๐ฉ๐ช
HandyTreff.de
2026-07-11 23:10:31
(6 days ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -66.455 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -66.455 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.
show less
Web App Attack
Bad Web Bot
๐ฎ๐น
A000Z
2026-07-03 03:51:56
(2 weeks ago)
Fail2Ban: 45.236.169.173 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5 ...
show more
Fail2Ban: 45.236.169.173 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36
show less
Bad Web Bot
๐ฎ๐ฉ
hermawan
2026-06-30 20:47:21
(2 weeks ago)
[Wed Jul 01 03:47:20.690724 2026] [security2:error] [pid 374375:tid 140186823321280] [client 45.236. ...
show more
[Wed Jul 01 03:47:20.690724 2026] [security2:error] [pid 374375:tid 140186823321280] [client 45.236.169.173:54734] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.baidu.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "601"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.baidu.go.id found within REQUEST_HEADERS:Referer: http://www.baidu.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-dasarian/infografis-dasarian-analisis-kejadian-hujan-lebat HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-dasarian/infografis-dasarian-analisis-kejadian-hujan-lebat"] [unique_id "akQrWMNPNYHY8rNM9WfpTQAAhhg"], referer http://www.baidu.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[374400] [+hxdrn5R2fc] [akQrWMNPNYHY8rNM9WfpTQAAhhg] keep_alive=[1] [2026-07-01
...
show less
Email Spam
Hacking
๐บ๐ธ
kosada.com
2026-06-29 04:35:23
(2 weeks ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐ฉ๐ช
Vegascosmetics
2026-06-23 08:24:27
(3 weeks ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐ฐ๐ท
zlhIcd
2026-06-15 08:36:59
(1 month ago)
45.236.169.173 - - [15/Jun/2026:17:07:01 +0900] "GET /pcwiki/index.php?days=14&from=20251119075737&h ...
show more
45.236.169.173 - - [15/Jun/2026:17:07:01 +0900] "GET /pcwiki/index.php?days=14&from=20251119075737&hidebots=0&hidemyself=1&title=%ED%8A%B9%EC%88%98%EA%B8%B0%EB%8A%A5:%EB%A7%81%ED%81%AC%EC%B5%9C%EA%B7%BC%EB%B0%94%EB%80%9C HTTP/1.1" 404 460 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_2_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.6943.53 Safari/537.36"
...
show less
Web Spam
SQL Injection
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-26 13:15:56
(5 months ago)
(mod_security) mod_security (id:217210) triggered by 45.236.169.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:217210) triggered by 45.236.169.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 26 08:15:51.574269 2026] [security2:error] [pid 2101966:tid 2101966] [client 45.236.169.173:60216] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./]*(?::\\\\d+)?)?/[^?#]*(?:\\\\?[^#\\\\s]*)?(?:#[\\\\S]*)?|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?|options \\\\*)\\\\s+[\\\\w\\\\./]+|get /[^?#]*(?:\\\\?[^#\\\\s]*)?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line||moon7includes.xyz|F|4"] [data "GET http://moon7includes.xyz HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "moon7includes.xyz"] [uri "/"] [unique_id "aXdpB-MDLPHt4mXPkO6Z7QAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-21 13:29:48
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 45.236.169.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 45.236.169.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 08:29:40.971118 2026] [security2:error] [pid 9023:tid 9023] [client 45.236.169.173:42698] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||banis-associates.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "banis-associates.com"] [uri "/missroute66.com"] [unique_id "aXDUxNwJnFaKQCr-vFAA0wAAAA0"], referer: http://banis-associates.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
polycoda
2025-12-03 12:04:45
(7 months ago)
๐ฅถ Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27
DDoS Attack
๐ฉ๐ช
SMARTNET
2025-11-26 07:00:13
(7 months ago)
Aisuru(Mirai variant) DDoS
DDoS Attack
Anonymous
2025-11-25 04:57:47
(7 months ago)
scanning http requests from known botnet
Web App Attack
Anonymous
2025-11-20 10:38:43
(7 months ago)
scanning http requests from known botnet
Web App Attack
๐ซ๐ท
LRob
2025-11-06 08:01:01
(8 months ago)
Bad web bot activity detected by Fail2Ban in plesk-apache-badbot jail
Bad Web Bot
Anonymous
2025-11-05 00:29:01
(8 months ago)
botnet
DDoS Attack
๐ซ๐ท
Sklurk
2025-10-24 03:11:19
(8 months ago)
Web App Attack
Web App Attack