๐ฌ๐ง
pinguin
2026-06-30 14:25:53
(3 days ago)
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
...
show more
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
Endpoint: /info.php
UA: Mozilla/5.0 (l9scan/2.0.8393e26323e28313e2430313; +https://leakix.net)
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
daveoctober
2026-06-18 19:49:20
(2 weeks ago)
October Sentinel: honeypot triggered
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 14:38:05
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 10:38:00.189430 2026] [security2:error] [pid 2184:tid 2184] [client 172.70.240.137:11301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "computer-advisors.hisfavorite.net"] [uri "/.git/config"] [unique_id "ajKxSE6XvUZLvLGQqs9cAAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
pinguin
2026-06-13 18:12:31
(2 weeks ago)
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
...
show more
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
Endpoint: /@vite/env
UA: Mozilla/5.0 (l9scan/2.0.8393e26323e28313e2430313; +https://leakix.net)
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฉ๐ช
ghostwarriors
2026-06-05 06:50:11
(4 weeks ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ญ๐บ
bcsaba
2026-06-02 14:52:36
(1 month ago)
Probing for .git:
172.70.240.137 - - [02/Jun/2026:16:52:35 +0200] "GET /.git/config HTTP/2.0" 403 14 ...
show more
Probing for .git:
172.70.240.137 - - [02/Jun/2026:16:52:35 +0200] "GET /.git/config HTTP/2.0" 403 146 "-" "curl/8.4.0"
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 11:05:46
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 07:05:39.705477 2026] [security2:error] [pid 380:tid 380] [client 172.70.240.137:9894] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lighthousescm.com"] [uri "/.git/config"] [unique_id "ah65AyCxusmqkG-1CSfZOwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 09:53:39
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 05:53:33.083868 2026] [security2:error] [pid 26100:tid 26100] [client 172.70.240.137:12092] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boederinteriordesign.com"] [uri "/.git/config"] [unique_id "ah6oHRXJpNUSb1NNPvWd5AAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-02 09:06:57
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-25 07:16:27
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 03:16:20.180886 2026] [security2:error] [pid 16789:tid 16789] [client 172.70.240.137:10349] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.notrucking.nodepot.com"] [uri "/.env"] [unique_id "ahP3RB71uwhvePafFlNYzwAAAAo"], referer: https://www.google.com/search?q=www.notrucking.nodepot.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-15 09:13:33
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 05:13:22.499705 2026] [security2:error] [pid 28812:tid 28812] [client 172.70.240.137:13067] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||garanzuayrec.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "garanzuayrec.com"] [uri "/backup.sql"] [unique_id "agbjsr_UuJJQ5o6jjf3JkAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
trentwiles.com
2026-05-13 07:53:38
(1 month ago)
Unauthorized connection attempt detected from IP address 172.70.240.137 to port 80 [SYD]
Port Scan
๐ซ๐ท
pierredh
2026-05-10 14:55:23
(1 month ago)
SQL injection:/newsites/free/pierre/search/searchSVI.php?continentName=EU&country=276+&enddate=&from ...
show more
SQL injection:/newsites/free/pierre/search/searchSVI.php?continentName=EU&country=276+&enddate=&from=&page=1&prj_typ=all&searchSubmission=Recherche&searchSubmission=..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd&startdate=
show less
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-05-07 16:00:15
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 12:00:02.429970 2026] [security2:error] [pid 16053:tid 16053] [client 172.70.240.137:14246] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.writeitright.biz"] [uri "/.env"] [unique_id "afy3Apg2f0xRoozDbvVmegAAABQ"], referer: https://www.google.com/search?q=webdisk.writeitright.biz
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 07:42:18
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.240.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 03:42:10.305390 2026] [security2:error] [pid 27840:tid 27840] [client 172.70.240.137:10260] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.blindshine.com"] [uri "/.git/config"] [unique_id "afMH0k0Kz027ebo8Gjo9xAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack