๐ฎ๐น
A000Z
2026-07-11 07:10:59
(2 minutes ago)
Fail2Ban: 188.132.249.138 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/ ...
show more
Fail2Ban: 188.132.249.138 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36 Edg/144.0.0.0
show less
Bad Web Bot
๐จ๐ญ
backslash
2026-07-04 07:36:00
(6 days ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
๐บ๐ธ
stechusa
2026-06-29 14:36:02
(1 week ago)
[Askari] | country=TR | Behavior: HTTP/1.1 over TLS, Concurrent page load during attack, Targeting s ...
show more
[Askari] | country=TR | Behavior: HTTP/1.1 over TLS, Concurrent page load during attack, Targeting specific pages
show less
Bad Web Bot
DDoS Attack
๐บ๐ธ
stechusa
2026-06-29 14:36:02
(1 week ago)
ELEVATED_THREAT | country=TR | ASN=High Speed For Internet Services L.L.C | 42 IPs targeting /catego ...
show more
ELEVATED_THREAT | country=TR | ASN=High Speed For Internet Services L.L.C | 42 IPs targeting /category/light-bulbs/incandescent-light-bulbs.html | HTTP/1.1 over TLS (elevated=True) | Facet request during elevated threat (facet_ratio=0.56, unique_ips=1190)
show less
Bad Web Bot
DDoS Attack
๐ช๐ธ
librebit
2026-06-27 16:13:03
(1 week ago)
Brute force
Brute-Force
๐ฌ๐ง
Oakley
2026-06-22 05:56:05
(2 weeks ago)
(confirmed_bot_sig) Confirmed bot
Hacking
๐น๐ท
Threat.live
2026-06-16 17:05:08
(3 weeks ago)
Suspicious Connection Attempts
Brute-Force
๐ฉ๐ช
Vegascosmetics
2026-06-16 13:07:43
(3 weeks ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐ฌ๐ง
anycast_ac
2026-06-13 23:33:03
(3 weeks ago)
[WebProtection] L4/L7 attack source ยท L4-22-CC-DROP ยท 5 hits/window
Port Scan
SSH
๐ช๐ธ
el-brujo
2026-06-07 12:34:10
(1 month ago)
Cloudflare WAF: Request Path: /php/controlar-botnet-con-php/msg1965926/ Request Query: ?PHPSESSID=vg ...
show more
Cloudflare WAF: Request Path: /php/controlar-botnet-con-php/msg1965926/ Request Query: ?PHPSESSID=vgqcrqu35sfv2emtctq1qh6jpb Host: forum.elhacker.net userAgent: Mozilla/5.0 (compatible; MSIE 6.0; Windows NT 11.0; Trident/5.0) Action: log Source: firewallManaged ASN Description: High Speed For Internet Services L.L.C Country: SY Method: GET Timestamp: 2026-06-07T12:34:10Z ruleId: 017d4edd6754438087991348543c4667. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐ฌ๐ง
Audir8 | RRHosting
2025-10-11 12:24:11
(8 months ago)
2025-10-11T14:24:06.391978+02:00 RRHosting-UK-01 wings[10438]: 2025/10/11 14:24:06 http: TLS handsha ...
show more
2025-10-11T14:24:06.391978+02:00 RRHosting-UK-01 wings[10438]: 2025/10/11 14:24:06 http: TLS handshake error from 188.132.249.138:43798: EOF
2025-10-11T14:24:06.504159+02:00 RRHosting-UK-01 wings[10438]: 2025/10/11 14:24:06 http: TLS handshake error from 188.132.249.138:44027: EOF
2025-10-11T14:24:06.565905+02:00 RRHosting-UK-01 wings[10438]: 2025/10/11 14:24:06 http: TLS handshake error from 188.132.249.138:44078: EOF
...
show less
Web App Attack
๐ธ๐ฌ
Vano Ganzzz
2025-10-11 03:15:58
(9 months ago)
Triggered Cloudflare WAF (l7ddos) from TR.
Action taken: BLOCK
ASN: 42083 (GUNEYDOGUTELEKOM)
Protoco ...
show more
Triggered Cloudflare WAF (l7ddos) from TR.
Action taken: BLOCK
ASN: 42083 (GUNEYDOGUTELEKOM)
Protocol: HTTP/2 (GET method)
Endpoint: /
Timestamp: 2025-10-11T03:15:58Z
Ray ID: 98cb323099beea6f
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
DDoS Attack
Bad Web Bot
๐บ๐ธ
SuperEvilLuke
2025-10-07 23:55:27
(9 months ago)
Malicious activity detected from 42083 GUNEYDOGUTELEKOM towards host dash.embotic.xyz (GET HTTP/1.1) ...
show more
Malicious activity detected from 42083 GUNEYDOGUTELEKOM towards host dash.embotic.xyz (GET HTTP/1.1) @ 2025-10-07T23:55:27Z (10 occurrences)
show less
DDoS Attack
Exploited Host
๐บ๐ธ
Audir8 | RRHosting
2025-10-05 20:51:33
(9 months ago)
2025-10-05T20:48:45.749376rrhostingusa wings[2058776]: 2025/10/05 20:48:44 http: TLS handshake error ...
show more
2025-10-05T20:48:45.749376rrhostingusa wings[2058776]: 2025/10/05 20:48:44 http: TLS handshake error from 188.132.249.138:57117: write tcp 10.0.0.206:8443->188.132.249.138:57117: write: broken pipe
2025-10-05T20:49:07.447689rrhostingusa wings[2058776]: 2025/10/05 20:48:54 http: TLS handshake error from 188.132.249.138:57252: write tcp 10.0.0.206:8443->188.132.249.138:57252: write: broken pipe
2025-10-05T20:49:25.446582rrhostingusa wings[2058776]: 2025/10/05 20:49:25 http: TLS handshake error from 188.132.249.138:57598: EOF
...
show less
Web App Attack
๐บ๐ธ
skycodee
2025-10-05 12:49:22
(9 months ago)
Repeated TLS handshake abuse against Pterodactyl Wings (port 8080)
DDoS Attack