๐ซ๐ท
Sklurk
2026-07-16 09:25:47
(2 hours ago)
Web App Attack
Web App Attack
๐บ๐ธ
webgobe
2026-07-15 08:49:04
(1 day ago)
wew-Joomla User : try to access forms...
Hacking
๐ซ๐ท
mrcrassi
2026-07-05 20:04:58
(1 week ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/2 (POST method ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/2 (POST method)
Endpoint: /wp-login.php
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ซ๐ท
Sklurk
2026-06-23 04:10:11
(3 weeks ago)
Web App Attack
Web App Attack
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐บ๐ธ
inspectorgdgt
2025-12-24 22:00:00
(6 months ago)
VPN brute-force login attempts observed (bulk report).
Brute-Force
Anonymous
2025-12-12 12:54:12
(7 months ago)
botnet
DDoS Attack
๐ณ๐ฑ
jjnxpct
2025-11-28 04:51:21
(7 months ago)
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ...
show more
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.aws/credentials (Rule ID: 930130) - Restricted File Access Attempt
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 06:23:28
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.48.111 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.48.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:23:20.754106 2025] [security2:error] [pid 4075:tid 4075] [client 45.3.48.111:25493] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.linguistes.com"] [uri "/.git/HEAD"] [unique_id "aSVLWKPqGs4VKpd6T5IsMQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-25 04:06:29
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.48.111 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.48.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:06:25.750678 2025] [security2:error] [pid 28026:tid 28026] [client 45.3.48.111:41467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.beansidhesbrits.com"] [uri "/.svn/wc.db"] [unique_id "aSUrQWg3Qb4AWno_q75gwgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
Valhalla
2025-11-24 23:20:54
(7 months ago)
/s3cmd.ini
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 05:57:16
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.48.111 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.48.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:57:10.833806 2025] [security2:error] [pid 526:tid 526] [client 45.3.48.111:12293] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.rasuki.com"] [uri "/.env"] [unique_id "aSPztoA6zGbFzUgiKRwAfwAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 04:49:43
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.48.111 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.48.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:49:33.873761 2025] [security2:error] [pid 23184:tid 23184] [client 45.3.48.111:24963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.alissacaputo.com"] [uri "/.git/HEAD"] [unique_id "aSPj3Y39k3Npw-o51uTG2wAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
fbarela
2025-11-06 04:01:56
(8 months ago)
FortiGate SSL VPN login failures.
Hacking
Brute-Force
Anonymous
2025-10-30 14:25:33
(8 months ago)
WordPress Brute Force
Brute-Force