๐บ๐ธ
TPI-Abuse
2026-07-02 10:41:47
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 06:41:37.414764 2026] [security2:error] [pid 26302:tid 26302] [client 2a02:4780:59:8f82::1:4818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.electronica.luisgtechgroup.com"] [uri "/.git/HEAD"] [unique_id "akZAYfWVpQON9yT-m2l0fAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
SLSLLC
2026-07-01 19:06:05
(2 days ago)
2a02:4780:59:8f82::1 - - [01/Jul/2026:19:06:04 +0000] "GET /.env.production.local HTTP/2.0" 403 1927 ...
show more
2a02:4780:59:8f82::1 - - [01/Jul/2026:19:06:04 +0000] "GET /.env.production.local HTTP/2.0" 403 1927 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:137.0) Gecko/20100101 Firefox/137.0"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 10:58:06
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 06:58:03.385730 2026] [security2:error] [pid 23769:tid 23769] [client 2a02:4780:59:8f82::1:55984] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mukau.com"] [uri "/.env"] [unique_id "akOhO3prZ_ShBerH8h4JAgAAABU"], referer: https://www.google.com/search?q=mukau.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 10:19:15
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 06:19:09.068620 2026] [security2:error] [pid 5003:tid 5003] [client 2a02:4780:59:8f82::1:52310] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lynnsmetkodesigns.com"] [uri "/.env.backup"] [unique_id "akOYHUy1pm_xVp9JLKEUHgAAAAE"], referer: https://www.google.com/search?q=lynnsmetkodesigns.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
pm33
2026-06-30 03:15:35
(4 days ago)
Excessive crawling HTTP 404
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-06-29 17:43:26
(4 days ago)
Try to access /.git/config
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 15:59:07
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 11:59:00.775968 2026] [security2:error] [pid 7797:tid 7797] [client 2a02:4780:59:8f82::1:39140] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bccnews.us"] [uri "/.env.test"] [unique_id "akKWRGz-7lv_dkSON3hKnQAAABs"], referer: https://www.google.com/search?q=bccnews.us
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 12:01:19
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 08:01:12.190300 2026] [security2:error] [pid 32258:tid 32258] [client 2a02:4780:59:8f82::1:45802] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.reinosus.com.verdadesreales.com"] [uri "/.env.local"] [unique_id "akENCDhdKTNUZ-fl0qRZPQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-06-27 03:17:35
(1 week ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ซ๐ฎ
as211431.net
2026-06-26 21:35:05
(1 week ago)
Triggered Cloudflare WAF (firewallManaged) from ID.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET meth ...
show more
Triggered Cloudflare WAF (firewallManaged) from ID.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /wp-config.php
UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฉ๐ช
macrob
2026-06-26 17:36:21
(1 week ago)
2026/06/26 17:36:18 [error] 4133852#4133852: *332572314 access forbidden by rule, client: 2a02:4780: ...
show more
2026/06/26 17:36:18 [error] 4133852#4133852: *332572314 access forbidden by rule, client: 2a02:4780:59:8f82::1, server: 100fs.org, request: "GET /.pypirc HTTP/1.1", host: "100fs.org", referrer: "https://www.google.com/search?q=100fs.org"
2026/06/26 17:36:19 [error] 4133852#4133852: *332570925 access forbidden by rule, client: 2a02:4780:59:8f82::1, server: 100fs.org, request: "GET /.env.production.local HTTP/1.1", host: "100fs.org", referrer: "https://www.google.com/search?q=100fs.org"
2026/06/26 17:36:19 [error] 4133852#4133852: *332572314 access forbidden by rule, client: 2a02:4780:59:8f82::1, server: 100fs.org, request: "GET /.dev.vars HTTP/1.1", host: "100fs.org"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-26 14:48:42
(1 week ago)
2a02:4780:59:8f82::1 - - [26/Jun/2026:17:48:38 +0300] "GET /.env HTTP/1.1" 404 3340 "https://www.goo ...
show more
2a02:4780:59:8f82::1 - - [26/Jun/2026:17:48:38 +0300] "GET /.env HTTP/1.1" 404 3340 "https://www.google.com/search?q=b2b-marketing-proc.fmm.kpi.ua" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
2a02:4780:59:8f82::1 - - [26/Jun/2026:17:48:41 +0300] "GET /wp-config.php.bak HTTP/1.1" 404 3341 "https://www.google.com/search?q=b2b-marketing-proc.fmm.kpi.ua" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.6422.113 Mobile Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 01:55:32
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 21:55:29.123951 2026] [security2:error] [pid 15964:tid 16040] [client 2a02:4780:59:8f82::1:56144] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coloradospringsmardigras.com"] [uri "/.env.production.local"] [unique_id "ajyKkd6FYU_curyM8DeMfQAAAg8"], referer: https://www.google.com/search?q=coloradospringsmardigras.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 02:15:44
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): ...
show more
(mod_security) mod_security (id:210492) triggered by 2a02:4780:59:8f82::1 (srv1198302.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:15:36.612732 2026] [security2:error] [pid 7862:tid 7862] [client 2a02:4780:59:8f82::1:56496] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.rivercitieshtg.com"] [uri "/.git/config"] [unique_id "ajs9yHiXjaIBYTmRt1dc2AAAAAw"], referer: https://www.google.com/search?q=autodiscover.rivercitieshtg.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-23 22:30:50
(1 week ago)
Brute-Force
Web App Attack