๐บ๐ธ
TPI-Abuse
2026-06-30 12:34:28
(3 days ago)
(mod_security) mod_security (id:210730) triggered by 142.132.252.61 (static.61.252.132.142.clients.y ...
show more
(mod_security) mod_security (id:210730) triggered by 142.132.252.61 (static.61.252.132.142.clients.your-server.de): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 08:34:24.785673 2026] [security2:error] [pid 11344:tid 11344] [client 142.132.252.61:46008] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||citystreetsalon.com|F|2"] [data ".fionnardesign.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "citystreetsalon.com"] [uri "/www.fionnardesign.com"] [unique_id "akO30DVhs1NgctG7rDfQZwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฟ
ddw
2026-06-26 13:57:04
(1 week ago)
Access Violation Attempts - Multiple 403 Forbidden responses.
Hacking
Bad Web Bot
Web App Attack
๐ง๐ช
micmor_asbl
2026-06-25 03:52:29
(1 week ago)
asw-Joomla User : try to access forms...
Hacking
๐ฎ๐ฉ
hermawan
2026-06-23 19:30:57
(1 week ago)
1782243046.211923 142.132.252.61 103.166.156.58 65280_2-4-8-1-3_1360_7 2026-06-24 02:30:46 WIB
...
Email Spam
Hacking
๐ฒ๐ฝ
impra
2026-06-21 12:53:45
(1 week ago)
Detected 17 connection attempts.
Port Scan
Hacking
Web App Attack
๐ฌ๐ท
setupgr
2026-06-19 09:42:10
(2 weeks ago)
(mod_security) mod_security (id:11000011) triggered by 142.132.252.61 (DE/Germany/Saxony/Falkenstein ...
show more
(mod_security) mod_security (id:11000011) triggered by 142.132.252.61 (DE/Germany/Saxony/Falkenstein/-/[AS24940 HETZNER-AS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 19 12:42:06.864821 2026] [security2:error] [pid 2278:tid 2347] [remote 142.132.252.61:60806] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "clients.your-server.de" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: static.61.252.132.142.clients.your-server.de"] [severity "CRITICAL"] [hostname "tavernadimitris.com"] [uri "/"] [unique_id "ajUO7guYeXI6iTUJgvuzUwAAlwk"]
show less
Port Scan
๐ฌ๐ท
setupgr
2026-06-18 18:23:13
(2 weeks ago)
(mod_security) mod_security (id:11000011) triggered by 142.132.252.61 (DE/Germany/Saxony/Falkenstein ...
show more
(mod_security) mod_security (id:11000011) triggered by 142.132.252.61 (DE/Germany/Saxony/Falkenstein/-/[AS24940 HETZNER-AS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 18 21:23:10.220016 2026] [security2:error] [pid 3299839:tid 3299844] [remote 142.132.252.61:41874] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "clients.your-server.de" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: static.61.252.132.142.clients.your-server.de"] [severity "CRITICAL"] [hostname "cpanagiotou.gr"] [uri "/%CE%BA%CE%B1%CF%84%CE%B1%CF%83%CE%BA%CE%B5%CF%85%CE%AD%CF%82-%CE%BA%CF%84%CE%B9%CF%81%CE%AF%CF%89%CE%BD/"] [unique_id "ajQ3jrVo5z2-J_irJdJD_gAAwwI"]
show less
Port Scan
๐ฌ๐ง
Oakley
2026-06-16 00:03:19
(2 weeks ago)
(confirmed_bot_sig) Confirmed bot
Hacking
๐ฆ๐บ
MAGIC
2026-06-11 02:00:04
(3 weeks ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐จ๐ฆ
1gz
2026-06-09 01:33:23
(3 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: CHALLENGE
Protocol: HTTP/2 (GET met ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: CHALLENGE
Protocol: HTTP/2 (GET method)
Endpoint: /script.js
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ธ๐ฌ
mypatricks
2026-06-05 12:49:54
(4 weeks ago)
142.132.252.61 | Port: 9937 | DNS: static.61.252.132.142.clients.your-server.de 2026-06-05T20:49:52+ ...
show more
142.132.252.61 | Port: 9937 | DNS: static.61.252.132.142.clients.your-server.de 2026-06-05T20:49:52+08:00 Europe/Berlin | Fake HTTP Protocol detected! | UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 HTTP/1.1 443 GET | URL: / | Ref: - | Country: DE/Germany/+01:00 IP City: Falkenstein Linux a06f4cb96c9af46f-FRA/Frankfurt, Germany 1 hits/0 secs Browser 0
show less
Brute-Force
Web App Attack
Blog Spam
Web Spam
Exploited Host
๐ซ๐ท
masterguru
2026-05-30 18:54:10
(1 month ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 142.132.252.61 (DE/Germany/static.61.252.132.1 ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 142.132.252.61 (DE/Germany/static.61.252.132.142.clients.your-server.de): 1 in the last 3600 secs (0-193)
show less
Hacking
Anonymous
2026-05-28 13:55:09
(1 month ago)
SuspiciousBot Activity detected by FMBAD System 2026-05-28 16:55:09
Port Scan
Hacking
Bad Web Bot
Web App Attack
Anonymous
2026-05-28 12:55:04
(1 month ago)
SuspiciousBot Activity detected by FMBAD System 2026-05-28 15:55:04
Port Scan
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
bescared
2026-05-25 19:02:35
(1 month ago)
F2B - Malicious activity detected. URL Probing. -8ff06ede-
Hacking
Bad Web Bot
Web App Attack