BitNinja.io sends automatic abuse reports to server provider

Dear Provider,

We would like to inform you about an INCIDENT COMING FROM YOUR NETWORK(IP address xxx.xxx.xxx.xxx). Please examine the case and provide for the security steps needed.

The mission of BitNinja.io team is to make the Internet a safer place, so that IP addressxxx.xxx.xxx.xxx has been placed to our blacklist and servers protected by us won’t accept any communication from this IP address. If attacks keep coming IP address will stay in our blacklist for a longer period.

You can find detailed logs about the detected malicious attempt in the incident report:

If you need further information about this warning, or you think this IP is listed wrongful do not hesitate to contact us atincident-discuss@bitninja.io.

To prevent incidents in the future please take a look at an INTEGRATED SERVER SECURITY SYSTEM that works with no redirection and can be installed for every server.

Protect your server, install the machine-learning BitNinja Server Defense System now:http://bitninja.io


how to black list them at gsa?
Url: [ip###gy.com/index.php/en/using-joomla/extensions/components/users-component/registration-form.html?layout=complete]
Agent: [Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Dragon/36.#.#.21 Chrome/36.0.1985.97 Safari/537.36]
Get data: [Array
(
[layout] => complete
)
]
Server id: [262]
(n)

Url: [ip###gy.com/verify.php]
Agent: [Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Dragon/36.#.#.21 Chrome/36.0.1985.97 Safari/537.36]
Post data: [Array
(
[recaptcha_challenge_field] => 03AHJ_VuvVUfpGBl_GSfT-vdoqfjnTLcSA5O1wNJL8flyoM4BYLSe1L-9RNB7xf1oj7vcvzukVS2dE7pvqReZ47rLUfZP-o7t4W3qJCCgTErcXtVdiPDaX6l5vCtPq_LkFYjikyCs3wktJYs5Ko1pPOebZmByp0aP6xNdhFrg1nObk5_0YcNO_UoLyk8-1KdQ2hD_LvzGB2THRP4GM9xXij1Mts9OEvWf6hg
[recaptcha_response_field] => iepqwc caiblyb
[origin_url] => http://ip###gy.com/index.php
)
]
Server id: [262]
(n)


Url: [pm###us.com/demo/GHH%20v1.1%20-%20WebUtil%202.7]
Agent: [Opera/9.80 (Windows NT 6.2; Win64; x64) Presto/2.12.388 Version/12.17]
Server id: [446]
(n)

Url: [re###nc.com/demo/GHH%20v1.1%20-%20.mdb/admin.mdb]
Agent: [Opera/9.80 (Windows NT 6.2; Win64; x64) Presto/2.12.388 Version/12.17]
Server id: [489]
(n)

Comments

Sign In or Register to comment.