๐ณ๐ด
Bots.go.to.hell
2026-07-02 10:21:23
(12 hours ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-bad-user-agent
Web App Attack
Bad Web Bot
๐ซ๐ฎ
000rosiu
2026-07-02 08:30:43
(14 hours ago)
Triggered Cloudflare WAF (bic) from SE.
Action: BLOCK | Protocol: HTTP/2 (GET) | Endpoint: /auth | U ...
show more
Triggered Cloudflare WAF (bic) from SE.
Action: BLOCK | Protocol: HTTP/2 (GET) | Endpoint: /auth | UA: "Mozilla/5.0 (iPhone; CPU iPhone OS 18_3_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3.1 Mobile/15E148 Safari/604." โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
Choice Tech LLC
2026-07-02 07:50:01
(15 hours ago)
Blocked by OPNsense firewall; 5 hits, proto=tcp, ports=443
Port Scan
Hacking
๐ธ๐ฌ
securejdprop
2026-07-02 04:14:23
(18 hours ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-probing. crowdsecurity/http-probing
Hacking
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-05-31 23:08:01
(1 month ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02]
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-31 22:29:36
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 89.37.63.249 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 89.37.63.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 18:29:29.791039 2026] [security2:error] [pid 29589:tid 29589] [client 89.37.63.249:41334] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "caferutadelaseda.com"] [uri "/.git/index"] [unique_id "ahy2SYqYCgl8JPgRW5oNmAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-05-31 22:07:01
(1 month ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [wa01,wa02]
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-31 21:51:12
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 89.37.63.249 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 89.37.63.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 17:51:06.418626 2026] [security2:error] [pid 22896:tid 22896] [client 89.37.63.249:35778] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "buenasfrecuencias.com"] [uri "/.git/index"] [unique_id "ahytShcawgE5o8OV_ryUEgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-05-31 21:43:00
(1 month ago)
Try to access /.git/index
Web App Attack
๐ง๐ช
cmbplf
2026-05-31 21:34:18
(1 month ago)
211 requests with url.path *.git/*
Brute-Force
Bad Web Bot
Anonymous
2026-05-31 21:30:01
(1 month ago)
suspicious request in access.log
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-31 21:27:51
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 89.37.63.249 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210492) triggered by 89.37.63.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 17:27:48.129363 2026] [security2:error] [pid 9122:tid 9122] [client 89.37.63.249:47558] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brinkworthmodels.com"] [uri "/.git/index"] [unique_id "ahyn1H-i4M3KSqQEyqiqnwAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-05-31 20:40:43
(1 month ago)
dot file probe
Web App Attack
๐ฌ๐ง
Smish
2026-05-31 20:18:49
(1 month ago)
HONEYPOT HIT --> Fail2ban time=1780258727 log=2026-05-31T21:18:47+01:00 ip=89.37.63.249 host=as21066 ...
show more
HONEYPOT HIT --> Fail2ban time=1780258727 log=2026-05-31T21:18:47+01:00 ip=89.37.63.249 host=as210667.net method=GET uri="/.git/index" status=404 ua="moving-to-bins/1.0" ref="-" rid=109bbe165ee053394ef892f166eced00
show less
Web App Attack
๐ซ๐ฎ
as211431.net
2026-05-31 20:14:18
(1 month ago)
Triggered Cloudflare WAF (firewallCustom) from SE.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from SE.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/index
UA: moving-to-bins/1.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot