๐บ๐ธ
markawes
2026-06-19 10:27:02
(3 weeks ago)
[SynFast] Auto banned by Fail2Ban. Reason: Web vulnerability scan detected. Evidence:
172.182.225.6 ...
show more
[SynFast] Auto banned by Fail2Ban. Reason: Web vulnerability scan detected. Evidence:
172.182.225.6 - - [19/Jun/2026:10:26:56 +0000] "GET /.git/HEAD HTTP/1.1" 404 196 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36"
172.182.225.6 - - [19/Jun/2026:10:27:01 +0000] "GET /.git/logs/HEAD HTTP/1.1" 404 196 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36"
show less
Web App Attack
Port Scan
๐น๐ญ
Sawasdee
2026-06-19 10:06:05
(3 weeks ago)
Unwanted checking 80 or 443 port
...
Bad Web Bot
๐ต๐ฑ
sefinek.net
2026-06-05 08:43:53
(1 month ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (G ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (GET) | Endpoint: / | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
Anonymous
2026-06-03 15:03:56
(1 month ago)
PORT & IP Scan.
Port Scan
Brute-Force
๐บ๐ธ
kelliwic.net
2026-06-03 07:49:22
(1 month ago)
Port scan detected (F2B)
Port Scan
๐ซ๐ฎ
6kilowatti
2026-06-03 06:49:20
(1 month ago)
172.182.225.6 - - [03/Jun/2026:09:49:19 +0300] "GET /.git/config HTTP/1.1" 404 153 "-" "Mozilla/5.0 ...
show more
172.182.225.6 - - [03/Jun/2026:09:49:19 +0300] "GET /.git/config HTTP/1.1" 404 153 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
...
show less
Web App Attack
๐บ๐ธ
RAP
2026-06-03 05:57:38
(1 month ago)
2026-06-03 05:57:38 UTC Unauthorized activity to TCP port 8443. Web App
Port Scan
Web App Attack
๐บ๐ธ
xmission.com
2026-06-03 05:56:01
(1 month ago)
Blocked by UFW (TCP on 2087)
Source port: 27699
TTL: 53
Packet length: 60
TOS: 0x00
This report (fo ...
show more
Blocked by UFW (TCP on 2087)
Source port: 27699
TTL: 53
Packet length: 60
TOS: 0x00
This report (for 172.182.225.6) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-03 05:20:06
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.182.225.6 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.182.225.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 01:20:00.175427 2026] [security2:error] [pid 15377:tid 15377] [client 172.182.225.6:27687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.160"] [uri "/.git/HEAD"] [unique_id "ah-5gErd7QfB7Fo980sjeQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-03 04:52:11
(1 month ago)
Unauthorized access (tcp/8080 - Scan for open web proxy)
Port Scan
๐ง๐ท
SOC PR
2026-06-03 04:38:17
(1 month ago)
IPS: Web Server Exposed Git Repository Information Disclosure.
Hacking
Anonymous
2026-06-03 04:31:31
(1 month ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐ฌ๐ง
PeravixGroup
2026-06-03 04:19:53
(1 month ago)
Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ...
show more
Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud
show less
Port Scan
Bad Web Bot
๐ฏ๐ต
demonsword
2026-05-01 11:07:42
(2 months ago)
Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ...
show more
Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: cloudflare.com:443
show less
Open Proxy
Port Scan
๐บ๐ธ
TPI-Abuse
2026-04-21 00:44:13
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.182.225.6 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.182.225.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 20 20:44:07.841292 2026] [security2:error] [pid 461630:tid 461630] [client 172.182.225.6:21536] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "starsmogsandiego.com"] [uri "/@fs/.git/config"] [unique_id "aebIVwyiO1jz6zggOfWUIgAAAAs"], referer: https://www.reddit.com/
show less
Brute-Force
Bad Web Bot
Web App Attack