๐ณ๐ฑ
IP Analyzer
2025-01-05 19:15:34
(1 year ago)
Unauthorized connection attempt from IP address 167.99.148.101 on Port 1000
Port Scan
Anonymous
2024-10-26 23:55:40
(1 year ago)
Multiple unauthorized attempt to access to non-existent path
Web App Attack
๐ต๐ฑ
sefinek.net
2024-10-26 21:35:40
(1 year ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
ASN: 14061 (DIGITALOCEAN-ASN) ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
ASN: 14061 (DIGITALOCEAN-ASN)
Protocol: HTTP/1.1 (method GET)
Domain: sefinek.net
Endpoint: /.git/config
Timestamp: 2024-10-26T21:02:39Z
Ray ID: 8d8d6379fe468c42
Rule ID: 28ce88ae31c84d638aec7f360a4f64af
UA: SEC-SGHX820/1.0 NetFront/3.2 Profile/MIDP-2.0 Configuration/CLDC-1.1
Report generated by Node-Cloudflare-WAF-AbuseIPDB https://github.com/sefinek24/Node-Cloudflare-WAF-AbuseIPDB
show less
Bad Web Bot
๐ซ๐ท
โจ
2024-10-26 21:14:02
(1 year ago)
Domain : subastame.net
Rule : config
2024-10-26 21:12:56 152.53.103.155 GET /.git/config - 80 - 162. ...
show more
Domain : subastame.net
Rule : config
2024-10-26 21:12:56 152.53.103.155 GET /.git/config - 80 - 162.158.154.234 HTTP/1.1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36 - subastame.net 404 8 0 5177 463 92 - 167.99.148.101
show less
Hacking
SQL Injection
๐บ๐ธ
mashamal
2024-10-26 20:46:54
(1 year ago)
Vulnerability Probe
...
Web App Attack
๐ซ๐ท
โจ
2024-10-26 20:28:02
(1 year ago)
Domain : misubasta.net
Rule : config
2024-10-26 20:27:22 152.53.103.155 GET /.git/config - 443 - 172 ...
show more
Domain : misubasta.net
Rule : config
2024-10-26 20:27:22 152.53.103.155 GET /.git/config - 443 - 172.70.114.72 HTTP/2 Mozilla/5.0 (Linux; U; Android 2.0.1; de-de; Milestone Build/SHOLS_U2_01.14.0) AppleWebKit/530.17 (KHTML, like Gecko) Version/4.0 Mobile Safari/530.17 - misubasta.net 404 8 0 5011 472 1233 - 167.99.148.101
show less
Hacking
SQL Injection
๐จ๐ฟ
akac
2024-10-26 20:01:01
(1 year ago)
Web vulnerability scanning: HTTP/1.1 GET /.git/config
Hacking
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
el-brujo
2024-10-26 19:58:33
(1 year ago)
Cloudflare WAF: Request Path: /.git/config Request Query: Host: hwagm.elhacker.net userAgent: Mozil ...
show more
Cloudflare WAF: Request Path: /.git/config Request Query: Host: hwagm.elhacker.net userAgent: Mozilla/5.0 (Linux; Android 9; GM1910) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36 Action: block Source: firewallManaged ASN Description: DIGITALOCEAN-ASN Country: US Method: GET Timestamp: 2024-10-26T19:58:33Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐ช๐ธ
el-brujo
2024-10-26 19:43:36
(1 year ago)
Cloudflare WAF: Request Path: /.git/config Request Query: Host: foro.elhacker.net userAgent: Mozill ...
show more
Cloudflare WAF: Request Path: /.git/config Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3724.8 Safari/537.36 Action: block Source: firewallManaged ASN Description: DIGITALOCEAN-ASN Country: US Method: GET Timestamp: 2024-10-26T19:43:36Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐จ๐ญ
blinx
2024-10-26 19:09:09
(1 year ago)
Suspicious activity detected by Modsecurity
Web Spam
Port Scan
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-10-11 11:24:25
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 167.99.148.101 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 167.99.148.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 11 07:24:17.424032 2024] [security2:error] [pid 21750:tid 21750] [client 167.99.148.101:45138] [client 167.99.148.101] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lookmagazine.net"] [uri "/.git/config"] [unique_id "ZwkK4ZHzXSkkaq-oesAFdgAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-10-11 09:56:16
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 167.99.148.101 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 167.99.148.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 11 05:56:09.098449 2024] [security2:error] [pid 6496:tid 6496] [client 167.99.148.101:37364] [client 167.99.148.101] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deepworld.org"] [uri "/.git/config"] [unique_id "Zwj2OQUN7T4CrcJ4lgT_ogAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
ne1for23
2024-09-30 00:45:19
(1 year ago)
Attempting to probe for sensitive information accidently exposed via git config.
167.99.148.101 - - ...
show more
Attempting to probe for sensitive information accidently exposed via git config.
167.99.148.101 - - [30/Sep/2024:00:45:19 +0000] "GET /.git/config HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Linux; Android 9; SAMSUNG SM-G973F Build/PPR1.180610.011) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/9.4 Chrome/67.0.3396.87 Mobile Safari/537.36"
show less
Hacking
๐บ๐ธ
mnsf
2024-09-30 00:06:15
(1 year ago)
Too many Status 40X (19)
Brute-Force
Web App Attack
๐ฌ๐ง
openstrike.co.uk
2024-09-28 05:12:35
(1 year ago)
2 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking