.207.40.164:9409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "balmedia.com"] [uri "/.env"] [unique_id "aVJMHLtnlyNjm1IGQSAdtwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-29 09:00:33
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.40.164 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.40.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:00:26.721037 2025] [security2:error] [pid 2764245:tid 2764290] [client 104.207.40.164:48689] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "georgementz.com"] [uri "/.env"] [unique_id "aVJDKiEP6xcy_FVJSfECxQAAARE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-29 06:55:26
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.40.164 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.40.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:55:20.851301 2025] [security2:error] [pid 21671:tid 21671] [client 104.207.40.164:49917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "donaldcoleman.com"] [uri "/.git/HEAD"] [unique_id "aVIl2KWXKLSsXpQKfx7OhAAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-29 06:20:19
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.40.164 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.40.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:20:14.525940 2025] [security2:error] [pid 27015:tid 27015] [client 104.207.40.164:12491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lanistandifer.com"] [uri "/.svn/wc.db"] [unique_id "aVIdnrxt6rMFm87UtaHKigAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2025-12-24 00:45:30
(6 months ago)
Detected attack and reported by a human
DDoS Attack
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
SSH
Anonymous
2025-12-14 14:38:38
(6 months ago)
botnet
DDoS Attack
๐ต๐ฑ
sefinek.net
2025-12-05 00:09:33
(7 months ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
fbarela
2025-11-07 23:01:56
(8 months ago)
FortiGate SSL VPN login failures.
Hacking
Brute-Force
๐จ๐ฆ
wil.com
2025-10-28 22:24:49
(8 months ago)
GlobalProtect login attempts with user hhoward.
VPN IP
Brute-Force
Anonymous
2025-10-18 01:10:19
(8 months ago)
Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.18 is noted in report tim ...
show more
Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.18 is noted in report timestamp
show less
Hacking
Brute-Force
Anonymous
2025-10-17 19:10:43
(8 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
๐ช๐ธ
10dencehispahard SL
2025-10-13 05:17:44
(8 months ago)
WP probing for vulnerabilities
Hacking
Exploited Host