Gem
2024-09-06 22:33:55
(1 day ago)
Unauthorized web scan.
Web App Attack
AvonleaConsulting
2024-09-03 23:01:57
(4 days ago)
Brute force attack stopped by firewall
Web Spam
Brute-Force
Web App Attack
Sefinek
2024-09-03 10:45:56
(5 days ago)
IP 195.178.110.35 [BG] triggered Cloudflare WAF (firewallCustom).
Action taken: BLOCK
AS ... show more IP 195.178.110.35 [BG] triggered Cloudflare WAF (firewallCustom).
Action taken: BLOCK
ASN: 48090 (PPTECHNOLOGY)
Protocol: HTTP/1.1 (method GET)
Domain: waw03-cf-mirror.sefinek.net
Endpoint: /.git/config
Timestamp: 2024-09-03T00:50:44Z
Ray ID: 8bd1bf540ae2b8af
Rule ID: 28ce88ae31c84d638aec7f360a4f64af
User agent: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Report generated by Node-Cloudflare-WAF-AbuseIPDB (https://github.com/sefinek24/Node-Cloudflare-WAF-AbuseIPDB) show less
Bad Web Bot
someone
2024-09-03 05:26:40
(5 days ago)
*:443 195.178.110.35 - - [03/Sep/2024:07:26:39 +0200] "GET /.git/config HTTP/1.1" 401 7848 "-" "Mozi ... show more *:443 195.178.110.35 - - [03/Sep/2024:07:26:39 +0200] "GET /.git/config HTTP/1.1" 401 7848 "-" "Mozilla/5.0 (Kubuntu; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0" show less
Web App Attack
akac
2024-09-03 05:04:27
(5 days ago)
Web vulnerability scanning: HTTP/1.1 GET /.git/config
Hacking
Brute-Force
Bad Web Bot
Web App Attack
Mr-Money
2024-09-03 05:02:52
(5 days ago)
195.178.110.35 - - [03/Sep/2024:07:02:51 +0200] "GET /.git/config HTTP/1.1" 404 3487 "-" "Mozilla/5. ... show more 195.178.110.35 - - [03/Sep/2024:07:02:51 +0200] "GET /.git/config HTTP/1.1" 404 3487 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
Anonymous
2024-09-03 04:44:21
(5 days ago)
2024/09/03 06:44:01 [error] 14655#14655: *3392957 access forbidden by rule, client: 195.178.110.35, ... show more 2024/09/03 06:44:01 [error] 14655#14655: *3392957 access forbidden by rule, client: 195.178.110.35, server: aide.bobelweb.eu, request: "GET /.git/config HTTP/1.1", host: "matthieu-boutique.stage.bobelweb.eu"
2024/09/03 06:44:01 [error] 14655#14655: *3392958 access forbidden by rule, client: 195.178.110.35, server: aide.bobelweb.eu, request: "GET /.git/config HTTP/1.1", host: "matthieu-boutique.stage.livedata.fr"
2024/09/03 06:44:20 [error] 14653#14653: *3392981 access forbidden by rule, client: 195.178.110.35, server: boutique.bobelweb.eu, request: "GET /.git/config HTTP/1.1", host: "boutique.bobelweb.eu" show less
Brute-Force
Web App Attack
Sefinek
2024-09-03 04:42:52
(5 days ago)
IP 195.178.110.35 [BG] triggered Cloudflare WAF (firewallCustom).
Action taken: BLOCK
AS ... show more IP 195.178.110.35 [BG] triggered Cloudflare WAF (firewallCustom).
