๐บ๐ธ
Charlesiv
2026-07-12 14:51:59
(8 hours ago)
Triggered Cloudflare WAF (firewallCustom) from FR.
Action taken: BLOCK
ASN: 16276 (OVH SAS)
Protocol ...
show more
Triggered Cloudflare WAF (firewallCustom) from FR.
Action taken: BLOCK
ASN: 16276 (OVH SAS)
Protocol: HTTP/1.1 (GET method)
Endpoint: /
Timestamp: 2026-07-12T12:30:31Z
Ray ID: a1a00f46e855153b
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0
show less
Bad Web Bot
๐ฉ๐ช
findlab
2026-07-03 03:00:02
(1 week ago)
Backdrop CMS module - malicious activity detected
Bad Web Bot
Web App Attack
๐ต๐ฑ
sefinek.net
2026-07-02 07:00:41
(1 week ago)
Triggered Cloudflare WAF (firewallCustom) from FR.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (G ...
show more
Triggered Cloudflare WAF (firewallCustom) from FR.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (GET) | Endpoint: / | UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36 Edg/145.0.0.0 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
Anonymous
2026-06-28 11:57:26
(2 weeks ago)
PSCDE WEBFORM SPAM 217.182.137.64 (ns3074832.ip-217-182-137.eu)
Web Spam
Anonymous
2026-06-26 15:00:06
(2 weeks ago)
Unauthorized access (80/tcp/http)
Port Scan
Web App Attack
Anonymous
2026-06-22 02:01:42
(2 weeks ago)
Brute forcing Wordpress login
Hacking
Web App Attack
๐ฎ๐น
mgarofano80
2026-06-10 18:19:22
(1 month ago)
Brute-Force
Web App Attack
๐ซ๐ฎ
as211431.net
2026-06-08 20:29:36
(1 month ago)
Triggered Cloudflare WAF (firewallCustom) from FR.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from FR.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
Anonymous
2026-03-07 03:04:18
(4 months ago)
Malicious activity detected
Hacking
Web App Attack
๐ธ๐ฎ
administrator
2026-03-03 18:52:04
(4 months ago)
2026-03-03 09:09:57,666 fail2ban.actions [779153]: NOTICE [ninjafirewall-syslog] Ban 217.182 ...
show more
2026-03-03 09:09:57,666 fail2ban.actions [779153]: NOTICE [ninjafirewall-syslog] Ban 217.182.137.64
2026-03-03 16:10:15,165 fail2ban.actions [779153]: NOTICE [ninjafirewall-syslog] Ban 217.182.137.64
2026-03-03 19:52:03,183 fail2ban.actions [779153]: NOTICE [ninjafirewall-syslog] Ban 217.182.137.64
...
show less
Bad Web Bot
Web Spam
Email Spam
Blog Spam
Port Scan
Brute-Force
Web App Attack
๐ต๐ฑ
sefinek.net
2026-03-01 10:21:46
(4 months ago)
Triggered Cloudflare WAF (firewallCustom) from FR.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (G ...
show more
Triggered Cloudflare WAF (firewallCustom) from FR.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (GET) | Endpoint: /genshin-stella-mod | UA: Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ต๐ฑ
sefinek.net
2026-02-28 01:38:20
(4 months ago)
Triggered Cloudflare WAF (firewallCustom) from FR.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (G ...
show more
Triggered Cloudflare WAF (firewallCustom) from FR.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (GET) | Endpoint: / | UA: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-02-20 01:55:51
(4 months ago)
(mod_security) mod_security (id:217291) triggered by 217.182.137.64 (ns3074832.ip-217-182-137.eu): 1 ...
show more
(mod_security) mod_security (id:217291) triggered by 217.182.137.64 (ns3074832.ip-217-182-137.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 20:55:48.008614 2026] [security2:error] [pid 6725:tid 6725] [client 217.182.137.64:62915] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(\\\\n|\\\\r)" at ARGS_NAMES:\\r\\nfromwhere. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "145"] [id "217291"] [rev "2"] [msg "HTTP Header Injection Attack via payload (CR/LF detected)||entertainmentcapitol.com|F|2"] [data "Matched Data: \\x0d found within ARGS_NAMES:\\x5cr\\x5cnfromwhere: \\x0d\\x0afromwhere"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "entertainmentcapitol.com"] [uri "/g12terms.php"] [unique_id "aZe_JDuLKYzzo713_3jQzwAAAAw"], referer: https://entertainmentcapitol.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
juguemosalacarioca.com
2026-02-18 13:33:20
(4 months ago)
Multiple HTTP calls attempting to GET resources using common API calls or formats on port 8080
Web App Attack
Anonymous
2026-02-15 12:18:04
(4 months ago)
Web App Attack