๐ฌ๐ง
Oakley
2026-07-18 05:57:39
(23 hours ago)
(confirmed_bot_sig) Confirmed bot
Hacking
๐ซ๐ท
Sklurk
2026-07-09 01:04:18
(1 week ago)
Web App Attack
Web App Attack
๐ซ๐ท
Sklurk
2026-07-07 23:59:47
(1 week ago)
Web App Attack
Web App Attack
๐ซ๐ท
Sklurk
2026-06-23 04:06:07
(3 weeks ago)
Web App Attack
Web App Attack
๐ซ๐ท
Sklurk
2026-06-17 03:27:50
(1 month ago)
Web App Attack
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-06-06 10:38:42
(1 month ago)
dot file probe
Web App Attack
๐ต๐ฑ
sefinek.net
2026-04-04 09:06:58
(3 months ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (G ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (GET) | Endpoint: / | UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:01:42
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐ต๐ฑ
sefinek.net
2025-12-28 13:22:22
(6 months ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-11-24 09:45:25
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.245.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.245.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:45:18.871349 2025] [security2:error] [pid 22037:tid 22037] [client 216.26.245.76:42229] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.switchtool.iworklife.org"] [uri "/.env"] [unique_id "aSQpLpXVAFTacM4-teUe3wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 08:47:12
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.245.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.245.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:47:08.588566 2025] [security2:error] [pid 132008:tid 132028] [client 216.26.245.76:57447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.ingeconsultcr.com"] [uri "/.env"] [unique_id "aSQbjAH-XN5lTt6cMbed8QAAAE8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 06:08:23
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.245.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.245.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:08:18.981079 2025] [security2:error] [pid 11169:tid 11169] [client 216.26.245.76:33581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.tylerdroneservices.com"] [uri "/.svn/wc.db"] [unique_id "aSP2UpjERXLWljGygKmgkgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 03:35:13
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.245.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.245.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:34:49.961524 2025] [security2:error] [pid 25434:tid 25434] [client 216.26.245.76:47631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.abramson-offner.com"] [uri "/.git/HEAD"] [unique_id "aSPSWQzrOimpfuWLS9YoZgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
DEV-DNS
2025-11-04 05:49:12
(8 months ago)
(wordpress) Failed wordpress login from 216.26.245.76 (DE/Germany/State of Berlin/Berlin/-/[redacted ...
show more
(wordpress) Failed wordpress login from 216.26.245.76 (DE/Germany/State of Berlin/Berlin/-/[redacted])
show less
Brute-Force
๐บ๐ธ
Rip
2025-11-02 07:02:04
(8 months ago)
Authentication attack attempt. CMS Brute Force - Access Forbidden
Brute-Force
Web App Attack