barbarella - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User barbarella joined AbuseIPDB in March 2021 and has reported 177,239 IP addresses.

Standing (weight) is good.

ACTIVE USER WEBMASTER SUPPORTER

IP	Date	Comment	Categories
🇺🇸 32.199.168.201	24 minutes ago	Multiple (34) times attack on http port 80: Attempted to access git files. (GET /.git/config) 23: ... show more Multiple (34) times attack on http port 80: Attempted to access git files. (GET /.git/config) 23:44:07 hacking attempt of version control system (GET /.git/refs/heads/main) 23:44:08 Configuration snooping with .env file (GET /.env) 23:44:09 Configuration snooping with modified .env.* file (GET /.env.local) 23:44:09 Configuration snooping with modified .env.* file (GET /.env.production) 23:44:10 Configuration snooping with modified .env.* file (GET /.env.save) 23:44:11 Configuration snooping with modified .env.* file (GET /.env.old) 23:44:12 Configuration snooping with modified .env.* file (GET /.env.docker) 23:44:12 Configuration snooping in .env file (GET /.env_production) show less	Web App Attack
🇺🇸 20.169.104.204	24 minutes ago	CVE-2025-31324: SAP NetWeaver Remote Code Execution Vulnerability (GET /developmentserver/metadataup ... show more CVE-2025-31324: SAP NetWeaver Remote Code Execution Vulnerability (GET /developmentserver/metadatauploader) show less	Hacking Web App Attack
🇩🇪 212.132.105.176	24 minutes ago	Multiple (120) times attack on http port 80: Hacking attempt of Wordpress (GET /wp-config.php.bak) ... show more Multiple (120) times attack on http port 80: Hacking attempt of Wordpress (GET /wp-config.php.bak) 21:54:03 Hacking attempt of Wordpress (GET /wp-config.php.old) 21:54:03 Hacking attempt of Wordpress (GET /wp-config.php~) 21:54:03 Hacking attempt of Wordpress (GET /wp-config.php.orig) 21:54:03 Hacking attempt of Wordpress (GET /wp-config.php.save) 21:54:03 Hacking attempt of Wordpress (GET /wp-config.bak) 21:54:03 Hacking attempt of Wordpress (GET /wp-config.old) 21:54:03 illegal attempt to access nonexisting folder (GET /backup/wp-config.php) 21:54:03 Hacking attempt of Wordpress (GET /.wp-config.php.bak) show less	Hacking Web App Attack
🇺🇸 20.29.57.244	24 minutes ago	Illegal http header rejected by modsecurity (GET /)	Hacking Web App Attack
🇬🇧 193.8.186.31	24 minutes ago	Illegal http header rejected by modsecurity (GET /)	Hacking Web App Attack
🇺🇸 45.33.12.214	24 minutes ago	Illegal http header rejected by modsecurity (GET /)	Hacking Web App Attack
🇷🇴 80.94.92.70	24 minutes ago	Multiple (2) times attack on https port 443: Hacking attempt of Vulnerability in Symfony Profiler (G ... show more Multiple (2) times attack on https port 443: Hacking attempt of Vulnerability in Symfony Profiler (GET /_profiler/phpinfo) 23:07:49 Hacking attempt of Vulnerability in Symfony Profiler (GET /_profiler/phpinfo) show less	Hacking Web App Attack
🇺🇸 45.79.207.71	24 minutes ago	Illegal http header rejected by modsecurity (GET /)	Hacking Web App Attack
🇱🇹 77.90.185.230	24 minutes ago	Configuration snooping with .env file (GET /.env)	Hacking Web App Attack
🇳🇱 176.65.139.140	24 minutes ago	Trying to access admin login on Netlink GPON Router (POST /boaform/admin/formLogin)	Hacking Web App Attack
🇨🇳 115.227.26.85	24 minutes ago	unauthorized access to cgi-bin scripts (POST /cgi-bin/ViewLog.asp)	Hacking Web App Attack
🇨🇳 106.75.137.178	24 minutes ago	searching for Cobalt Strike server beacon (GET /lF7s)	Hacking Web App Attack
🇰🇿 31.132.90.3	24 minutes ago	Multiple (45) times attack on http port 80: illegal attempt to access local shell (POST /cgi-bin/.%2 ... show more Multiple (45) times attack on http port 80: illegal attempt to access local shell (POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh) 22:36:49 illegal attempt to access local shell (POST /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh) 22:36:50 Command Injection for PHP Vulnerablity CVE-2024-4577 (POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input) 22:36:50 Command Injection for PHP Vulnerablity CVE-2024-4577 (POST /?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input) 22:36:50 unauthorized access PHPunit framework files (GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php) 22:36:50 unauthorized access PHPunit framework files (GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php) 22:36:50 unauthorized access PHPunit framework files (GET /vendor/phpunit/src/Util/PHP/eval-stdin.php) 22:36:50 unauthorized access PHPunit framework files (GET /vend show less	Hacking Web App Attack
