JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 170.64.180.84

170.64.180.84 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 170.64.180.84

Whois 170.64.180.84

IP Abuse Reports for 170.64.180.84:

This IP address has been reported a total of 44 times from 39 distinct sources. 170.64.180.84 was first reported on January 17th 2023, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-12-31 08:59:08 (5 months ago)	"GET /.git/config HTTP/1.1"	Hacking Web App Attack
🇬🇧 openstrike.co.uk	2025-12-31 06:14:52 (5 months ago)	2 attacks on VC URLs: GET /.git/config HTTP/1.1	Hacking
🇷🇺 lns.bz	2025-12-31 05:36:15 (5 months ago)	Web app attack [RU.MT]	Web App Attack
🇺🇸 octageeks.com	2025-12-31 05:06:53 (5 months ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇫🇷 LRob.fr	2025-12-31 03:15:03 (5 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
Anonymous	2025-12-31 03:03:48 (5 months ago)	[Wed Dec 31 04:03:46.898052 2025] [:error] [pid 3947399:tid 3947399] [client 170.64.180.84:59910] Mo ... show more [Wed Dec 31 04:03:46.898052 2025] [:error] [pid 3947399:tid 3947399] [client 170.64.180.84:59910] ModSecurity: Warning. Matched "Operator `PmFromFile' with parameter `restricted-files.data' against variable `REQUEST_FILENAME' (Value: `/.git/config' ) [file "/usr/local/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "126"] [id "930130"] [rev ""] [msg "Restricted File Access Attempt"] [data "Matched Data: .git/ found within REQUEST_FILENAME: /.git/config"] [severity "2"] [ver "OWASP_CRS/4.22.0-dev"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/ATTACK-LFI"] [tag "capec/1000/255/153/126"] [uri "/.git/config"] [unique_id "176715022669.736033"] [ref "o1,5v4,12t:utf8toUnicode,t:urlDecodeUni,t:normalizePathWin"] [Wed Dec 31 04:03:47.802000 2025] [:error] [pid 3947403:tid 3947403] [client 170.64.180.84:40752] ModSecur ... show less	Web App Attack
🇦🇺 Sam Burchmann	2025-12-31 02:49:40 (5 months ago)	HellPot honeypot: 2 connections, consumed 11.9 GB, max session 15.8m. Attack type: hacking, web app ... show more HellPot honeypot: 2 connections, consumed 11.9 GB, max session 15.8m. Attack type: hacking, web app attack. Top URLs: /.git/config(4) show less	Port Scan Hacking Bad Web Bot Web App Attack
🇷🇺 lns.bz	2025-12-31 00:42:46 (5 months ago)	Web app attack [RU.M9]	Web App Attack
🇩🇪 iRaphi05	2025-12-31 00:34:05 (5 months ago)	Honeypot detection: GET request on /.git/config User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWeb ... show more Honeypot detection: GET request on /.git/config User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 show less	Hacking Web App Attack
🇫🇷 GEDAL	2025-12-31 00:14:55 (5 months ago)	Fail2ban nginx-git @ <hostname> : 170.64.180.84 - - [31/Dec/2025:01:14:36 +0100] "GET /.git/config H ... show more Fail2ban nginx-git @ <hostname> : 170.64.180.84 - - [31/Dec/2025:01:14:36 +0100] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" show less	Brute-Force SSH
🇧🇬 pa4080	2025-12-31 00:06:53 (5 months ago)	Detected by ModSecurity. Request URI: /.git/config	Web App Attack
🇺🇸 OceanTreasure	2025-12-31 00:05:07 (5 months ago)	tcp/80; Git configuration exposure attempt: "GET /.git/config" @ 2025-12-30T23:57:47Z [proxy]	Web App Attack
🇬🇧 gurnip	2025-12-30 23:03:31 (5 months ago)	Vulnerability probe of page /.git/config, not found on server.	Brute-Force Web App Attack
🇦🇺 Starburst SysOp Team	2025-12-30 22:47:05 (5 months ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-syd2-4)	Hacking Bad Web Bot
🇫🇷 dwmp	2025-12-30 22:27:03 (5 months ago)	[30/Dec/2025:21:27:12.932438 +0100] aVQ1oKV@5cqWInw9FzE@4QAAAIg 170.64.180.84 41408 38.242.227.117 7 ... show more [30/Dec/2025:21:27:12.932438 +0100] aVQ1oKV@5cqWInw9FzE@4QAAAIg 170.64.180.84 41408 38.242.227.117 7080 [30/Dec/2025:23:25:46.448568 +0100] aVRRaqV@5cqWInw9FzFCRgAAAIM 170.64.180.84 47312 38.242.227.117 7080 [30/Dec/2025:23:27:02.872268 +0100] aVRRtgttGyL4SmCOWHc3kgAAAEo 170.64.180.84 47328 38.242.227.117 7080 ... show less	Brute-Force SSH

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 181.46.66.218

🇺🇸 50.62.181.140

🇰🇷 49.142.138.83

🇬🇧 35.203.211.89

🇳🇱 167.71.77.119

🇺🇸 162.216.149.97

🇮🇳 134.209.157.92

🇧🇬 91.191.209.74

🇺🇸 205.210.31.94

🇺🇸 205.210.31.87

🇳🇱 193.176.31.220

🇳🇱 176.65.139.56

🇨🇦 168.138.90.7

🇯🇵 152.32.146.235

🇨🇳 124.227.31.33

🇳🇱 93.123.72.166

🇱🇹 81.30.98.158

🇺🇸 65.75.240.199

🇸🇬 47.84.139.198

🇺🇸 20.64.104.78