πΊπΈ
TPI-Abuse
2026-07-02 14:58:52
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 10:58:49.314148 2026] [security2:error] [pid 12036:tid 12036] [client 172.71.172.162:12263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stat-alliance.com"] [uri "/.git/config"] [unique_id "akZ8qboKVryPQHqampICNQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΊ
DZBOT
2026-07-01 07:58:12
(3 days ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 08:27:07
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 04:27:00.348659 2026] [security2:error] [pid 30008:tid 30008] [client 172.71.172.162:9259] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vaxd.org"] [uri "/.git/config"] [unique_id "akDa1BsIAR924KIKbD1qSgAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 01:38:50
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 21:38:46.688609 2026] [security2:error] [pid 28908:tid 28908] [client 172.71.172.162:11580] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "troyhilldental.com"] [uri "/.git/config"] [unique_id "akB7JqyFTr5K4GoGfgSnGgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-24 21:31:13
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 17:31:08.489616 2026] [security2:error] [pid 10393:tid 10404] [client 172.71.172.162:11777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "retrieversocal.com.ceol.us"] [uri "/.env.backup"] [unique_id "ajxMnGcCqZc2KwzyMThZ7wAAAMk"], referer: https://www.google.com/search?q=retrieversocal.com.ceol.us
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-07 04:53:22
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 00:53:14.507416 2026] [security2:error] [pid 8290:tid 8309] [client 172.71.172.162:10432] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magnumxl.priyom.us"] [uri "/.git/config"] [unique_id "aiT5Oue2QnhC9HF6-FHzWgAAARE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-04 18:50:26
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 14:50:23.351307 2026] [security2:error] [pid 4137:tid 4137] [client 172.71.172.162:13334] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ruthbalser.org"] [uri "/.git/config"] [unique_id "aiHI7xshniBZFISGjTd-tQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
pinguin
2026-06-04 05:48:44
(1 month ago)
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
...
show more
Triggered Cloudflare WAF (firewallManaged) from DE.
Action taken: LOG
Protocol: HTTP/2 (GET method)
Endpoint: /.git/config
UA: Mozilla/5.0 (l9scan/2.0.8393e26323e28313e2430313; +https://leakix.net)
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-06-02 15:04:53
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 11:04:46.420996 2026] [security2:error] [pid 8890:tid 8890] [client 172.71.172.162:12864] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "okwellbeing.com"] [uri "/.git/config"] [unique_id "ah7xDtTw_7v5JYDNWSF3bwAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
RootOPSOVH
2026-06-01 00:52:27
(1 month ago)
GET /wp-admin/install.php?step=1 | UA: http://rootops.ovh/wp-admin/install.php?step=1
Web Spam
Bad Web Bot
Web App Attack
πΊπΈ
mnsf
2026-05-31 10:05:32
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
π«π·
RootOPSOVH
2026-05-30 23:48:52
(1 month ago)
GET /wp-admin/install.php?step=1 | UA: http://rootops.ovh/wp-admin/install.php?step=1
Web Spam
Bad Web Bot
Web App Attack
π§π·
chronos
2026-05-28 01:18:38
(1 month ago)
2026-05-27 20:28:21 UTC-3||Unauthorized connection attempt detected for port scanning
Port Scan
π«π·
RootOPSOVH
2026-05-25 00:34:20
(1 month ago)
GET /wp-admin/install.php?step=1 | UA: http://rootops.ovh/wp-admin/install.php?step=1
Web Spam
Bad Web Bot
Web App Attack
π«π·
RootOPSOVH
2026-05-21 18:09:07
(1 month ago)
GET /wp-admin/install.php?step=1 | UA: http://rootops.ovh/wp-admin/install.php?step=1
Web Spam
Bad Web Bot
Web App Attack