๐ง๐ช
sid3windr
2026-06-20 09:41:29
(2 weeks ago)
GET /.git/HEAD (Tarpitted for 1d15h8m28s, wasted 8.06MB)
Web App Attack
๐ง๐ท
SOC PR
2026-06-18 22:38:37
(2 weeks ago)
IPS: Linux System Files Information Disclosure.
Hacking
๐ฎ๐ช
AutosOnShow
2026-06-18 21:45:07
(2 weeks ago)
blocked for webapp attack | path requested: /.env | seen at 2026-06-18 21:44:36.980 |
Web App Attack
๐ญ๐ฐ
sandra361
2026-06-18 20:16:21
(2 weeks ago)
Port scan detected: 8 attempts across 8 ports (2077,2082,2083,2086,2095,2096,443,80). | Evidence: GH ...
show more
Port scan detected: 8 attempts across 8 ports (2077,2082,2083,2086,2095,2096,443,80). | Evidence: GHOST_SCAN: IN=eth0 SRC=3.143.220.240 LEN=60 TOS=0x14 PREC=0x00 TTL=55 ID=42788 DF PROTO=TCP SPT=48528 DPT=443 WINDOW=62727 RES=0x00 SYN URGP=0
show less
Port Scan
๐บ๐ธ
antlac1
2026-06-18 19:59:59
(2 weeks ago)
crowdsecurity/http-probing
Brute-Force
Web App Attack
๐ฎ๐น
Inartis
2026-06-18 19:23:18
(2 weeks ago)
3.143.220.240 - - [18/Jun/2026:21:23:18 +0200] "GET /.git/HEAD HTTP/1.1" 302 418 "-" "Mozilla/5.0 (L ...
show more
3.143.220.240 - - [18/Jun/2026:21:23:18 +0200] "GET /.git/HEAD HTTP/1.1" 302 418 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
cybersteve99
2026-06-18 19:14:02
(2 weeks ago)
Too many 4xx Requests -
Brute-Force
Web App Attack
๐ต๐ฑ
webadmin
2026-06-18 19:04:26
(2 weeks ago)
Web App Attack
๐บ๐ธ
MPL
2026-06-18 17:32:42
(2 weeks ago)
tcp port scan (9 or more attempts)
Port Scan
๐ธ๐ช
Lemmy
2026-06-18 17:10:46
(2 weeks ago)
Web App Attack
๐ซ๐ท
Vaction
2026-06-18 16:50:57
(2 weeks ago)
3.143.220.240 - - [18/Jun/2026:18:50:56 +0200] "GET /.git/HEAD HTTP/1.1" 404 400 "-" "Mozilla/5.0 (W ...
show more
3.143.220.240 - - [18/Jun/2026:18:50:56 +0200] "GET /.git/HEAD HTTP/1.1" 404 400 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0"
show less
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 16:11:05
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 3.143.220.240 (ec2-3-143-220-240.us-east-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 3.143.220.240 (ec2-3-143-220-240.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 12:10:59.000386 2026] [security2:error] [pid 6231:tid 6231] [client 3.143.220.240:40828] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.91"] [uri "/.git/refs/heads/main"] [unique_id "ajQYklcewWPx2G_MyBtpMAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
acadeova
2026-06-18 14:42:43
(2 weeks ago)
Blocked by UFW on vps4 [2078/tcp]
Source port: 35876
TTL: 53
Packet length: 60
TOS: 0x00
This repor ...
show more
Blocked by UFW on vps4 [2078/tcp]
Source port: 35876
TTL: 53
Packet length: 60
TOS: 0x00
This report was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-18 14:16:11
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 3.143.220.240 (ec2-3-143-220-240.us-east-2.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 3.143.220.240 (ec2-3-143-220-240.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 10:16:06.372490 2026] [security2:error] [pid 13785:tid 13785] [client 3.143.220.240:56720] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.4"] [uri "/.git/HEAD"] [unique_id "ajP9phUp4-LfZW3Z8UeY2wAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
dzpk
2026-06-18 13:52:08
(2 weeks ago)
[18/Jun/2026:15:52:06 +0200] 178179072649.682877 3.143.220.240 33082 HOST 80 [18/Jun/2026:15:52:06 + ...
show more
[18/Jun/2026:15:52:06 +0200] 178179072649.682877 3.143.220.240 33082 HOST 80 [18/Jun/2026:15:52:06 +0200] 178179072699.308514 3.143.220.240 33090 HOST 80 [18/Jun/2026:15:52:07 +0200] 178179072764.687997 3.143.220.240 33126 HOST 80
show less
Web App Attack