๐ฒ๐ฝ
octageeks.com
2026-07-06 04:09:47
(2 days ago)
Wordpress malicious attack:[octawp]
Web App Attack
๐ฌ๐ง
pinguin
2026-05-08 05:20:33
(2 months ago)
Triggered Cloudflare WAF (firewallManaged) from US.
Action taken: LOG
Protocol: HTTP/2 (GET method)
...
show more
Triggered Cloudflare WAF (firewallManaged) from US.
Action taken: LOG
Protocol: HTTP/2 (GET method)
Endpoint: /
UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ง๐พ
lns.bz
2026-04-20 12:59:21
(2 months ago)
Too many 404 requests [BY]
Web App Attack
๐บ๐ธ
oncord
2026-04-20 11:31:27
(2 months ago)
Form spam
Web Spam
๐บ๐ธ
TPI-Abuse
2026-04-06 05:47:09
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 01:47:00.426553 2026] [security2:error] [pid 1833:tid 1833] [client 172.68.138.203:12362] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zodiacwin.com"] [uri "/.env.development"] [unique_id "adNI1LQen0cHBNl6QJizogAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 05:19:24
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 01:19:15.183263 2026] [security2:error] [pid 12944:tid 12944] [client 172.68.138.203:11528] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.havenlaneministries.com"] [uri "/.env.bak"] [unique_id "adNCU9dJ_a2R4PWamtasegAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 16:07:25
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 12:07:21.245237 2026] [security2:error] [pid 10458:tid 10458] [client 172.68.138.203:14312] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.ageiron.com"] [uri "/backend/.env"] [unique_id "adE3OXXaGewDA6h3rejPeAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 04:45:13
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 00:45:09.026071 2026] [security2:error] [pid 15678:tid 15678] [client 172.68.138.203:14020] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.rgvatvrepair.com"] [uri "/backend/.env"] [unique_id "adCXVbpJ07IC7FjPag8SCgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 18:39:49
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 14:39:40.456499 2026] [security2:error] [pid 28229:tid 28253] [client 172.68.138.203:9684] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.rpiusa.net"] [uri "/.env.save"] [unique_id "adAJbPePvtlP4rMcjAgNAwAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 17:14:26
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 13:14:16.926493 2026] [security2:error] [pid 17457:tid 17457] [client 172.68.138.203:10389] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.newlife12steprecovery.org"] [uri "/.git/refs/heads/main"] [unique_id "ac_1aAQg8EYElkwKSEi3fAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 14:29:31
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 10:29:23.693173 2026] [security2:error] [pid 17938:tid 17938] [client 172.68.138.203:13654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.siedersoft.com.ar"] [uri "/.env1"] [unique_id "ac_OwyzLbDiEHeCd746mMgAAADM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 12:30:18
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 08:29:55.938494 2026] [security2:error] [pid 22033:tid 22033] [client 172.68.138.203:12319] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.arabou.co"] [uri "/server/.env"] [unique_id "ac-yw2khvbIcUu8jFGHlSAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 12:08:09
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 08:08:03.400850 2026] [security2:error] [pid 14420:tid 14420] [client 172.68.138.203:13019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.speedgo.mx"] [uri "/.git/refs/heads/master"] [unique_id "ac-to0AepH2IEytBCjCh-gAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 09:06:18
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 05:06:09.939083 2026] [security2:error] [pid 20525:tid 20661] [client 172.68.138.203:11736] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.clinicadelparabrisas.com"] [uri "/.env.dev"] [unique_id "ac-DAeji6NFzXkfY4Z8R5AAAAJQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 07:11:27
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.138.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 03:11:16.393329 2026] [security2:error] [pid 13267:tid 13267] [client 172.68.138.203:10658] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.brookspowell.com"] [uri "/.env.bak"] [unique_id "ac9oFF9gPyYF_2bAfmVkXgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack