πΊπΈ
mawan
2026-07-15 18:57:15
(6 hours ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
Anonymous
2026-07-11 13:50:56
(4 days ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
Anonymous
2026-07-04 17:41:22
(1 week ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 05:27:55
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 01:27:49.612226 2026] [security2:error] [pid 17669:tid 17669] [client 172.68.151.16:11936] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teamwakimphotography.com"] [uri "/.git/config"] [unique_id "akX21cL73QG9w6xjLOQk1QAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Baking333
2026-07-02 04:38:37
(1 week ago)
[redacted] 172.68.151.16 - - [02/Jul/2026:05:38:35 +0100] "GET /app/[redacted] HTTP/2.0" 301 61 "-" ...
show more
[redacted] 172.68.151.16 - - [02/Jul/2026:05:38:35 +0100] "GET /app/[redacted] HTTP/2.0" 301 61 "-" "curl/8.7.1" [redacted] 172.68.151.16 - - [02/Jul/2026:05:38:35 +0100] "GET /fr/app/[redacted]/ HTTP/2.0" 404 24809 "-" "curl/8.7.1"
show less
Bad Web Bot
Web App Attack
π«π·
Baking333
2026-06-29 08:22:53
(2 weeks ago)
[redacted] 172.68.151.16 - - [29/Jun/2026:09:22:51 +0100] "GET /%252e%252e/.env HTTP/2.0" 301 75 "-" ...
show more
[redacted] 172.68.151.16 - - [29/Jun/2026:09:22:51 +0100] "GET /%252e%252e/.env HTTP/2.0" 301 75 "-" "curl/8.7.1" [redacted] 172.68.151.16 - - [29/Jun/2026:09:22:51 +0100] "GET /.env HTTP/2.0" 301 53 "-" "curl/8.7.1"
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-26 08:19:43
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 04:19:39.890465 2026] [security2:error] [pid 8795:tid 8795] [client 172.68.151.16:14068] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.formationone.com"] [uri "/.git/config"] [unique_id "aj42G7SufwfWXnnV4iHDogAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-16 15:07:11
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 11:07:05.630391 2026] [security2:error] [pid 5591:tid 5711] [client 172.68.151.16:12042] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vanillaguerrillapublishing.com"] [uri "/.git/config"] [unique_id "ajFmmfAXJqr8qQOVzOXq5AAAAUY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-13 14:10:07
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 10:10:01.795149 2026] [security2:error] [pid 1278:tid 1278] [client 172.68.151.16:11162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web199.dnchosting.com"] [uri "/.git/config"] [unique_id "ai1kuZnCfDEHYXVtAQbTNAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π²π½
octageeks.com
2026-06-10 04:17:00
(1 month ago)
Wordpress malicious attack:[octaflood]
Web App Attack
π§π¬
Stoyko Stoykov
2026-06-09 15:37:27
(1 month ago)
172.68.151.16 - - [09/Jun/2026:18:37:26 +0300] "GET /.git/config HTTP/2.0" 404 0 "-" "Mozilla/5.0 (M ...
show more
172.68.151.16 - - [09/Jun/2026:18:37:26 +0300] "GET /.git/config HTTP/2.0" 404 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36"
...
show less
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-09 05:54:18
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.151.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:54:10.868201 2026] [security2:error] [pid 8078:tid 8078] [client 172.68.151.16:10870] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cyclingboardgames.net.ankitoner.com"] [uri "/.git/config"] [unique_id "aieqgmkg3nmGPgTdeI4zbQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-04-14 08:52:43
(3 months ago)
Web App Attack
Brute-Force
Web App Attack
π¬π§
pinguin
2026-03-20 22:05:12
(3 months ago)
Triggered Cloudflare WAF (firewallManaged) from FR.
Action taken: LOG
Protocol: HTTP/2 (GET method)
...
show more
Triggered Cloudflare WAF (firewallManaged) from FR.
Action taken: LOG
Protocol: HTTP/2 (GET method)
Endpoint: /products
UA: curl/8.7.1
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
π·πΈ
iphouse
2026-03-15 09:00:05
(4 months ago)
Failed login attempt detected by Fail2Ban in plesk-apache jail
Web App Attack