MPL
2024-08-06 02:56:03
(1 month ago)
tcp/80
Port Scan
MPL
2024-08-06 02:56:03
(1 month ago)
tcp/80
Port Scan
Anonymous
2024-08-06 02:46:54
(1 month ago)
[Mon Aug 05 23:46:54.093293 2024] [proxy_fcgi:error] [pid 268911:tid 268911] [client 142.93.238.34:5 ... show more [Mon Aug 05 23:46:54.093293 2024] [proxy_fcgi:error] [pid 268911:tid 268911] [client 142.93.238.34:59938] AH01071: Got error 'Primary script unknown'
... show less
Web App Attack
Cloudkul Cloudkul
2024-08-06 02:25:08
(1 month ago)
Multiple unauthorized attempts to access web resources
Brute-Force
Web App Attack
muhammad isa
2024-08-06 01:58:47
(1 month ago)
2024-08-06 02:58:41: (mod_openssl.c.3371) SSL: 1 error:0A0000C1:SSL routines::no shared cipher (142. ... show more 2024-08-06 02:58:41: (mod_openssl.c.3371) SSL: 1 error:0A0000C1:SSL routines::no shared cipher (142.93.238.34)
2024-08-06 02:58:41: (mod_openssl.c.3378) SSL: 1 error:0A000102:SSL routines::unsupported protocol (142.93.238.34) show less
Hacking
Anonymous
2024-08-06 00:35:33
(1 month ago)
[Tue Aug 06 02:22:53.258559 2024] [php7:error] [pid 5724] [client 142.93.238.34:33272] script ' ... show more [Tue Aug 06 02:22:53.258559 2024] [php7:error] [pid 5724] [client 142.93.238.34:33272] script '/var/www/alive.php' not found or unable to stat ... show less
Web App Attack
RoboSOC
2024-08-06 00:09:30
(1 month ago)
SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found
Port Scan
Anonymous
2024-08-05 23:37:20
(1 month ago)
142.93.238.34 - visio.sliver85.eu - [06/Aug/2024:00:36:42 +0200] "GET /ab2g HTTP/1.1" 444 "Mozilla/5 ... show more 142.93.238.34 - visio.sliver85.eu - [06/Aug/2024:00:36:42 +0200] "GET /ab2g HTTP/1.1" 444 "Mozilla/5.0 zgrab/0.x"
142.93.238.34 - visio.sliver85.eu - [06/Aug/2024:00:36:42 +0200] "GET /ab2h HTTP/1.1" 444 "Mozilla/5.0 zgrab/0.x"
142.93.238.34 - visio.sliver85.eu - [06/Aug/2024:00:36:42 +0200] "GET /alive.php HTTP/1.1" 444 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
142.93.238.34 - visio.sliver85.eu - [06/Aug/2024:00:36:42 +0200] "GET / HTTP/1.1" 444 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
142.93.238.34 - visio.sliver85.eu - [06/Aug/2024:00:36:42 +0200] "GET /t4 HTTP/1.1" 444 "Mozilla/5.0"
142.93.238.34 - visio.sliver85.eu - [06/Aug/2024:00:36:42 +0200] "GET / HTTP/1.1" 444 "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 10.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)"
142.93.238.34 - visio.sliver85.eu - [06/A
... show less
Brute-Force
Web App Attack
Sefinek
2024-08-05 19:38:41
(1 month ago)
IP: 142.93.238.34
Protocol: TCP
Source port: 49516
Destination port: 443
TTL ... show more IP: 142.93.238.34
Protocol: TCP
Source port: 49516
Destination port: 443
TTL: 236
Packet length: 44
TOS: 0x00
Timestamp: Aug 5 21:38:33 (21:38:33, 05.08.2024)
The IP address was blocked by the Uncomplicated Firewall (UFW) due to suspicious activity. Packet details indicate a possible unauthorized access attempt or network scan. show less
Port Scan
Web App Attack
MPL
2024-08-05 19:11:20
(1 month ago)
tcp/443 (5 or more attempts)
Port Scan
Tankudoraiba
2024-08-05 19:10:10
(1 month ago)
Unauthorized connection attempts on ports 443|80
Port Scan
Bad Web Bot
diego
2024-08-05 19:05:37
(1 month ago)
Events: TCP SYN Discovery or Flooding, Seen 8 times in the last 10800 seconds
DDoS Attack
Anonymous
2024-08-05 18:53:40
(1 month ago)
142.93.238.34 - - [05/Aug/2024:20:53:28 +0200] "GET /ab2g HTTP/1.1" 480 0 "-" "Mozilla/5.0 zgrab/0.x ... show more 142.93.238.34 - - [05/Aug/2024:20:53:28 +0200] "GET /ab2g HTTP/1.1" 480 0 "-" "Mozilla/5.0 zgrab/0.x"
142.93.238.34 - - [05/Aug/2024:20:53:29 +0200] "GET /ab2h HTTP/1.1" 480 0 "-" "Mozilla/5.0 zgrab/0.x"
142.93.238.34 - - [05/Aug/2024:20:53:30 +0200] "GET /alive.php HTTP/1.1" 480 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
142.93.238.34 - - [05/Aug/2024:20:53:35 +0200] "GET / HTTP/1.1" 480 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
142.93.238.34 - - [05/Aug/2024:20:53:36 +0200] "GET /t4 HTTP/1.1" 480 0 "-" "Mozilla/5.0"
142.93.238.34 - - [05/Aug/2024:20:53:39 +0200] "GET / HTTP/1.1" 480 0 "-" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 10.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)"
142.93.238.34 - - [05/Aug/2024:20:53:40 +0200] "GET /teorema505?t=1 HTTP/1.1" 480 0 "-" "Mozilla/5.0 (Windows NT
... show less
Web App Attack