π©πͺ
langenkamp-media
2026-07-07 07:17:16
(10 hours ago)
Fail2Ban: Banned from jail nginx-nohome on 3dausdu.de
Web App Attack
π©πͺ
langenkamp-media
2026-07-05 04:47:56
(2 days ago)
Fail2Ban: Banned from jail nginx-nohome on 3dausdu.de
Web App Attack
Anonymous
2026-07-03 12:46:11
(4 days ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/install.php
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 11:17:13
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 07:17:06.708019 2026] [security2:error] [pid 29324:tid 29324] [client 172.71.164.219:9371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "furfriend-z.com"] [uri "/.git/config"] [unique_id "akZIshbjy_ZTh9NsEngZCwAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
pinguin
2026-06-30 13:45:27
(1 week ago)
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
...
show more
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
Endpoint: /.aws/credentials
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
π©πͺ
langenkamp-media
2026-06-25 22:14:18
(1 week ago)
Fail2Ban: Banned from jail nginx-nohome on 3dausdu.de
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-24 16:06:49
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 12:06:40.824951 2026] [security2:error] [pid 10708:tid 10708] [client 172.71.164.219:12944] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ploverdyne.com"] [uri "/.env.dist"] [unique_id "ajwAkPr1vLNc498zUancXQAAABo"], referer: https://www.google.com/search?q=ploverdyne.com
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-21 01:59:31
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 21:59:14.436657 2026] [security2:error] [pid 6701:tid 6701] [client 172.71.164.219:12314] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.checkmyvaluehollister.kunzteam.com"] [uri "/.env.production"] [unique_id "ajdFciCgLJ6RAxsOjdlPhwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TNZ
2026-06-17 12:01:41
(2 weeks ago)
Automated honeypot: waf:RFI-001 | Path: /wp-admin/install.php | ISP: AS13335 Cloudflare, Inc. | ASN: ...
show more
Automated honeypot: waf:RFI-001 | Path: /wp-admin/install.php | ISP: AS13335 Cloudflare, Inc. | ASN: AS13335 Cloudflare, Inc. [PROXY] | Abuse score: 0 | Open ports: [] | UA: http://getkovamail.com/wp-admin/install.php?step=1
show less
Web App Attack
π©πͺ
langenkamp-media
2026-06-15 22:22:04
(3 weeks ago)
Fail2Ban: Banned from jail nginx-nohome on 3dausdu.de
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-08 19:24:54
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:24:47.441653 2026] [security2:error] [pid 28944:tid 28944] [client 172.71.164.219:13707] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "assholesanonymous.onlyincanada-eh.com"] [uri "/.git/config"] [unique_id "aicW_xqQd-a6-CZrHcHU7QAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
langenkamp-media
2026-06-08 14:26:02
(4 weeks ago)
Fail2Ban: Banned from jail nginx-nohome on 3dausdu.de
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 09:57:39
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 05:57:33.727599 2026] [security2:error] [pid 20704:tid 20704] [client 172.71.164.219:11026] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "watlab.com"] [uri "/.git/config"] [unique_id "aiVAjYVYK3KQ1tvaL2JUIQAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 01:19:33
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 21:19:30.332938 2026] [security2:error] [pid 3985:tid 3985] [client 172.71.164.219:12395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "postseason.michaelpmcgrath.com"] [uri "/.git/config"] [unique_id "aiTHIhwUyGBhwNVvDjX7FwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-04 08:22:44
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 04:22:38.372848 2026] [security2:error] [pid 17382:tid 17382] [client 172.71.164.219:13258] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nakhltalai.ir"] [uri "/.git/config"] [unique_id "aiE1zqsl5Oi7fPMVz-wsMwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack