Activity: Port Scan attempt targeting server
Action: Blocked by firewall
Access Log Entries:
• [09 ...
show moreActivity: Port Scan attempt targeting server
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2025:19:51:35 +0000] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 150 "-" "-" "-"
show less
Activity: Attempted access to xmlrpc.php, potentially indicating hacking or web app attack activity
...
show moreActivity: Attempted access to xmlrpc.php, potentially indicating hacking or web app attack activity
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2025:19:49:44 +0000] "POST /xmlrpc.php HTTP/1.1" 403 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" "-"
show less
Activity: Web Bot activity scanning for vulnerabilities
Action: Blocked by firewall
Access Log Ent ...
show moreActivity: Web Bot activity scanning for vulnerabilities
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2025:19:39:52 +0000] "HEAD / HTTP/1.1" 400 0 "-" "Mozilla/5.0 zgrab/0.x" "-"
show less
Activity: Port Scan and Exploited Host
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2 ...
show moreActivity: Port Scan and Exploited Host
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2025:13:20:45 +0000] "GET /squid-internal-mgr/cachemgr.cgi HTTP/1.1" 400 150 "-" "Mozilla/5.0 zgrab/0.x" "-"
show less
Activity: Attempted access to environment configuration file, indicative of potential web app attack ...
show moreActivity: Attempted access to environment configuration file, indicative of potential web app attack or reconnaissance
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2025:11:48:13 +0000] "GET /api/.env HTTP/1.1" 403 180 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.75 Safari/537.36" "-"
show less
Activity: Normal web activity, port scan attempt, and potential SQL injection attempt
Action: Block ...
show moreActivity: Normal web activity, port scan attempt, and potential SQL injection attempt
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2025:10:47:09 +0000] "GET /form.html HTTP/1.1" 400 150 "-" "curl/8.1.2" "-"
• [09/Jun/2025:10:47:14 +0000] "x16x03x01x00ux01x00x00qx03x03rHx92x89x86x07:_xAFx9Ax98xAE:ZxA8xA3sx04xD0x155xCDx991- x00xD8x11`xD3x08x00x00x1AxC0/xC0+xC0x11xC0x07xC0x13xC0x09xC0x14xC0" 400 150 "-" "-" "-"
show less
Activity: Attempted access to .git/config file, indicative of reconnaissance or hacking activity
Ac ...
show moreActivity: Attempted access to .git/config file, indicative of reconnaissance or hacking activity
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2025:05:42:45 +0000] "GET /.git/config HTTP/1.1" 403 118 "-" "Mozilla/5.0 (Debian; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0" "-"
show less
Activity: Web Bot activity scanning the website
Action: Blocked by firewall
Access Log Entries:
• ...
show moreActivity: Web Bot activity scanning the website
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2025:01:51:34 +0000] "GET / HTTP/1.1" 400 150 "-" "Mozilla/5.0 zgrab/0.x" "-"
show less
Activity: Attempted access to environment configuration file, indicative of potential web app attack ...
show moreActivity: Attempted access to environment configuration file, indicative of potential web app attack or reconnaissance
Action: Blocked by firewall
Access Log Entries:
• [09/Jun/2025:00:53:07 +0000] "GET /.env HTTP/1.1" 403 118 "-" "Mozilla/5.0 (SymbianOS/9.1; U; en-us) AppleWebKit/413 (KHTML, like Gecko) Safari/413 es50" "-"
show less
Activity: Normal web activity, SSL/TLS handshake attempts, potential port scan, and possible web app ...
show moreActivity: Normal web activity, SSL/TLS handshake attempts, potential port scan, and possible web application attack attempts
Action: Blocked by firewall
Access Log Entries:
• [08/Jun/2025:23:42:40 +0000] "x16x03x01x00ux01x00x00qx03x03x82xB6'xC2xCDxA0x05x1AxD8xF3oxA1xE5xC4xD4px95>x01xFF>xD3xFCrxE6xBCx85xD5xB4Zx9FxCAx00x00x1AxC0/xC0+xC0x11xC0x07xC0x13xC0x09xC0x14xC0" 400 150 "-" "-" "-"
• [08/Jun/2025:23:42:40 +0000] "x16x03x01x00ux01x00x00qx03x03x02xC6_x9AxB2x9Ax97xB0lx86x03x8CWxB7xECxB2x93_dS&9xD42xADx87xA1;hxA4HxA9x00x00x1AxC0/xC0+xC0x11xC0x07xC0x13xC0x09xC0x14xC0" 400 150 "-" "-" "-"
• [08/Jun/2025:23:42:40 +0000] "x16x03x01x00ux01x00x00qx03x03xB7x14i&xC8[x95[}x0Ex16x96x05jxEDxF1)xEFxCCmx97c]*'xE5LxB9qxFFRxFEx00x00x1AxC0/xC0+xC0x11xC0x07xC0x13xC0x09xC0x14xC0" 400 150 "-" "-" "-"
• [08/Jun/2025:23:42:40 +0000] "GET /form.html HTTP/1.1" 400 150 "-" "curl/8.1.2" "-"
show less
Activity: Attempted access to xmlrpc.php, potentially indicative of hacking or web app attack activi ...
show moreActivity: Attempted access to xmlrpc.php, potentially indicative of hacking or web app attack activity
Action: Blocked by firewall
Access Log Entries:
• [08/Jun/2025:21:15:13 +0000] "POST /xmlrpc.php HTTP/1.1" 403 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" "-"
show less
Hacking
By clicking “Accept all”, you agree to the storing of cookies on your device to remember preferences and
analyze site usage.
Read more
- Required to log into your AbuseIPDB account, and store these cookie preferences.