๐ณ๐ฑ
ParaBug
2026-07-16 14:51:57
(19 hours ago)
195.189.97.43 - - [16/Jul/2026:16:51:57 +0200] "GET /.git/HEAD HTTP/1.1" 301 4673 "-" "Go-http-clien ...
show more
195.189.97.43 - - [16/Jul/2026:16:51:57 +0200] "GET /.git/HEAD HTTP/1.1" 301 4673 "-" "Go-http-client/1.1"
...
show less
Phishing
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 12:06:58
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 08:06:53.550567 2026] [security2:error] [pid 4054033:tid 4054033] [client 195.189.97.43:49394] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "3905ccn.org"] [uri "/.git/HEAD"] [unique_id "aljJXSum-zWO0IHks3ZjPAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 10:03:28
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 06:03:24.766432 2026] [security2:error] [pid 2582:tid 2582] [client 195.189.97.43:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nyemdr.org"] [uri "/.git/HEAD"] [unique_id "alisbF5X_wkYIrM-aD68rQAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 08:41:56
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 04:41:51.244107 2026] [security2:error] [pid 18622:tid 18622] [client 195.189.97.43:48452] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karenbernsteinlaw.net"] [uri "/.git/HEAD"] [unique_id "aliZT4QEYCzFkF1xkjpmSAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
Blinker73
2026-07-16 07:17:48
(1 day ago)
195.189.97.43 - - [16/Jul/2026:03:17:45 -0400] "GET /.git/HEAD HTTP/1.1" 403 146 "-" "Go-http-client ...
show more
195.189.97.43 - - [16/Jul/2026:03:17:45 -0400] "GET /.git/HEAD HTTP/1.1" 403 146 "-" "Go-http-client/1.1"
show less
Bad Web Bot
Web App Attack
๐ฆ๐น
Renรฉ Hickersberger
2026-07-16 07:16:47
(1 day ago)
malicious bot detected: violations="hit-honeypot"; user_agent="Go-http-client/1.1"
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 06:17:44
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 02:17:37.311036 2026] [security2:error] [pid 28632:tid 28632] [client 195.189.97.43:40964] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adj-tech.net"] [uri "/.git/HEAD"] [unique_id "alh3gVcSBNfEjmXUhgSFKwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
pinguin
2026-07-16 05:39:31
(1 day ago)
Triggered Cloudflare WAF (firewallManaged) from NL.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET meth ...
show more
Triggered Cloudflare WAF (firewallManaged) from NL.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/HEAD
UA: Go-http-client/1.1
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-16 05:29:09
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 01:29:01.935811 2026] [security2:error] [pid 1625:tid 1629] [client 195.189.97.43:53654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "latinofederation.org"] [uri "/.git/HEAD"] [unique_id "alhsHco3AHfHquGLW4nnJgAAAEE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:08:35
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:08:27.594636 2026] [security2:error] [pid 14820:tid 14837] [client 195.189.97.43:36812] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pecanvalleyestates.net"] [uri "/.git/HEAD"] [unique_id "alg9G_T2B5Zb1Zp33aSCuQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 00:45:49
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 20:45:44.594837 2026] [security2:error] [pid 1470023:tid 1470023] [client 195.189.97.43:58170] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "raumschach.org"] [uri "/.git/HEAD"] [unique_id "algpuCZOibM2tCUNg2MPQgAAACQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 00:09:05
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 20:09:00.472874 2026] [security2:error] [pid 13385:tid 13475] [client 195.189.97.43:50208] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schecter.org"] [uri "/.git/HEAD"] [unique_id "alghHP65-UX5BYTTHsK58wAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 23:52:23
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 19:52:15.851628 2026] [security2:error] [pid 12230:tid 12230] [client 195.189.97.43:44612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "monogay.org"] [uri "/.git/HEAD"] [unique_id "algdL6FRCF6s-4FArB_IZAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-07-15 23:46:19
(1 day ago)
Web vulnerability probing: /.git/HEAD
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 23:29:24
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherrys ...
show more
(mod_security) mod_security (id:210492) triggered by 195.189.97.43 (ip-195-189-97-43.010.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 19:29:18.536122 2026] [security2:error] [pid 29387:tid 29387] [client 195.189.97.43:43668] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "edupal.net"] [uri "/.git/HEAD"] [unique_id "algXzq9lMnTcT0R77rPXMgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack