๐บ๐ธ
pixiekat
2026-06-27 17:23:30
(3 days ago)
[Sat Jun 27 17:23:22.606804 2026] [authz_core:error] [pid 365768:tid 365781] [client 52.188.198.96:3 ...
show more
[Sat Jun 27 17:23:22.606804 2026] [authz_core:error] [pid 365768:tid 365781] [client 52.188.198.96:31881] AH01630: client denied by server configuration: /var/www/html/.env
[Sat Jun 27 17:23:23.675680 2026] [authz_core:error] [pid 365797:tid 365807] [client 52.188.198.96:31886] AH01630: client denied by server configuration: /var/www/html/.env.local
[Sat Jun 27 17:23:28.206847 2026] [authz_core:error] [pid 365768:tid 365784] [client 52.188.198.96:31888] AH01630: client denied by server configuration: /var/www/html/.env.save
[Sat Jun 27 17:23:29.114117 2026] [authz_core:error] [pid 365768:tid 365786] [client 52.188.198.96:31877] AH01630: client denied by server configuration: /var/www/html/.env.prod
[Sat Jun 27 17:23:30.030059 2026] [authz_core:error] [pid 365797:tid 365808] [client 52.188.198.96:31880] AH01630: client denied by server configuration: /var/www/html/.env.old
...
show less
Brute-Force
๐บ๐ธ
xmission.com
2026-06-27 16:43:23
(3 days ago)
Blocked by UFW (TCP on 443)
Source port: 31938
TTL: 46
Packet length: 60
TOS: 0x00
This report (for ...
show more
Blocked by UFW (TCP on 443)
Source port: 31938
TTL: 46
Packet length: 60
TOS: 0x00
This report (for 52.188.198.96) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
Web App Attack
๐บ๐ธ
Moby
2026-06-27 15:18:58
(3 days ago)
52.188.198.96 - - [27/Jun/2026:10:18:53 -0500] "GET /.git/HEAD HTTP/1.1" 404 984 "-" "Mozilla/5.0 (M ...
show more
52.188.198.96 - - [27/Jun/2026:10:18:53 -0500] "GET /.git/HEAD HTTP/1.1" 404 984 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15" "75.88.18.221" "75.88.18.221"
52.188.198.96 - - [27/Jun/2026:10:18:56 -0500] "GET /.git/config HTTP/1.1" 404 984 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" "75.88.18.221" "75.88.18.221"
52.188.198.96 - - [27/Jun/2026:10:18:57 -0500] "GET /.git/logs/HEAD HTTP/1.1" 404 984 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" "75.88.18.221" "75.88.18.221"
...
show less
Web App Attack
๐ซ๐ท
dynamix
2026-06-27 14:27:30
(3 days ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
EnthecSolutions
2026-06-27 14:01:04
(3 days ago)
Detected by Enthec Solutions. | Attempts: 57 in 24h | Target port: 2087
Port Scan
Hacking
Anonymous
2026-06-27 13:04:25
(3 days ago)
PORT & IP Scan.
Port Scan
Brute-Force
๐ง๐ช
boxed-it
2026-06-27 12:52:07
(3 days ago)
GET /.git/refs/heads/master (Tarpitted for 47m39s, wasted 167.58kB)
Web App Attack
๐บ๐ธ
Axel
2026-06-14 20:12:57
(2 weeks ago)
Blocked by UFW on MVI [2078/tcp] | SPT: 49858 | TTL: 47 | LEN: 60 | TOS: 0x00 โข Reported by: github. ...
show more
Blocked by UFW on MVI [2078/tcp] | SPT: 49858 | TTL: 47 | LEN: 60 | TOS: 0x00 โข Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-14 19:14:34
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 52.188.198.96 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 52.188.198.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 15:14:27.914675 2026] [security2:error] [pid 14985:tid 14985] [client 52.188.198.96:48266] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.141"] [uri "/.git/config"] [unique_id "ai79k5eHODPzcUII9wAw-AAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-14 19:13:29
(2 weeks ago)
Honeypot hit: Empty payload (likely service probe); 2077 [1], 2082 [1], 2078 [1], 2095 [1], 2096 [1] ...
show more
Honeypot hit: Empty payload (likely service probe); 2077 [1], 2082 [1], 2078 [1], 2095 [1], 2096 [1], 2087 [1] TCP
Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB
show less
Port Scan
๐ซ๐ท
dynamix
2026-06-14 17:52:48
(2 weeks ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-14 17:42:53
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 52.188.198.96 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 52.188.198.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 13:42:47.233521 2026] [security2:error] [pid 24338:tid 24338] [client 52.188.198.96:49527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.153"] [uri "/.git/HEAD"] [unique_id "ai7oF9Feba73MXKyiGTqXQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
GabrielJST
2026-06-14 17:26:30
(2 weeks ago)
*Port Scan* detected from 52.188.198.96 (US/United States/-).
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-14 16:44:12
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 52.188.198.96 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 52.188.198.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 12:44:06.047661 2026] [security2:error] [pid 18350:tid 18350] [client 52.188.198.96:48141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.111"] [uri "/.git/HEAD"] [unique_id "ai7aVqB8TDKmLHeohchZ1QAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-14 16:03:57
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 52.188.198.96 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 52.188.198.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 12:03:52.610699 2026] [security2:error] [pid 30629:tid 30629] [client 52.188.198.96:49453] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.237"] [uri "/.git/HEAD"] [unique_id "ai7Q6OIJGOGWPjbhR5QV1QAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack