๐ฉ๐ช
ghostwarriors
2026-06-23 13:50:51
(1 week ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
pltcldvlpr
2026-06-19 17:44:57
(1 week ago)
Bogus Useragent: 213.139.49.226 - - [19/Jun/2026:19:44:57 +0200] "GET /protocol?id=st_6_100¶grap ...
show more
Bogus Useragent: 213.139.49.226 - - [19/Jun/2026:19:44:57 +0200] "GET /protocol?id=st_6_100¶graph=14514481&seq=398 HTTP/1.1" 444 0 "-" "Opera/9.96.(X11; Linux x86_64; ht-HT) Presto/2.9.184 Version/10.00" asn=8697 org="Jordan Telecommunications PSC" country=JO
...
show less
Bad Web Bot
๐บ๐ธ
gui-ying233
2026-06-17 00:06:54
(2 weeks ago)
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Sa ...
show more
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36
show less
Bad Web Bot
๐ฉ๐ช
ghostwarriors
2026-06-08 07:20:17
(3 weeks ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
polycoda
2026-05-30 11:37:46
(1 month ago)
๐ฅถ Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27
DDoS Attack
๐บ๐ธ
TPI-Abuse
2026-04-21 13:06:09
(2 months ago)
(mod_security) mod_security (id:217210) triggered by 213.139.49.226 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:217210) triggered by 213.139.49.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 21 09:06:01.967375 2026] [security2:error] [pid 1800608:tid 1800608] [client 213.139.49.226:54630] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./]*(?::\\\\d+)?)?/[^?#]*(?:\\\\?[^#\\\\s]*)?(?:#[\\\\S]*)?|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?|options \\\\*)\\\\s+[\\\\w\\\\./]+|get /[^?#]*(?:\\\\?[^#\\\\s]*)?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line||www.danialias.com|F|4"] [data "GET http://www.danialias.com HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.danialias.com"] [uri "/"] [unique_id "aed2OaHJ-qnI99_p7DLBcwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2026-04-07 00:50:20
(2 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Anonymous
2026-04-05 18:56:08
(2 months ago)
[05/Apr/2026:21:56:06 +0300] 177541536683.099022 213.139.49.226 41176 148.251.76.218 443
[05/Apr/202 ...
show more
[05/Apr/2026:21:56:06 +0300] 177541536683.099022 213.139.49.226 41176 148.251.76.218 443
[05/Apr/2026:21:56:07 +0300] 17754153679.219149 213.139.49.226 41176 148.251.76.218 443
show less
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-04-01 20:32:20
(2 months ago)
Mail: - login with unknown user - bruteforce
Brute-Force
๐ธ๐ฌ
mypatricks
2026-03-19 00:14:22
(3 months ago)
213.139.49.226 | Port: 14198 | DNS: 213.139.49.226 2026-03-19T08:14:21+08:00 Asia/Amman | Fake HTTP ...
show more
213.139.49.226 | Port: 14198 | DNS: 213.139.49.226 2026-03-19T08:14:21+08:00 Asia/Amman | Fake HTTP Protocol detected! | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36 HTTP/1.1 443 GET | URL: /customer-self-service/accessibility-statement/?c1f53ac7391fefe99ecad094=ms-my&code=ms-my | Ref: - | Country: JO/Jordan/+02:00 IP City: Amman Windows 9de846a2bf6088d2-AMM/Amman, Jordan 1 hits/0 secs Robots 3
show less
Brute-Force
Web App Attack
Blog Spam
Web Spam
Exploited Host
๐จ๐ญ
backslash
2026-03-18 21:06:09
(3 months ago)
block ruleset SQL-Injections with typical fingerprints FD77349DE692F8D05B4EE282DE6A5198C42AB90F
SQL Injection
๐ณ๐ฑ
Japanology
2026-02-28 18:44:22
(4 months ago)
Automated SQL injection scan detected. Malicious URL: https://www.japanology.nl/zoeken.php?Gezocht=1 ...
show more
Automated SQL injection scan detected. Malicious URL: https://www.japanology.nl/zoeken.php?Gezocht=1AND%25091134%3DCONVERT%28INT%2C%28SELECT%2504%2527~%2527%2B%28SELECT%2503%28CASE%250FWHEN%2502%281134%3D1134%29%250ETHEN%250C%25271%2527%2503ELSE%250C%25270%2527%250DEND%29%29%2B%2527~%2527%29%29--+-
show less
SQL Injection
Anonymous
2026-02-22 22:49:31
(4 months ago)
Web App Attack
SQL Injection