🇺🇸 98.92.97.151	24 minutes ago	Multiple (7) times attack on https port 443: Illegal http header (POST /) 21:28:05 Illegal http h ... show more Multiple (7) times attack on https port 443: Illegal http header (POST /) 21:28:05 Illegal http header (POST /) 21:28:05 Illegal http header (POST /) 21:28:05 Illegal http header (POST /) 21:28:05 Illegal http header (POST /) 21:28:05 Illegal http header (POST /) 21:28:06 Illegal http header (POST /) show less	Hacking Web App Attack
🇺🇸 43.130.111.40	24 minutes ago	Illegal http header (GET /)	Hacking Web App Attack
🇷🇺 84.22.139.137	24 minutes ago	Multiple (2) times attack on http port 80: unauthorized access to cgi-bin scripts (POST /cgi-bin/Vie ... show more Multiple (2) times attack on http port 80: unauthorized access to cgi-bin scripts (POST /cgi-bin/ViewLog.asp) 22:48:28 unauthorized access to cgi-bin scripts (POST /cgi-bin/ViewLog.asp) show less	Hacking Web App Attack
🇩🇪 162.62.213.187	24 minutes ago	Illegal http header rejected by modsecurity (GET /)	Hacking Web App Attack
🇺🇸 3.134.92.38	24 minutes ago	Multiple (30) times attack on http port 80: hacking attempt of version control system (GET /.git/HEA ... show more Multiple (30) times attack on http port 80: hacking attempt of version control system (GET /.git/HEAD) 23:18:49 Attempted to access git files. (GET /.git/config) 23:18:49 hacking attempt of version control system (GET /.git/logs/HEAD) 23:18:50 hacking attempt of version control system (GET /.git/refs/heads/master) 23:18:50 hacking attempt of version control system (GET /.git/refs/heads/main) 23:18:52 Configuration snooping with .env file (GET /.env) 23:18:55 Configuration snooping with modified .env.* file (GET /.env.save) 23:18:56 Configuration snooping with modified .env.* file (GET /.env.old) 23:18:57 Configuration snooping with modified .env.* file (GET /.env.bak) show less	Hacking Web App Attack
🇬🇪 195.54.179.244	24 minutes ago	Multiple (45) times attack on http port 80: illegal attempt to access local shell (POST /cgi-bin/.%2 ... show more Multiple (45) times attack on http port 80: illegal attempt to access local shell (POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh) 23:40:34 illegal attempt to access local shell (POST /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh) 23:40:34 Command Injection for PHP Vulnerablity CVE-2024-4577 (POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input) 23:40:35 Command Injection for PHP Vulnerablity CVE-2024-4577 (POST /?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input) 23:40:35 unauthorized access PHPunit framework files (GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php) 23:40:35 unauthorized access PHPunit framework files (GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php) 23:40:36 unauthorized access PHPunit framework files (GET /vendor/phpunit/src/Util/PHP/eval-stdin.php) 23:40:36 unauthorized access PHPunit framework files (GET /vend show less	Hacking Web App Attack
🇳🇱 176.65.139.22	24 minutes ago	Multiple (2) times attack on http port 80: unauthorized access to cgi-bin scripts (POST /cgi-bin/Vie ... show more Multiple (2) times attack on http port 80: unauthorized access to cgi-bin scripts (POST /cgi-bin/ViewLog.asp) 21:56:52 unauthorized access to cgi-bin scripts (POST /cgi-bin/ViewLog.asp) show less	Hacking Web App Attack
🇨🇳 124.71.175.215	24 minutes ago	unauthorized access to cgi-bin scripts (POST /cgi-bin/ViewLog.asp)	Hacking Web App Attack
🇯🇵 8.216.88.216	28 minutes ago	Illegal http header (GET /)	Hacking Web App Attack
🇧🇷 43.157.175.122	28 minutes ago	Illegal http header rejected by modsecurity (GET /)	Hacking Web App Attack
🇺🇸 103.203.57.3	28 minutes ago	Illegal http header (GET /)	Hacking Web App Attack
🇺🇸 20.118.32.39	28 minutes ago	Illegal http header rejected by modsecurity (GET /)	Hacking Web App Attack