๐ณ๐ฑ
homeshowdomain.nl
2026-07-05 21:59:17
(5 hours ago)
Auto-ban: >3000 req/min op 2026-07-05
Web App Attack
SSH
Hacking
๐ฎ๐ช
AutosOnShow
2026-06-29 03:31:06
(1 week ago)
blocked for webapp attack | path requested: /.env | seen at 2026-06-29 03:30:20.539 |
Web App Attack
๐ณ๐ฑ
i-turnradio.nl
2026-06-24 11:30:19
(1 week ago)
2026-06-24 @ 13:30:18 (CET) ~ Blocked for trying to access: /s3cmd.ini
Web App Attack
๐ซ๐ท
dynamix
2026-06-13 17:25:25
(3 weeks ago)
Multiple WAF Violations
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-05-19 22:27:27
(1 month ago)
Known malicious PHP file or CMS probe
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-05-02 22:17:59
(2 months ago)
ThreatBook Intelligence: http_proxy,Gateway more details on https://threatbook.io/ip/104.207.55.44
2 ...
show more
ThreatBook Intelligence: http_proxy,Gateway more details on https://threatbook.io/ip/104.207.55.44
2026-05-02 02:45:02 /
2026-05-02 02:43:33 /
2026-05-02 02:39:42 /
show less
Web App Attack
Anonymous
2026-03-22 17:33:07
(3 months ago)
Forum/form spam
Web Spam
๐จ๐ฆ
SSH-Admin
2026-02-07 17:12:28
(4 months ago)
Probing for Exploits
Exploited Host
Web App Attack
๐ฆ๐บ
MAGIC
2026-01-19 02:07:58
(5 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐จ๐ฆ
SSH-Admin
2025-12-27 13:45:08
(6 months ago)
Probing for Exploits
Exploited Host
Web App Attack
๐ต๐ฑ
sefinek.net
2025-12-15 13:30:35
(6 months ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /genshin-stella-mod
UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-11-24 09:32:57
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.55.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.55.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:32:20.433052 2025] [security2:error] [pid 1716:tid 1716] [client 104.207.55.44:25563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.furryfriendzy.org"] [uri "/.svn/wc.db"] [unique_id "aSQmJMdjyRj1vcVvpFspMgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 08:29:23
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.55.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.55.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:29:18.401751 2025] [security2:error] [pid 4768:tid 4768] [client 104.207.55.44:20247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.peterlundman.com"] [uri "/.env"] [unique_id "aSQXXmRgshOJy4-1UlcZ1wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 07:37:33
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.55.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.55.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:37:09.480506 2025] [security2:error] [pid 26389:tid 26389] [client 104.207.55.44:28071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.36hoursonly.com"] [uri "/.svn/wc.db"] [unique_id "aSQLJUbi_6ppabs-XIATnwAAACw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 05:43:56
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.55.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.55.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:43:31.293139 2025] [security2:error] [pid 31262:tid 31262] [client 104.207.55.44:34561] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.digitview.com"] [uri "/.git/HEAD"] [unique_id "aSPwg83wCmrfda5DMPvX0wAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack