๐ฉ๐ช
pltcldvlpr
2026-07-13 06:55:22
(1 day ago)
Bogus Useragent: 160.30.179.145 - - [13/Jul/2026:08:55:21 +0200] "GET /protocol?id=st_6_106&offset=1 ...
show more
Bogus Useragent: 160.30.179.145 - - [13/Jul/2026:08:55:21 +0200] "GET /protocol?id=st_6_106&offset=1950&seq=1966 HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible; MSIE 6.0; Windows NT 5.0; Trident/5.1)" asn=153307 org="Bangladesh Online Service" country=BD
...
show less
Bad Web Bot
๐บ๐ธ
kosada.com
2026-07-11 09:10:21
(3 days ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-06-29 14:59:35
(2 weeks ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐ฎ๐ฉ
it.inka
2026-06-11 14:00:49
(1 month ago)
160.30.179.145 - - [11/Jun/2026:21:00:49 +0700] "GET /?or_id=slot1221 HTTP/1.1" 403 189 "https://e-o ...
show more
160.30.179.145 - - [11/Jun/2026:21:00:49 +0700] "GET /?or_id=slot1221 HTTP/1.1" 403 189 "https://e-office.inka.co.id/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐ฉ๐ช
Vegascosmetics
2026-06-09 09:05:23
(1 month ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated encoding. Vegas Security
DDoS Attack
Hacking
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-05-11 16:58:13
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 160.30.179.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 160.30.179.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 12:58:02.796079 2026] [security2:error] [pid 3706:tid 3706] [client 160.30.179.145:36168] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fruitacpa.com.rooksfamily.com"] [uri "/.env"] [unique_id "agIKmvwdv-24NPLqLHmYIQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
PeravixGroup
2026-05-11 15:11:06
(2 months ago)
Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ...
show more
Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud
show less
IoT Targeted
Brute-Force
๐ฌ๐ง
pinguin
2026-05-11 00:42:22
(2 months ago)
Triggered Cloudflare WAF (firewallManaged) from BD.
Action taken: LOG
Protocol: HTTP/1.1 (GET method ...
show more
Triggered Cloudflare WAF (firewallManaged) from BD.
Action taken: LOG
Protocol: HTTP/1.1 (GET method)
Endpoint: /.env
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ณ๐ฑ
homeshowdomain.nl
2026-05-10 22:00:40
(2 months ago)
Auto-ban: >3000 req/min op 2026-05-10
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-05 19:59:48
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 160.30.179.145 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 160.30.179.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 15:59:33.835405 2026] [security2:error] [pid 20247:tid 20263] [client 160.30.179.145:38472] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bh4sale.omegaoak.com"] [uri "/.env"] [unique_id "afpMJYPLSGANrtHSIHepXgAAAIw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-05-05 15:58:58
(2 months ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-04-11 19:21:28
(3 months ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
Anonymous
2026-04-10 17:15:21
(3 months ago)
Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ...
show more
Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in email-link.asp
show less
Exploited Host
Bad Web Bot
๐ฑ๐ป
garmtech.com
2026-04-09 07:22:01
(3 months ago)
IM360 WAF: Laravel .env file access
Web App Attack
๐ฑ๐ป
garmtech.com
2026-04-02 01:42:40
(3 months ago)
IM360 WAF: Laravel .env file access
Web App Attack