๐ซ๐ท
Guardian
2026-07-01 09:47:41
(22 hours ago)
Unauthorized attempt to retrieve configuration file
45.130.203.135 [01/Jul/2026:09:47:38] "GET /.env ...
show more
Unauthorized attempt to retrieve configuration file
45.130.203.135 [01/Jul/2026:09:47:38] "GET /.env HTTP/1.1"
show less
Port Scan
Web App Attack
๐ง๐ช
Saec
2026-07-01 06:15:33
(1 day ago)
Jarvis auto-ban: CF honeypot path /.env (3ร on saec.me)
Port Scan
Web App Attack
๐ซ๐ท
pm33
2026-07-01 04:30:02
(1 day ago)
Probing for resource vulnerabilities HTTP(S)
Web App Attack
๐จ๐ญ
YF
2026-06-30 22:54:32
(1 day ago)
Git HEAD exposure probe
Web App Attack
๐จ๐ฆ
1gz
2026-06-30 21:42:54
(1 day ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (HEAD ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (HEAD method)
Endpoint: /tmp/social.7z
UA: Jobmaster-Opendir/1.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-30 13:31:25
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 09:31:20.719333 2026] [security2:error] [pid 30109:tid 30109] [client 45.130.203.135:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||dashboard.luisguacache.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "dashboard.luisguacache.com"] [uri "/bak/backup.sql"] [unique_id "akPFKI8BQzJpiQmUcYVUrQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
sid3windr
2026-06-29 14:06:47
(2 days ago)
GET /.env (Tarpitted for 19m44s, wasted 69.49kB)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 02:18:19
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 22:18:15.525798 2026] [security2:error] [pid 6067:tid 6067] [client 45.130.203.135:23797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.montidaunitour.com.my-spec.com"] [uri "/.git/HEAD"] [unique_id "akHV5_LmxZS17TwL6oJMpgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
wpadm4
2026-06-28 03:15:28
(4 days ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ซ๐ฎ
as211431.net
2026-06-24 21:45:59
(1 week ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/HEAD
UA: Python-urllib/3.10
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-23 22:47:58
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 18:47:54.356557 2026] [security2:error] [pid 32652:tid 32652] [client 45.130.203.135:62297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.versacardio.com"] [uri "/.git/HEAD"] [unique_id "ajsNGvXhkPzYDJ43zzHIuQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
Saec
2026-06-22 12:45:06
(1 week ago)
Jarvis auto-ban: CF honeypot path /.git/HEAD (1ร on saec.me)
Port Scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 02:08:59
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 22:08:52.792288 2026] [security2:error] [pid 10034:tid 10039] [client 45.130.203.135:27049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.internationalacademyofprojectmanagement.com"] [uri "/.git/HEAD"] [unique_id "ajiZNH45Qf01-xLBQ-ijCwAAAQM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-22 01:12:50
(1 week ago)
fail2ban: Sensitive web probes detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-21 20:09:51
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.130.203.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 16:09:44.721070 2026] [security2:error] [pid 6607:tid 6607] [client 45.130.203.135:23643] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.inlinesoftware.net"] [uri "/.git/HEAD"] [unique_id "ajhFCPmYV7wXf5xoJ4PDDgAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack