🇺🇸
aspicer6
2026-07-05 10:03:19
(1 week ago)
TCP port scan detected. Automated IPS detection and ban. - Spicer Networks NOC
Port Scan
🇺🇸
troublesome
2026-06-04 22:08:48
(1 month ago)
lily
Port Scan
Web App Attack
🇬🇧
openstrike.co.uk
2026-05-26 06:21:10
(1 month ago)
161 packets to ports 80 83 88 443 1082 1111 1180 1723 1935 1962 2052 2083 2094 2222 2233 3080 3129 3 ...
show more
161 packets to ports 80 83 88 443 1082 1111 1180 1723 1935 1962 2052 2083 2094 2222 2233 3080 3129 3195 3228 3333 3390 4430 4444 4480 4545 5000 5060 5080 5555 5556 5566 5678 6000 6404 6588 6969 7001 7443 7474 8006 8009 8081 8090 8112 8282 8983 9090 9150 9200, etc.
show less
Port Scan
🇩🇪
AS213449.net
2026-05-08 10:42:13
(2 months ago)
05/08/2026-12:42:10.240004 src=5.255.105.149 dst=5.175.170.126:1433 proto=6 msg=ET SCAN Suspicious i ...
show more
05/08/2026-12:42:10.240004 src=5.255.105.149 dst=5.175.170.126:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433
show less
SQL Injection
🇨🇭
Elysium Security
2026-05-06 08:04:12
(2 months ago)
Mass port scanning on a whole network
Port Scan
🇬🇧
Mendip_Defender
2026-05-01 20:16:12
(2 months ago)
5.255.105.149 - - [01/May/2026:21:16:06 +0100] "GET /wp-content/themes/customizr/assets/front/js/tc- ...
show more
5.255.105.149 - - [01/May/2026:21:16:06 +0100] "GET /wp-content/themes/customizr/assets/front/js/tc-scripts.min.js?ver=4.4.24 HTTP/1.1" 403 146 "-" "Mozilla/5.0 (compatible; SemrushBot/7~bl; +http://www.semrush.com/bot.html)"
...
show less
Bad Web Bot
🇺🇸
kosada.com
2026-05-01 01:42:41
(2 months ago)
Web vulnerability probing: /_next/static/chunks/3.js
Web App Attack
🇧🇪
voormedia
2026-05-01 01:37:23
(2 months ago)
Accessed trap at '/.git/HEAD'
Web App Attack
🇫🇷
mrcrassi
2026-04-30 22:25:05
(2 months ago)
Triggered Cloudflare WAF (firewallManaged) from NL.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET meth ...
show more
Triggered Cloudflare WAF (firewallManaged) from NL.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (compatible; PerplexityBot/1.0; +https://perplexity.ai/perplexitybot)
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
🇺🇦
kent
2026-04-30 20:33:00
(2 months ago)
Bad Web Bot
Web App Attack
Hacking
🇬🇧
Bytemark
2026-04-30 20:06:29
(2 months ago)
5.255.105.149 - - [30/Apr/2026:21:06:28 +0100] "GET / HTTP/1.1" 301 5798 "-" "Mozilla/5.0 (compatibl ...
show more
5.255.105.149 - - [30/Apr/2026:21:06:28 +0100] "GET / HTTP/1.1" 301 5798 "-" "Mozilla/5.0 (compatible; SemrushBot/7~bl; +http://www.semrush.com/bot.html)"
show less
Brute-Force
Web App Attack
🇱🇻
garmtech.com
2026-04-30 18:16:45
(2 months ago)
Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probi ...
show more
Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probing.
show less
Web App Attack
🇳🇱
DrLex0
2026-04-30 16:31:41
(2 months ago)
Probing for various exploits with stupid fake referrer headers
5.255.105.149 443 - [30/Apr/2026:16: ...
show more
Probing for various exploits with stupid fake referrer headers
5.255.105.149 443 - [30/Apr/2026:16:31:41 +0000] "GET /.env HTTP/1.1" 404 6000 "-" "Mozilla/5.0 (compatible; OAI-SearchBot/1.3; +https://openai.com/searchbot)"
5.255.105.149 443 - [30/Apr/2026:16:31:41 +0000] "GET /.env.production HTTP/1.1" 404 6000 "-" "Mozilla/5.0 (compatible; DeepSeekBot/1.0; +https://www.deepseek.com/bot)"
5.255.105.149 443 - [30/Apr/2026:16:31:41 +0000] "GET /.env.bak HTTP/1.1" 404 6000 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; https://zhanzhang.toutiao.com/)"
5.255.105.149 443 - [30/Apr/2026:16:31:41 +0000] "GET /.env.development HTTP/1.1" 404 6000 "-" "Mozilla/5.0 (compatible; Meta-ExternalAgent/1.1; +https://developers.facebook.com/docs/sharing/webmasters/crawler)"
5.255.105.149 443 - [30/Apr/2026:16:31:41 +0000] "GET /.env.local HTTP/1.1" 404 6000 "-" "Mozilla/5.0 (compatible; Perplexity-User/1.0; +https://perplexity.ai/perplexity-user)"
show less
Brute-Force
Bad Web Bot
Web App Attack
🇺🇸
uchat-ai.com
2026-04-30 15:58:06
(2 months ago)
IP 5.255.105.149 在过去24小时内进行了 4 次攻击。详细信息: 攻击类型: Restricted File Access Attempt, 攻击信息: No matched data ...
show more
IP 5.255.105.149 在过去24小时内进行了 4 次攻击。详细信息: 攻击类型: Restricted File Access Attempt, 攻击信息: No matched data found; 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: /.env found within REQUEST_FILENAME: /.env.local"] (Severity: 2); 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: /.git/ found within REQUEST_FILENAME: /.git/head"] (Severity: 2); 攻击类型: Restricted File Access Attempt, 攻击信息: Matched Data: /.env found within REQUEST_FILENAME: /.env.bak"] (Severity: 2)
show less
Web App Attack
🇧🇪
cmbplf
2026-04-30 13:51:36
(2 months ago)
104 requests with url.path *.git/*
Brute-Force
Bad Web Bot