๐ช๐ธ
librebit
2026-06-24 03:29:08
(5 days ago)
Brute force
Brute-Force
๐ฉ๐ช
4server
2026-04-21 12:34:31
(2 months ago)
[TueApr2114:34:29.9067542026][security2:error][pid3025238:tid3025253][client104.207.60.137:0]ModSecu ...
show more
[TueApr2114:34:29.9067542026][security2:error][pid3025238:tid3025253][client104.207.60.137:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(\?:/\(\?:\^\|/\)\\\\\\\\.\(env\|git\|svn\|hg\|DS_Store\)\|/\(\?:wp-config\|\\\\\\\\.htaccess\|\\\\\\\\.htpasswd\)\|\\\\\\\\.\(\?:sql\|bak\|old\|log\)\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"gpwealth.ch\"][uri\"/dump.sql\"][unique_id\"aedu1ZrE_IcxiUza34QemwAAAAU\"]
show less
Port Scan
Brute-Force
Web App Attack
๐ซ๐ฎ
as211431.net
2026-03-22 14:56:11
(3 months ago)
Triggered Cloudflare WAF (firewallCustom) from CA.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from CA.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฆ๐บ
oncord
2026-02-24 11:27:27
(4 months ago)
Form spam
Web Spam
๐ฆ๐บ
oncord
2026-02-19 21:57:30
(4 months ago)
Form spam
Web Spam
๐ฆ๐บ
oncord
2026-02-14 02:41:35
(4 months ago)
Form spam
Web Spam
๐บ๐ธ
TPI-Abuse
2026-02-11 22:13:36
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 17:13:23.725248 2026] [security2:error] [pid 14810:tid 14810] [client 104.207.60.137:57085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "argun.wine"] [uri "/backend/.env"] [unique_id "aYz_A8leDTODl_zwF7-nsAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 15:25:51
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:25:47.597647 2026] [security2:error] [pid 16476:tid 16511] [client 104.207.60.137:28763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antidote-it.com"] [uri "/.env.save"] [unique_id "aYtN-09tKsgevCjMBZp6OgAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 05:13:31
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:13:26.798576 2026] [security2:error] [pid 23199:tid 23210] [client 104.207.60.137:33293] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idwic.com"] [uri "/test/.git/config"] [unique_id "aYq-dn16UGkN-LIDmLr4_gAAAIA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 03:27:55
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:27:51.627186 2026] [security2:error] [pid 29667:tid 29667] [client 104.207.60.137:18059] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirklandhighlands.org"] [uri "/.env.save"] [unique_id "aYqlt_5hm0SoZH92kI6tuQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 03:11:41
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:11:36.034492 2026] [security2:error] [pid 14705:tid 14705] [client 104.207.60.137:56871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnerakhareedu.com"] [uri "/.env"] [unique_id "aYqh6BBf6OjemKxW_Cg8JQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 02:28:35
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:28:25.740097 2026] [security2:error] [pid 26884:tid 26884] [client 104.207.60.137:43403] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kimpitchellandassociatesinc.com"] [uri "/.env"] [unique_id "aYqXyZxyY94jlQKm_hZJwAAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-02-09 22:59:11
(4 months ago)
Auto-ban: >3000 req/min op 2026-02-09
Hacking
Web App Attack
SSH
๐ฆ๐บ
oncord
2026-01-31 09:49:31
(4 months ago)
Form spam
Web Spam
๐จ๐ญ
backslash
2026-01-16 11:50:06
(5 months ago)
block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4
Web Spam