๐ณ๐ด
Abuse Buster
2026-07-03 10:20:13
(1 day ago)
104.219.236.111 - [03/Jul/2026:12:20:08 +0200] "GET /media/jui/ HTTP/2.0" 404 1835 "-" "Mozilla/5.0 ...
show more
104.219.236.111 - [03/Jul/2026:12:20:08 +0200] "GET /media/jui/ HTTP/2.0" 404 1835 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
104.219.236.111 - [03/Jul/2026:12:20:08 +0200] "GET /media/system/ HTTP/2.0" 403 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
104.219.236.111 - [03/Jul/2026:12:20:09 +0200] "GET /index.php?option=com_jce HTTP/2.0" 403 1835 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
104.219.236.111 - [03/Jul/2026:12:20:10 +0200] "GET /index.php?option=com_jce&task=profiles.import HTTP/2.0" 403 1843 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐ฎ๐ฉ
David Koswari
2026-07-03 06:39:00
(1 day ago)
REQ_BLOCKED_SECURITY
DDoS Attack
FTP Brute-Force
Ping of Death
Port Scan
Hacking
SQL Injection
Spoofing
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
SSH
IoT Targeted
๐ณ๐ฑ
Site.eu
2026-07-02 21:59:29
(1 day ago)
Excessive multi-domain requests
Brute-Force
๐ฉ๐ช
ghostwarriors
2026-07-02 13:50:08
(2 days ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ฌ
HighWay
2026-07-02 13:23:39
(2 days ago)
104.219.236.111 - - [02/Jul/2026:13:23:36 +0000] "GET /index.php?option=com_jce HTTP/1.1" 500 28269 ...
show more
104.219.236.111 - - [02/Jul/2026:13:23:36 +0000] "GET /index.php?option=com_jce HTTP/1.1" 500 28269 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
104.219.236.111 - - [02/Jul/2026:13:23:37 +0000] "GET /index.php?option=com_jce&task=profiles.import HTTP/1.1" 200 549 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
104.219.236.111 - - [02/Jul/2026:13:23:37 +0000] "GET /index.php?option=com_jce&controller=profiles&task=import HTTP/1.1" 500 28273 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
104.219.236.111 - - [02/Jul/2026:13:23:37 +0000] "GET /index.php?option=com_jce&task=profile.apply HTTP/1.1" 303 4615 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
104.219.236.111 - - [02/Jul/2026:13:23:38 +0000] "GET /inde
...
show less
Web Spam
Bad Web Bot
Web App Attack
๐ฉ๐ช
yvoictra
2026-07-02 11:08:22
(2 days ago)
Bloqueado automรกticamente por CrowdSec. Escenario: crowdsecurity/http-admin-interface-probing
Web App Attack
Anonymous
2026-07-02 04:35:02
(2 days ago)
IP banned by Fail2Ban in jail nginx-abusive-ips
Web App Attack
Brute-Force
Bad Web Bot
๐ฉ๐ช
FeG Deutschland
2026-07-01 16:54:34
(3 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247
Exploited Host
Web App Attack
Anonymous
2026-07-01 16:29:00
(3 days ago)
Unauthenticated editor-profile/file upload in Joomla Content Editor JCE before 2.9.99.5 (CVE-2026-48 ...
show more
Unauthenticated editor-profile/file upload in Joomla Content Editor JCE before 2.9.99.5 (CVE-2026-48907)
show less
Hacking
๐จ๐ฆ
1gz
2026-07-01 10:10:51
(3 days ago)
Triggered Cloudflare WAF (firewallManaged) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET meth ...
show more
Triggered Cloudflare WAF (firewallManaged) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฉ๐ช
abuse-detection
2026-07-01 09:43:51
(3 days ago)
Web security detection (repeated-4xx-web-probes); path=/halaman-tidak-ada-68214; status=404
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 01:45:54
(3 days ago)
(mod_security) mod_security (id:210730) triggered by 104.219.236.111 (UmarRDP03486335398.com): 1 in ...
show more
(mod_security) mod_security (id:210730) triggered by 104.219.236.111 (UmarRDP03486335398.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 21:45:47.026125 2026] [security2:error] [pid 15525:tid 15525] [client 104.219.236.111:42696] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||med-engineering.com|F|2"] [data ".inc"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "med-engineering.com"] [uri "/up_3248.inc"] [unique_id "akRxS7xpg-3CK-h1D2NTtQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-01 01:06:56
(3 days ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-30 17:01:15
(4 days ago)
Excessive multi-domain requests
Brute-Force
Anonymous
2026-06-30 11:33:00
(4 days ago)
Multiple web server 400 error codes from same source ip
Web App Attack