๐บ๐ธ
Rayulcifer
2026-07-09 23:10:46
(1 day ago)
64.236.146.118 - - [09/Jul/2026:18:10:45 -0500] "GET http://ipv4.download.thinkbroadband.com/1MB.zip ...
show more
64.236.146.118 - - [09/Jul/2026:18:10:45 -0500] "GET http://ipv4.download.thinkbroadband.com/1MB.zip HTTP/1.1" 403 363 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36"
64.236.146.118 - - [09/Jul/2026:18:10:45 -0500] "GET http://cachefly.cachefly.net/200mb.test HTTP/1.1" 403 363 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36"
64.236.146.118 - - [09/Jul/2026:18:10:45 -0500] "GET http://speedtest.tele2.net/1MB.zip HTTP/1.1" 403 363 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36"
64.236.146.118 - - [09/Jul/2026:18:10:45 -0500] "CONNECT speed.hetzner.de:443 HTTP/1.1" 403 344 "-" "-"
64.236.146.118 - - [09/Jul/2026:18:10:45 -0500] "CONNECT proof.ovh.net:443 HTTP/1.1" 403 344 "-" "-"
...
show less
Open Proxy
Port Scan
Hacking
Web App Attack
SSH
๐ฆ๐ท
Bruno
2026-06-26 22:37:15
(2 weeks ago)
Port Scanner: 64.236.146.118
Port Scan
๐บ๐ธ
sumnone
2026-06-26 20:41:44
(2 weeks ago)
Port probing on unauthorized port 2087
Port Scan
Hacking
Exploited Host
๐ฌ๐ง
markawes
2026-06-26 20:01:51
(2 weeks ago)
[markis] Auto banned by Fail2Ban. Reason: Malicious web scan / attempted access to sensitive paths. ...
show more
[markis] Auto banned by Fail2Ban. Reason: Malicious web scan / attempted access to sensitive paths. Evidence:
64.236.146.118 - - [26/Jun/2026:21:01:47 +0100] "GET /.git/HEAD HTTP/1.1" 404 455 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36"
64.236.146.118 - - [26/Jun/2026:21:01:49 +0100] "GET /.git/config HTTP/1.1" 404 455 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
64.236.146.118 - - [26/Jun/2026:21:01:51 +0100] "GET /.git/logs/HEAD HTTP/1.1" 404 455 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36"
show less
Port Scan
Hacking
Web App Attack
๐ฉ๐ช
mueller-nils.com
2026-06-26 18:38:29
(2 weeks ago)
Jun 26 20:36:46 [host] kernel: [5607768.570115] [UFW BLOCK] IN=venet0 OUT= MAC= SRC=64.236.146.118 D ...
show more
Jun 26 20:36:46 [host] kernel: [5607768.570115] [UFW BLOCK] IN=venet0 OUT= MAC= SRC=64.236.146.118 DST=[munged] LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=13309 DF PROTO=TCP SPT=9671 DPT=8080 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 26 20:36:46 [host] kernel: [
show less
Port Scan
๐ณ๐ด
jad-abuse
2026-06-17 06:34:24
(3 weeks ago)
ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure ...
show more
ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure, env_probe, config_backup, aws_creds, actuator, ssh_keys. Observed by 1 sensor(s); 51 hits.
show less
Hacking
Web App Attack
Anonymous
2026-06-17 06:32:50
(3 weeks ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
Anonymous
2026-04-28 04:31:32
(2 months ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
Anonymous
2026-04-27 21:45:04
(2 months ago)
suspicious request in access.log
Web App Attack
๐บ๐ธ
Alvino
2026-04-27 21:08:32
(2 months ago)
Blocked due to using a VPN or data center IP with abuse: 23
Web Spam
VPN IP
๐ซ๐ฎ
as211431.net
2026-04-27 21:03:54
(2 months ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/config
UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-04-27 20:08:48
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 64.236.146.118 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 64.236.146.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 16:08:40.779240 2026] [security2:error] [pid 13022:tid 13036] [client 64.236.146.118:11466] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "unificationalliance.org.nothingwithoutwater.com"] [uri "/.git/config"] [unique_id "ae_CSPm4d81j8TNuQGcvxwAAAIk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-27 19:26:32
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 64.236.146.118 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 64.236.146.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 15:26:26.958597 2026] [security2:error] [pid 29460:tid 29460] [client 64.236.146.118:11313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "osmanhc.com"] [uri "/.git/config"] [unique_id "ae-4YgLNjWh6mLTv_v1K_QAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-04-27 18:52:09
(2 months ago)
Web App Attack