๐ช๐ธ
librebit
2026-07-05 18:14:58
(1 day ago)
Brute force
Brute-Force
๐ฉ๐ฐ
SaltySoftworks
2026-06-12 08:43:40
(3 weeks ago)
User agent spoofing
Spoofing
๐ฉ๐ช
HandyTreff.de
2026-05-08 23:25:34
(1 month ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -27.553 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -27.553 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (compatible; Dataprovider.com)
show less
Web App Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-04-29 14:09:25
(2 months ago)
(mod_security) mod_security (id:243420) triggered by 149.56.150.130 (crawl-149-56-150-130.dataprovid ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.150.130 (crawl-149-56-150-130.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 10:09:19.691637 2026] [security2:error] [pid 27902:tid 27902] [client 149.56.150.130:41215] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.lyounglaw.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.lyounglaw.com"] [uri "/contact.htm"] [unique_id "afIRD8exCOcyV9V4xljKLAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐ธ
Smel
2026-04-01 01:22:02
(3 months ago)
HTTP/80/443/8080 Unauthorized Probe, Hack -
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 07:18:57
(3 months ago)
(mod_security) mod_security (id:243420) triggered by 149.56.150.130 (crawl-149-56-150-130.dataprovid ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.150.130 (crawl-149-56-150-130.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 03:18:48.665973 2026] [security2:error] [pid 9276:tid 9355] [client 149.56.150.130:51775] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.totalbodycare753.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.totalbodycare753.com"] [uri "/"] [unique_id "ab5GWAjjYdU4l3Ar7WRV5QAAAck"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-27 21:06:38
(4 months ago)
(mod_security) mod_security (id:243420) triggered by 149.56.150.130 (crawl-149-56-150-130.dataprovid ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.150.130 (crawl-149-56-150-130.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 27 16:06:32.516686 2026] [security2:error] [pid 22006:tid 22006] [client 149.56.150.130:59519] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.homecheckinmaine.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.homecheckinmaine.com"] [uri "/contact.php"] [unique_id "aaIHWEG6BkBPf9-i12TjUAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
mrcrassi
2026-01-22 12:21:08
(5 months ago)
Triggered Cloudflare WAF (botFight) from CA.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET ...
show more
Triggered Cloudflare WAF (botFight) from CA.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Linux; Android 10; SM-G981B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.162 Mobile Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-01-20 15:44:35
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 149.56.150.130 (crawl-149-56-150-130.dataprovid ...
show more
(mod_security) mod_security (id:210730) triggered by 149.56.150.130 (crawl-149-56-150-130.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 10:44:30.987038 2026] [security2:error] [pid 3959:tid 3959] [client 149.56.150.130:52113] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.rodrandolph.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.rodrandolph.com"] [uri "/facebook.com"] [unique_id "aW-i3kT1eQNuUEh8-Q-F5QAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-10-26 18:02:35
(8 months ago)
(mod_security) mod_security (id:243420) triggered by 149.56.150.130 (crawl-149-56-150-130.dataprovid ...
show more
(mod_security) mod_security (id:243420) triggered by 149.56.150.130 (crawl-149-56-150-130.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 26 14:02:29.146549 2025] [security2:error] [pid 25293:tid 25293] [client 149.56.150.130:33069] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.bordalo-es.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.bordalo-es.com"] [uri "/index.html"] [unique_id "aP5iNe_nBnEL_4cdmhc_8gAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-09-18 04:15:19
(9 months ago)
(mod_security) mod_security (id:210730) triggered by 149.56.150.130 (crawl-149-56-150-130.dataprovid ...
show more
(mod_security) mod_security (id:210730) triggered by 149.56.150.130 (crawl-149-56-150-130.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 18 00:15:12.603817 2025] [security2:error] [pid 13550:tid 13550] [client 149.56.150.130:58807] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.technologymoods.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.technologymoods.com"] [uri "/[email protected] "] [unique_id "aMuHUPKOqvF0jUlN_Qk52gAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2025-08-10 05:43:16
(10 months ago)
Bad Web Bot
๐ฎ๐น
Progetto1
2025-06-26 12:51:02
(1 year ago)
Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
LotPhantom
2025-06-23 06:57:51
(1 year ago)
149.56.150.130 - - [23/Jun/2025:06:56:52 +0000] "OPTIONS / HTTP/1.1" 404 9 "-" "Mozilla/5.0 (compati ...
show more
149.56.150.130 - - [23/Jun/2025:06:56:52 +0000] "OPTIONS / HTTP/1.1" 404 9 "-" "Mozilla/5.0 (compatible; Dataprovider.com)"
...
show less
Web App Attack
๐ฎ๐น
Progetto1
2025-06-13 17:48:02
(1 year ago)
Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack