πΊπΈ
mawan
2026-07-11 05:14:26
(5 hours ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 18:43:53
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 14:43:50.154045 2026] [security2:error] [pid 8607:tid 8607] [client 172.71.144.76:13770] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chrisi-sharper.com"] [uri "/.git/config"] [unique_id "akaxZv6NED1uvC54FnYWXwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 14:06:15
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 10:06:11.746182 2026] [security2:error] [pid 22054:tid 22054] [client 172.71.144.76:12200] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qosmexico.com"] [uri "/.git/config"] [unique_id "akZwU7jIufVeznJw0Cwp2gAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 09:25:09
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 05:25:05.407293 2026] [security2:error] [pid 6693:tid 6693] [client 172.71.144.76:10851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "automatebi.com"] [uri "/.git/config"] [unique_id "akYucSK7uDzUar3x5QVY1gAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
Version Net
2026-07-01 12:00:39
(1 week ago)
IPS Detection: Spring.Boot.Actuator.Unauthorized.Access
Hacking
πΊπΈ
TPI-Abuse
2026-06-27 19:56:32
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 15:56:27.379636 2026] [security2:error] [pid 26890:tid 26890] [client 172.71.144.76:13937] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hellomdinc.com"] [uri "/.git/config"] [unique_id "akAq63qvFMODsGvOjukRnwAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-27 16:41:55
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 12:41:51.156896 2026] [security2:error] [pid 24862:tid 24862] [client 172.71.144.76:13759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gaeltv.com"] [uri "/.git/config"] [unique_id "aj_9T5HRh7RpfTSQXeHg7gAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Erpelstolz
2026-06-24 17:23:49
(2 weeks ago)
external host: 172.71.144.76 - - [24/Jun/2026:19:23:48 +0200] "GET /wp-admin/install.php?step=1 HTTP ...
show more
external host: 172.71.144.76 - - [24/Jun/2026:19:23:48 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 301 325 "-" "http://erpelstolz.com/wp-admin/install.php?step=1" CF-Ray:a10d6c2578eddbdc-FRA CF-IP:-
show less
Web App Attack
π¬π§
pinguin
2026-06-19 14:32:39
(3 weeks ago)
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
...
show more
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
Endpoint: /configuration.php
UA: Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
π©πͺ
Blexyel
2026-06-06 21:26:24
(1 month ago)
172.71.144.76 - - [06/Jun/2026:23:26:23 +0200] "GET /.git/config HTTP/1.1" 200 2116 "-" "Mozilla/5.0 ...
show more
172.71.144.76 - - [06/Jun/2026:23:26:23 +0200] "GET /.git/config HTTP/1.1" 200 2116 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/127.0 Safari/537.36"
...
show less
Brute-Force
Web App Attack
π¬π§
pinguin
2026-06-04 05:48:57
(1 month ago)
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
...
show more
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
Endpoint: /
UA: Mozilla/5.0 (l9scan/2.0.8393e26323e28313e2430313; +https://leakix.net)
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-06-04 04:12:55
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 00:12:50.494942 2026] [security2:error] [pid 29354:tid 29354] [client 172.71.144.76:11765] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wilhelminas.biz"] [uri "/.git/config"] [unique_id "aiD7QkvUmGKKgVQUKLRDVAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-03 23:02:51
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 19:02:48.045936 2026] [security2:error] [pid 555:tid 555] [client 172.71.144.76:11283] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "meler.biz"] [uri "/.git/config"] [unique_id "aiCymMUyTSxkCUomcbEmYgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-02 15:18:36
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 11:18:28.727154 2026] [security2:error] [pid 8051:tid 8051] [client 172.71.144.76:11258] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pasamugo.com"] [uri "/.git/config"] [unique_id "ah70RIE_eci-n80l7P4x9wAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-02 10:21:35
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.144.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 06:21:32.938179 2026] [security2:error] [pid 12184:tid 12184] [client 172.71.144.76:13319] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "debradamico.com"] [uri "/.git/config"] [unique_id "ah6urEkEtWZr3UjjwuYrwwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack