๐ณ๐ฑ
Cloud86 B.V.
2026-07-11 16:13:03
(13 hours ago)
categories: Email Spam
Email Spam
๐ฉ๐ช
tinect
2026-07-11 16:09:28
(13 hours ago)
Gets ban for 4h for triggering crowdsecurity/postscreen-rbl at root1.
Web App Attack
๐ฉ๐ช
filstal.org
2026-07-11 16:06:05
(13 hours ago)
CrowdSec: crowdsecurity/postfix-relay-denied
Email Spam
Brute-Force
๐น๐ท
Threat.live
2026-05-19 01:55:05
(1 month ago)
Suspicious Connection Attempts
Brute-Force
Anonymous
2026-05-18 23:11:40
(1 month ago)
2026-05-19T00:11:39.123043+01:00 vps kernel: [40886081.102079] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ...
show more
2026-05-19T00:11:39.123043+01:00 vps kernel: [40886081.102079] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=34.80.96.53 DST=54.37.14.118 LEN=40 TOS=0x00 PREC=0x00 TTL=234 ID=40150 PROTO=TCP SPT=45891 DPT=5001 WINDOW=1024 RES=0x00 SYN URGP=0
...
show less
Port Scan
Brute-Force
๐ณ๐ฟ
Antinson
2026-05-15 04:59:18
(1 month ago)
Scraping with a high error ratio and request rate
Bad Web Bot
Anonymous
2026-05-15 04:47:47
(1 month ago)
Banned by Fail2Ban on server
Bad Web Bot
Anonymous
2026-05-15 00:33:53
(1 month ago)
(PERMBLOCK) 34.80.96.53 (TW/Taiwan/53.96.80.34.bc.googleusercontent.com) has had more than 4 temp bl ...
show more
(PERMBLOCK) 34.80.96.53 (TW/Taiwan/53.96.80.34.bc.googleusercontent.com) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:
show less
Port Scan
๐ณ๐ฑ
homeshowdomain.nl
2026-05-14 22:00:23
(1 month ago)
Auto-ban: 218 malicious requests on 2026-05-13 (e.g., env/backup probes, brute-force, or error burst ...
show more
Auto-ban: 218 malicious requests on 2026-05-13 (e.g., env/backup probes, brute-force, or error bursts).
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
kosada.com
2026-05-14 18:14:06
(1 month ago)
Web vulnerability probing: /api.tar.bz2
Web App Attack
๐ซ๐ฎ
stinpriza
2026-05-14 17:01:08
(1 month ago)
Web App Attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-14 14:20:47
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 34.80.96.53 (53.96.80.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210730) triggered by 34.80.96.53 (53.96.80.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 10:20:43.704020 2026] [security2:error] [pid 5963:tid 5986] [client 34.80.96.53:58886] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||usu.net|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "usu.net"] [uri "/api.sql"] [unique_id "agXaO31QtUurm98WK_iQpwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Savvii
2026-05-14 13:33:31
(1 month ago)
20 attempts against mh-misbehave-ban on argon
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-14 12:53:41
(1 month ago)
(caddyscan) Scanner path probe from 34.80.96.53 (TW/Taiwan/53.96.80.34.bc.googleusercontent.com): 5 ...
show more
(caddyscan) Scanner path probe from 34.80.96.53 (TW/Taiwan/53.96.80.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:12:53:36 +0000] "GET /.env.zip HTTP/1.1"
[REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:12:53:36 +0000] "GET /.env.tar.gz HTTP/1.1"
[REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:12:53:37 +0000] "GET /.env.tgz HTTP/1.1"
[REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:12:53:38 +0000] "GET /.env.tar HTTP/1.1"
[REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:12:53:38 +0000] "GET /.env.tar.bz2 HTTP/1.1"
show less
Port Scan
Anonymous
2026-05-14 11:13:47
(1 month ago)
(caddyscan) Scanner path probe from 34.80.96.53 (TW/Taiwan/53.96.80.34.bc.googleusercontent.com): 5 ...
show more
(caddyscan) Scanner path probe from 34.80.96.53 (TW/Taiwan/53.96.80.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:11:13:42 +0000] "GET /.env.zip HTTP/1.1"
[REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:11:13:42 +0000] "GET /.env.tar.gz HTTP/1.1"
[REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:11:13:43 +0000] "GET /.env.tgz HTTP/1.1"
[REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:11:13:43 +0000] "GET /.env.tar HTTP/1.1"
[REDACTED] 200 2627 34.80.96.53 - - [14/May/2026:11:13:44 +0000] "GET /.env.tar.bz2 HTTP/1.1"
show less
Port Scan