Anonymous
2026-07-16 05:41:43
(1 day ago)
GET sitemap.txt | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Geck ...
show more
GET sitemap.txt | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0 | Time: 2026-07-16 05:41:43 UTC
show less
Web App Attack
๐ท๐บ
DZBOT
2026-07-13 22:56:42
(3 days ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ฉ๐ช
iNetWorker
2026-07-13 02:27:23
(4 days ago)
trolling for resource vulnerabilities
Web App Attack
๐ฉ๐ช
AetherFox
2026-07-09 08:38:11
(1 week ago)
AetherFox VoidGuard detected: [Thu Jul 09 08:38:04.644274 2026] [authz_core:error] [pid 115596:tid 1 ...
show more
AetherFox VoidGuard detected: [Thu Jul 09 08:38:04.644274 2026] [authz_core:error] [pid 115596:tid 115636] [client 157.180.107.231:22018] AH01630: client denied by server configuration: proxy:https://[MASKED]/
[Thu Jul 09 08:38:04.785164 2026] [authz_core:error] [pid 115596:tid 115623] [client 157.180.107.231:37293] AH01630: client denied by server configuration: proxy:https://[MASKED]/
[Thu Jul 09 08:38:07.043424 2026] [authz_core:error] [pid 115596:tid 115647] [client 157.180.107.231:37293] AH01630: client denied by server configuration: proxy:https://[MASKED]/
[Thu Jul 09 08:38:08.250198 2026] [authz_core:error] [pid 115596:tid 115637] [client 157.180.107.231:22018] AH01630: client denied by server configuration: proxy:https://[MASKED]/
[Thu Jul 09 08:38:11.301096 2026] [authz_core:error] [pid 115596:tid 115614] [client 157.180.107.231:43922] AH01630: client denied by server configuration: proxy:http://[MASKED]/
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
AetherFox
2026-07-05 18:29:44
(1 week ago)
AetherFox VoidGuard detected: [Sun Jul 05 18:29:30.507859 2026] [authz_core:error] [pid 3699412:tid ...
show more
AetherFox VoidGuard detected: [Sun Jul 05 18:29:30.507859 2026] [authz_core:error] [pid 3699412:tid 3699423] [client 157.180.107.231:5162] AH01630: client denied by server configuration: proxy:https://[MASKED]/, referer: http://draconigen.de
[Sun Jul 05 18:29:30.561427 2026] [authz_core:error] [pid 3699411:tid 3699437] [client 157.180.107.231:24816] AH01630: client denied by server configuration: proxy:https://[MASKED]/, referer: https://draconigen.de
[Sun Jul 05 18:29:37.861961 2026] [authz_core:error] [pid 3699412:tid 3699445] [client 157.180.107.231:49754] AH01630: client denied by server configuration: proxy:https://[MASKED]/, referer: http://draconigen.de
[Sun Jul 05 18:29:38.548295 2026] [authz_core:error] [pid 3699412:tid 3699455] [client 157.180.107.231:49754] AH01630: client denied by server configuration: proxy:https://[MASKED]/, referer: https://draconigen.de
[Sun Jul 05 18:29:43.486785 2026] [authz_core:error] [pid 3699412:tid 3699456] [clien
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
bescared
2026-06-26 14:01:52
(2 weeks ago)
F2B - Malicious activity detected. URL Probing. -8ff06ede-
Hacking
Bad Web Bot
Web App Attack
๐ง๐ท
dominioz
2026-06-21 14:00:07
(3 weeks ago)
2026-06-21 13:59:48 GET /sitemap.txt - - 157.180.107.231 HTTP/2.0 Mozilla/5.0+(Macintosh;+Intel+Mac+ ...
show more
2026-06-21 13:59:48 GET /sitemap.txt - - 157.180.107.231 HTTP/2.0 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_15_7)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/138.0.0.0+Safari/537.36 - 404 40909
2026-06-21 13:59:50 GET /sitemap.txt - - 157.180.107.231 HTTP/2.0 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_15_7)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/137.0.0.0+Safari/537.36 - 404 40909
2026-06-21 13:59:52 GET /sitemap.txt - - 157.180.107.231 HTTP/2.0 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/137.0.0.0+Safari/537.36 - 404 40909
2026-06-21 13:59:54 GET /sitemap.txt - - 157.180.107.231 HTTP/2.0 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/137.0.0.0+Safari/537.36 - 404 40909
...
show less
Web App Attack
๐ฉ๐ช
SCHAPPY
2026-06-20 03:40:02
(3 weeks ago)
Rotating user agents detected to hide crawling or other malicious activitiy, blocked.
Brute-Force
Web App Attack
๐ฉ๐ช
psauxit
2026-06-12 14:25:35
(1 month ago)
Fail2Ban - NGINX bad requests 400-401-403-404-444, high level vulnerability scanning, commonly xmlrp ...
show more
Fail2Ban - NGINX bad requests 400-401-403-404-444, high level vulnerability scanning, commonly xmlrpc_attack, wp-login brute force, excessive crawling/scraping
show less
Web App Attack
Hacking
๐จ๐ฆ
polycoda
2026-06-03 12:06:06
(1 month ago)
๐ Probes for tons of inexistent files and/or PHP scripts
Hacking
Web App Attack
๐ฉ๐ช
DocNetzwerk
2026-04-14 08:07:41
(3 months ago)
157.180.107.231 (FI/Finland/static.231.107.180.157.clients.your-server.de), more than 7 Apache 403 h ...
show more
157.180.107.231 (FI/Finland/static.231.107.180.157.clients.your-server.de), more than 7 Apache 403 hits
show less
Hacking
๐ฉ๐ช
Nightreaver
2026-03-30 02:13:23
(3 months ago)
157.180.107.231 - - [30/Mar/2026:04:13:22 0200] "GET /sitemap.xml HTTP/1.1" 404 4317 "-" "Mozilla/5 ...
show more
157.180.107.231 - - [30/Mar/2026:04:13:22 0200] "GET /sitemap.xml HTTP/1.1" 404 4317 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36"
157.180.107.231 - - [30/Mar/2026:04:13:22 0200] "GET /sitemap.txt HTTP/1.1" 404 4317 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36"
157.180.107.231 - - [30/Mar/2026:04:13:23 0200] "GET /sitemap.txt HTTP/1.1" 404 4317 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36"
157.180.107.231 - - [30/Mar/2026:04:13:23 0200] "GET /sitemap.txt HTTP/1.1" 404 4317 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36"
157.180.107.231 - - [30/Mar/2026:04:13:23 0200] "GET /sitemap.txt HTTP/1.1" 404 4317 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.[...]
show less
Bad Web Bot
Web App Attack
๐ธ๐ช
SkyDancer
2026-03-27 15:21:05
(3 months ago)
Multiple login attempts via RDP and/or SSH using wrong credentials. Attack automatically blocked by ...
show more
Multiple login attempts via RDP and/or SSH using wrong credentials. Attack automatically blocked by SkyDancer Ai via interface.
show less
Hacking
Brute-Force
SSH
๐ณ๐ฟ
Antinson
2026-03-20 17:30:52
(3 months ago)
High error rate and elevated request volume targeting cPanel servers
Bad Web Bot
๐ฉ๐ช
Viveronese
2026-03-09 17:07:24
(4 months ago)
HTTP vulnerability scanning
Web App Attack