Anonymous
2024-11-18 20:33:14
(2 weeks ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Xuan Can
2024-11-18 20:23:48
(2 weeks ago)
(mod_security) mod_security (id:6) triggered by 145.40.97.148 (NL/The Netherlands/-): 1 in the last ... show more (mod_security) mod_security (id:6) triggered by 145.40.97.148 (NL/The Netherlands/-): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 19 03:23:42.486727 2024] [security2:error] [pid 26055:tid 26099] [client 145.40.97.148:16347] [client 145.40.97.148] ModSecurity: Access denied with connection close (phase 2). Pattern match "wp-login.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "62"] [id "6"] [severity "CRITICAL"] [hostname "kb.pavietnam.vn"] [uri "/wp-login.php"] [unique_id "ZzuiTqlH_3amvIii4mg3_AAAABA"], referer: https://kb.pavietnam.vn/top-5-plugin-phan-tich-du-lieu-wordpress-2022.html show less
Brute-Force
SSH
MAGIC
2024-11-18 11:05:52
(2 weeks ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
sefinek.net
2024-11-18 10:47:38
(2 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: ... show more Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: 54825 (PACKET)
Protocol: HTTP/1.1 (GET method)
Zone: sefinek.net
Endpoint: /genshin-stella-mod
Timestamp: 2024-11-18T09:57:12Z
Ray ID: 8e47184e498c6646
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:114.0) Gecko/20100101 Firefox/114.0
Report generated by Cloudflare-WAF-To-AbuseIPDB:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less
Bad Web Bot
ki3
2024-11-18 10:00:25
(2 weeks ago)
Fail2Ban: Web App Attacks and Forum Spam 145.40.97.148 1731924024.0(JST)
Web Spam
Bad Web Bot
Web App Attack
Anonymous
2024-11-18 06:57:52
(2 weeks ago)
postfix-sasl
Brute-Force
Web App Attack
packets-decreaser.net
2024-11-17 23:27:09
(2 weeks ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
sefinek.net
2024-11-17 15:37:21
(2 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: ... show more Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: 54825 (PACKET)
Protocol: HTTP/1.1 (GET method)
Zone: sefinek.net
Endpoint: /genshin-stella-mod
Timestamp: 2024-11-17T14:39:12Z
Ray ID: 8e407809797a6607
UA: Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51
Report generated by Cloudflare-WAF-To-AbuseIPDB:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less
Bad Web Bot
nyuuzyou
2024-11-17 15:16:39
(2 weeks ago)
Intensive scraping: /web?s=%22Welcome%20to%20MoinMoin.%20You%20will%20find%20here%20the%20help%20pag ... show more Intensive scraping: /web?s=%22Welcome%20to%20MoinMoin.%20You%20will%20find%20here%20the%20help%20pages%20for%20the%20wiki%20system%20itself.%22&country=ng-ng&scraper=yandex. User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1264.71. show less
Bad Web Bot
PulseServers
2024-11-17 08:59:47
(2 weeks ago)
Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISCA1
... show less
DDoS Attack
Exploited Host
nationaleventpros.com
2024-11-17 08:06:18
(2 weeks ago)
WordPress login attempt
Brute-Force
sefinek.net
2024-11-17 03:25:40
(3 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: ... show more Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: 54825 (PACKET)
Protocol: HTTP/1.1 (GET method)
Zone: sefinek.net
Endpoint: /
Timestamp: 2024-11-17T01:23:33Z
Ray ID: 8e3bea8698f90bc0
UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51
Report generated by Cloudflare-WAF-To-AbuseIPDB:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less
Bad Web Bot
sefinek.net
2024-11-16 13:12:28
(3 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: ... show more Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: 54825 (PACKET)
Protocol: HTTP/1.1 (GET method)
Zone: sefinek.net
Endpoint: /genshin-stella-mod
Timestamp: 2024-11-16T12:26:37Z
Ray ID: 8e377871bb6a6697
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36
Report generated by Cloudflare-WAF-To-AbuseIPDB:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less
Bad Web Bot
sefinek.net
2024-11-16 07:08:12
(3 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: ... show more Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: 54825 (PACKET)
Protocol: HTTP/1.1 (GET method)
Zone: sefinek.net
Endpoint: /genshin-stella-mod
Timestamp: 2024-11-16T03:25:11Z
Ray ID: 8e345f512b2866c4
UA: Mozilla/5.0 (Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0
Report generated by Cloudflare-WAF-To-AbuseIPDB:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less
Bad Web Bot
sefinek.net
2024-11-16 01:03:36
(3 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: ... show more Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: MANAGED_CHALLENGE
ASN: 54825 (PACKET)
Protocol: HTTP/1.1 (GET method)
Zone: sefinek.net
Endpoint: /genshin-stella-mod
Timestamp: 2024-11-15T23:22:08Z
Ray ID: 8e32fb4d8e0366f2
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:114.0) Gecko/20100101 Firefox/114.0
Report generated by Cloudflare-WAF-To-AbuseIPDB:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less
Bad Web Bot