JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.71.172.193

172.71.172.193 was found in our database!

This IP was reported 253 times. Confidence of Abuse is 0%: ?

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Important Note: 172.71.172.193 is an IP address from within our whitelist belonging to the subnet 172.64.0.0/13, which we identify as: "Cloudflare Reverse Proxy".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 172.71.172.193

Whois 172.71.172.193

IP Abuse Reports for 172.71.172.193:

This IP address has been reported a total of 253 times from 53 distinct sources. 172.71.172.193 was first reported on August 27th 2024, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-04 16:16:21 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 12:16:16.017491 2026] [security2:error] [pid 10303:tid 10317] [client 172.71.172.193:11132] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eafm.org"] [uri "/.git/config"] [unique_id "aiGk0ABzUXDXJ1g5jhHIGgAAAcY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 21:36:40 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 17:36:32.223127 2026] [security2:error] [pid 18705:tid 18705] [client 172.71.172.193:12613] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "saboun.com"] [uri "/.git/config"] [unique_id "ah9M4HcaFcMbe21Pd9dCEQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-02 09:07:07 (2 days ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-18 20:20:37 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 16:20:30.507324 2026] [security2:error] [pid 1135:tid 1135] [client 172.71.172.193:10484] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.insidepublications.com"] [uri "/.env.production"] [unique_id "agt0jvdEa1kAL29qdMRC8gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 trentwiles.com	2026-05-16 17:28:55 (2 weeks ago)	Unauthorized connection attempt detected from IP address 172.71.172.193 to port 443 [SYD]	Port Scan
🇩🇪 FeG Deutschland	2026-05-16 04:20:15 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 03:02:53 (3 weeks ago)	(mod_security) mod_security (id:949110) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:949110) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 23:02:50.006104 2026] [security2:error] [pid 3861:tid 3861] [client 172.71.172.193:13353] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "cwbaz.com"] [uri "/.git/config"] [unique_id "af6j2oO9i5zliz17y44fjgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 15:45:16 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 11:45:10.236450 2026] [security2:error] [pid 4659:tid 4679] [client 172.71.172.193:13227] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "reattaforsale.com"] [uri "/.git/config"] [unique_id "af4FBnOLH-nLcII_3-jwmAAAAVI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 01:27:20 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 21:27:13.216920 2026] [security2:error] [pid 16191:tid 16230] [client 172.71.172.193:13017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tigerresource.com"] [uri "/.git/config"] [unique_id "af078a5gr6GMuP6Z45PuQAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 abdubhai	2026-05-03 17:57:51 (1 month ago)	172.71.172.193 - - [03/May/2026: ...	Brute-Force
🇺🇸 TPI-Abuse	2026-04-30 07:51:04 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 03:50:58.823724 2026] [security2:error] [pid 24704:tid 24704] [client 172.71.172.193:10333] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.framemyflag.com"] [uri "/.git/config"] [unique_id "afMJ4nVwIyB0jzgFr8fekwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-29 14:38:16 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 10:38:08.015285 2026] [security2:error] [pid 4554:tid 4554] [client 172.71.172.193:11447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.bcgreenlibs.com"] [uri "/.git/config"] [unique_id "afIX0N17ioWPIFm4-Z_JbAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 03:44:05 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 23:43:59.627691 2026] [security2:error] [pid 5723:tid 5723] [client 172.71.172.193:11519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lovelybeyondwords.com"] [uri "/.git/config"] [unique_id "ae2J_ycRO49w25ZTOXRvYwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 02:03:21 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.71.172.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 22:03:17.484086 2026] [security2:error] [pid 24950:tid 24950] [client 172.71.172.193:9221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nedelam.com"] [uri "/.git/config"] [unique_id "ae1yZdNlaVz7n__YhW0NHgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 gadix	2026-04-24 04:37:29 (1 month ago)	[24/Apr/2026:06:37:28.043381 +0200] aerziH9QdLwXcnxjMWurOQAAAAI 172.71.172.193 54286 127.0.0.1 7081 ... show more [24/Apr/2026:06:37:28.043381 +0200] aerziH9QdLwXcnxjMWurOQAAAAI 172.71.172.193 54286 127.0.0.1 7081 [24/Apr/2026:06:37:28.045419 +0200] aerziAAtuopDzhOIRnudWQAAAAA 172.71.172.193 54316 127.0.0.1 7081 [24/Apr/2026:06:37:28.046784 +0200] aerziDqRzGN_NP8PN-aJWgAAAAE 172.71.172.193 54332 127.0.0.1 7081 ... show less	Web App Attack

Showing 1 to 15 of 253 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c70::120

🇳🇱 85.11.167.7

🇧🇷 45.179.216.18

🇳🇱 45.148.10.121

🇭🇰 42.200.66.164

🇷🇴 2.57.122.177

🇳🇱 176.65.139.56

🇭🇰 150.5.135.143

🇮🇳 61.95.221.8

🇮🇳 38.137.11.14

🇻🇳 14.225.7.70

🇨🇳 1.83.125.226

🇨🇳 210.51.67.211

🇳🇱 192.142.24.7

🇫🇷 185.188.249.30

🇬🇧 138.68.170.254

🇦🇪 132.243.121.237

🇸🇬 103.189.234.85

🇳🇱 51.15.59.186

🇨🇳 36.103.222.120