Action taken: BLOCK
ASN: 48090 (PPTECHNOLOGY)
Protocol: HTTP/1.1 (method GET)
Domain: stella.sefinek.net
Endpoint: /.git/config
Timestamp: 2024-09-02T18:39:31Z
Ray ID: 8bcf9f900ad2664b
Rule ID: 28ce88ae31c84d638aec7f360a4f64af
User agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36
Report generated by Node-Cloudflare-WAF-AbuseIPDB (https://github.com/sefinek24/Node-Cloudflare-WAF-AbuseIPDB) show less
Bad Web Bot
MHuiG
2024-09-03 04:09:58
(5 days ago)
The IP has triggered Cloudflare WAF. action: managed_challenge source: firewallCustom clientAsn: 480 ... show more The IP has triggered Cloudflare WAF. action: managed_challenge source: firewallCustom clientAsn: 48090 clientASNDescription: PPTECHNOLOGY clientCountryName: BG clientIP: 195.178.110.35 clientRequestHTTPHost: blog.mhuig.top clientRequestHTTPMethodName: GET clientRequestHTTPProtocol: HTTP/1.1 clientRequestPath: /.git/config clientRequestQuery: datetime: 2024-09-03T03:28:29Z rayName: 8bd2a66a9ec8d593 ruleId: f4a2c940dd7944e58e72d246ea29b5af userAgent: Mozilla/5.0 (Windows NT 6.2; rv:128.0 ) Gecko/20100101 Firefox/128.0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less
Open Proxy
VPN IP
Port Scan
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
MPL
2024-09-03 03:56:13
(5 days ago)
tcp ports: 80,443 (8 or more attempts)
Port Scan
MPL
2024-09-03 03:56:13
(5 days ago)
tcp ports: 80,443 (16 or more attempts)
Port Scan
Rip
2024-09-03 03:15:58
(5 days ago)
[Mon Sep 02 20:15:57.887677 2024] [:error] [pid 232606:tid 232653] [client 195.178.110.35:42656] [cl ... show more [Mon Sep 02 20:15:57.887677 2024] [:error] [pid 232606:tid 232653] [client 195.178.110.35:42656] [client 195.178.110.35] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/etc/apache2/modsecurity-crs/coreruleset-4.5.0/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.5.0"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "westcoastdrones.io"] [uri "/.git/config"] [unique_id "ZtZ_bcaSjNU4LikT99nkCgAAABM"]
... show less
Web App Attack
advena
2024-09-03 03:15:55
(5 days ago)
195.178.110.35 (AS48090 PPTECHNOLOGY) was intercepted at 2024-09-03T03:10:16Z after violating WAF di ... show more 195.178.110.35 (AS48090 PPTECHNOLOGY) was intercepted at 2024-09-03T03:10:16Z after violating WAF directive: 3204652821e74342a9b30c9d86680341. Pre-cautionary/corrective action applied: block. show less
Web Spam
Hacking
Brute-Force
Web App Attack
MHuiG
2024-09-03 02:35:09
(5 days ago)
The IP has triggered Cloudflare WAF. action: managed_challenge source: firewallCustom clientAsn: 480 ... show more The IP has triggered Cloudflare WAF. action: managed_challenge source: firewallCustom clientAsn: 48090 clientASNDescription: PPTECHNOLOGY clientCountryName: BG clientIP: 195.178.110.35 clientRequestHTTPHost: cdn.mhuig.top clientRequestHTTPMethodName: GET clientRequestHTTPProtocol: HTTP/1.1 clientRequestPath: /.git/config clientRequestQuery: datetime: 2024-09-03T01:03:42Z rayName: 8bd1d25559471e7d ruleId: f4a2c940dd7944e58e72d246ea29b5af userAgent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/117.0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less
Open Proxy
VPN IP
Port Scan
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
advena
2024-09-03 02:15:56
(5 days ago)
195.178.110.35 (AS48090 PPTECHNOLOGY) was intercepted at 2024-09-03T02:04:08Z after violating WAF di ... show more 195.178.110.35 (AS48090 PPTECHNOLOGY) was intercepted at 2024-09-03T02:04:08Z after violating WAF directive: 23548ee2b36547a1be09bb2c0550c529. Pre-cautionary/corrective action applied: block. show less
Web Spam
Hacking
Brute-Force
Web App Attack