Cookie
2024-10-15 03:21:45
(4 weeks ago)
Blocked by UFW (TCP on port 80).
Source port: 32622
TTL: 48
Packet length: 52<br / ... show more Blocked by UFW (TCP on port 80).
Source port: 32622
TTL: 48
Packet length: 52
TOS: 0x00
Timestamp: 2024-10-15 03:21:45 [Europe/Warsaw]
This report (for 35.145.16.47) was generated by:
https://github.com/sefinek24/UFW-AbuseIPDB-Reporter show less
Port Scan
Web App Attack
Cookie
2024-10-14 04:18:27
(4 weeks ago)
Blocked by UFW (TCP on port 80).
Source port: 30725
TTL: 48
Packet length: 52<br / ... show more Blocked by UFW (TCP on port 80).
Source port: 30725
TTL: 48
Packet length: 52
TOS: 0x00
Timestamp: 2024-10-14 04:18:27 [Europe/Warsaw]
This report (for 35.145.16.47) was generated by:
https://github.com/sefinek24/UFW-AbuseIPDB-Reporter show less
Port Scan
Web App Attack
Cookie
2024-10-12 01:13:06
(1 month ago)
Blocked by UFW (TCP on port 80).
Source port: 31288
TTL: 48
Packet length: 52<br / ... show more Blocked by UFW (TCP on port 80).
Source port: 31288
TTL: 48
Packet length: 52
TOS: 0x00
Timestamp: 2024-10-12 01:13:06 [Europe/Warsaw]
This report (for 35.145.16.47) was generated by:
https://github.com/sefinek24/UFW-AbuseIPDB-Reporter show less
Port Scan
Web App Attack
syokadmin
2024-10-05 11:34:16
(1 month ago)
(PERMBLOCK) 35.145.16.47 (US/United States/syn-035-145-016-047.res.spectrum.com) has had more than 2 ... show more (PERMBLOCK) 35.145.16.47 (US/United States/syn-035-145-016-047.res.spectrum.com) has had more than 2 temp blocks in the last 86400 secs show less
Brute-Force
syokadmin
2024-10-05 04:26:30
(1 month ago)
(mod_security) mod_security (id:77316757) triggered by 35.145.16.47 (US/United States/syn-035-145-01 ... show more (mod_security) mod_security (id:77316757) triggered by 35.145.16.47 (US/United States/syn-035-145-016-047.res.spectrum.com): 1 in the last 3600 secs show less
Brute-Force
TPI-Abuse
2024-09-23 21:41:46
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum. ... show more (mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 23 17:41:39.012015 2024] [security2:error] [pid 851:tid 851] [client 35.145.16.47:30441] [client 35.145.16.47] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "terrybeachmusic.com"] [uri "/.env"] [unique_id "ZvHgkySTaQqeKfZR9neXkAAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-23 19:35:38
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum. ... show more (mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 23 15:35:35.315956 2024] [security2:error] [pid 1501607:tid 1501607] [client 35.145.16.47:32554] [client 35.145.16.47] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "molldesks.com"] [uri "/.env"] [unique_id "ZvHDByN6us-EpUHXDikVPAAAAA0"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-23 19:17:40
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum. ... show more (mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 23 15:17:33.788136 2024] [security2:error] [pid 3377533:tid 3377557] [client 35.145.16.47:30125] [client 35.145.16.47] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maritimeclinic.net"] [uri "/.env"] [unique_id "ZvG-zUfWh9SV5wj6relLHAAAARE"] show less
Brute-Force
Bad Web Bot
Web App Attack
BlueWire Hosting
2024-09-23 04:10:06
(1 month ago)
Scanning for Laravel vulnerabilities
Web App Attack
TPI-Abuse
2024-09-22 17:56:21
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum. ... show more (mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 22 13:56:17.833411 2024] [security2:error] [pid 2069446:tid 2069446] [client 35.145.16.47:31448] [client 35.145.16.47] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "flyingdodopublications.com"] [uri "/.env"] [unique_id "ZvBaQRliD6T84uzVcCw6IAAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-22 16:57:12
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum. ... show more (mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 22 12:57:07.121281 2024] [security2:error] [pid 1576338:tid 1576347] [client 35.145.16.47:30240] [client 35.145.16.47] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chilltech.info"] [uri "/.env"] [unique_id "ZvBMYzAlNTfYLu5vTi3fmAAAAIY"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-22 15:55:06
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum. ... show more (mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 22 11:55:02.884924 2024] [security2:error] [pid 15789:tid 15789] [client 35.145.16.47:29744] [client 35.145.16.47] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agrizel.com"] [uri "/.env"] [unique_id "ZvA91hYF1eMhQRCwKKTKHgAAAAM"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-22 14:35:54
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum. ... show more (mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 22 10:35:47.073669 2024] [security2:error] [pid 13791:tid 13791] [client 35.145.16.47:32130] [client 35.145.16.47] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "homeland-realestate.com"] [uri "/.env"] [unique_id "ZvArQ5BHJwBbtmt71PnlxgAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
BlueBird Web
2024-09-22 10:30:04
(1 month ago)
Web App Attack
TPI-Abuse
2024-09-22 09:47:13
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum. ... show more (mod_security) mod_security (id:210492) triggered by 35.145.16.47 (syn-035-145-016-047.res.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 22 05:47:06.582683 2024] [security2:error] [pid 17778:tid 17778] [client 35.145.16.47:31308] [client 35.145.16.47] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "conservadordehualpen.cl"] [uri "/.env"] [unique_id "Zu_nmiQFJdPMF_QVuIeJ_QAAABI"] show less
Brute-Force
Bad Web Bot
Web App Attack