π«π·
ELYAZ
2026-06-30 06:56:02
(9 hours ago)
(y4) Failed scan -byebye- from 45.3.54.84 (GB/United Kingdom/-): (CF_ENABLE)
Hacking
π²π½
octageeks.com
2026-06-27 04:19:59
(3 days ago)
Wordpress malicious attack:[octaflood]
Web App Attack
π©πͺ
LRob.fr
2026-04-14 05:30:09
(2 months ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-19 05:48:46
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:48:38.916384 2026] [security2:error] [pid 17010:tid 17010] [client 45.3.54.84:45331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kunzteam.com"] [uri "/config/.env"] [unique_id "aZakNkQuE1CqLMrHy2p57AAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-19 02:33:11
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:33:08.156890 2026] [security2:error] [pid 29047:tid 29047] [client 45.3.54.84:24301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kcmastercleaners.com"] [uri "/v2/.git/config"] [unique_id "aZZ2ZFpdX4Cd9yTUEXBVmAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-18 18:48:27
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:48:22.576231 2026] [security2:error] [pid 16713:tid 16713] [client 45.3.54.84:41127] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thoughtage.com"] [uri "/admin/.env"] [unique_id "aZYJdhfpSvfJg_z2tSXs7gAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π³π±
debestelapp
2026-02-18 17:30:04
(4 months ago)
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-18 16:19:40
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 11:19:34.810109 2026] [security2:error] [pid 23566:tid 23566] [client 45.3.54.84:31959] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yogitunes.com"] [uri "/backup/.git/config"] [unique_id "aZXmlnous_FzYZiogHFZzwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΊ
DZBOT
2026-02-18 14:54:58
(4 months ago)
Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-18 12:34:55
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:34:51.682800 2026] [security2:error] [pid 22772:tid 22772] [client 45.3.54.84:19433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "weddingnapkinscustom.com"] [uri "/.env"] [unique_id "aZWx63rJjZ2EsgrOtzJzqQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-18 11:46:52
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 06:46:42.875790 2026] [security2:error] [pid 23441:tid 23441] [client 45.3.54.84:46385] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wamgirlz.com"] [uri "/api/.env"] [unique_id "aZWmoqmmdyyWNZdOxVK8lQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πͺπΈ
10dencehispahard SL
2026-01-13 06:56:38
(5 months ago)
Wordpress probing for vulnerabilities
Hacking
Exploited Host
πΊπΈ
TPI-Abuse
2025-11-25 06:42:53
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:42:41.561308 2025] [security2:error] [pid 10747:tid 10755] [client 45.3.54.84:39959] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.seattlefamilydoula.com"] [uri "/.svn/wc.db"] [unique_id "aSVP4V2GfO2s-Qdwr6eHmQAAAIM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-25 03:21:34
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:21:29.065797 2025] [security2:error] [pid 4443:tid 4443] [client 45.3.54.84:17893] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "denverrealestateadvice.com"] [uri "/.svn/wc.db"] [unique_id "aSUgubwr2JgrGHwnPzQkYAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π΅π±
sefinek.net
2025-11-04 09:49:16
(7 months ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /genshin-stella-mod
UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot