Anonymous
2026-07-07 18:06:47
(17 minutes ago)
Trying to access config files
Web App Attack
๐บ๐ธ
jfz-abuse
2026-07-07 13:19:59
(5 hours ago)
fail2ban: apache-php-recon
...
Web App Attack
Anonymous
2026-07-06 06:06:50
(1 day ago)
Trying to access config files
Web App Attack
๐ฒ๐น
Malta
2026-07-05 01:16:12
(2 days ago)
104.207.53.170 - - [05/Jul/2026:03:16:12 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ...
show more
104.207.53.170 - - [05/Jul/2026:03:16:12 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force
๐ซ๐ท
ELYAZ
2026-06-30 13:11:42
(1 week ago)
(y4) Failed scan -byebye- from 104.207.53.170 (GB/United Kingdom/-): (CF_ENABLE)
Hacking
๐ฒ๐ฝ
octageeks.com
2026-06-26 04:07:53
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-19 04:29:50
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:29:46.248519 2026] [security2:error] [pid 31192:tid 31192] [client 104.207.53.170:39237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kmp.net"] [uri "/.env.staging"] [unique_id "aZaRuoT7brPqXWfol5egCwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-19 04:06:09
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:06:05.850581 2026] [security2:error] [pid 28305:tid 28305] [client 104.207.53.170:10559] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kitebeach.com"] [uri "/backup/.git/config"] [unique_id "aZaMLTulXVg9pbrw-EEk0QAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
myagent.site
2026-02-19 02:13:06
(4 months ago)
Blocking for trying to access an exploit file: /dev/.git/config
Hacking
๐ฉ๐ช
Holger
2026-02-18 17:38:46
(4 months ago)
URL probing: GET /backup/.git/config
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-18 12:03:10
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:03:01.962857 2026] [security2:error] [pid 1183683:tid 1183683] [client 104.207.53.170:64351] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waterarchitecture.com"] [uri "/admin/.git/config"] [unique_id "aZWqdZ1zWLR4WWL6GgglfwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
000rosiu
2026-02-11 17:07:22
(4 months ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: BLOCK
ASN: 200373 (DREI-K-TECH-GMBH ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: BLOCK
ASN: 200373 (DREI-K-TECH-GMBH)
Protocol: HTTP/1.1 (GET method)
Endpoint: /.env
Timestamp: 2026-02-11T17:03:07Z
Ray ID: 9cc56af78e81d3a8
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Report generated by Cloudflare-WAF-To-AbuseIPDB:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-02-10 15:56:49
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:56:42.586570 2026] [security2:error] [pid 14512:tid 14512] [client 104.207.53.170:57251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antiterrorismbooks.net"] [uri "/site/.git/config"] [unique_id "aYtVOk5443G6Y2PwT3eTOgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
ParaBug
2026-02-10 15:32:51
(4 months ago)
104.207.53.170 - - [10/Feb/2026:16:32:50 +0100] "GET /test/.git/config HTTP/1.1" 301 3366 "-" "Mozil ...
show more
104.207.53.170 - - [10/Feb/2026:16:32:50 +0100] "GET /test/.git/config HTTP/1.1" 301 3366 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
...
show less
Phishing
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 04:47:27
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.53.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:47:24.106974 2026] [security2:error] [pid 17778:tid 17778] [client 104.207.53.170:30613] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magnawebinc.com"] [uri "/backup/.git/config"] [unique_id "aYq4XONHnkMqcFPIv41wgAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack