Anonymous
2026-05-14 04:21:24
(2 months ago)
<comment>
Web App Attack
๐น๐ท
hostopya.com
2026-05-14 04:01:45
(2 months ago)
Failed login attempt detected by Fail2Ban in plesk-apache-badbot jail
Web App Attack
๐ง๐ช
cmbplf
2026-05-14 04:00:45
(2 months ago)
11.784 requests in 1 hour (1mo2w19h)
Brute-Force
Bad Web Bot
๐ฏ๐ต
HeliJP
2026-05-14 02:45:44
(2 months ago)
2026-05-14T02:32:51Z - Recognized attacks\bad behavior from IP address 89.144.30.186 on port 443\80 ...
show more
2026-05-14T02:32:51Z - Recognized attacks\bad behavior from IP address 89.144.30.186 on port 443\80 (8 daily hits): SQL Injection Attack: Common Injection Testing Detected, Request Missing an Accept Header
show less
Hacking
SQL Injection
๐ฌ๐ง
Oakley
2026-05-14 02:24:45
(2 months ago)
(mod_security) mod_security (id:900209) triggered by 89.144.30.186 (DE/Germany/saure.unesty.net): 5 ...
show more
(mod_security) mod_security (id:900209) triggered by 89.144.30.186 (DE/Germany/saure.unesty.net): 5 in the last 900 secs
show less
Web App Attack
Hacking
๐จ๐ญ
backslash
2026-05-14 01:36:01
(2 months ago)
block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68
Bad Web Bot
๐ฉ๐ช
HandyTreff.de
2026-05-13 14:35:25
(2 months ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -41.095 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -41.095 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Linux; Android 11; SM-A526U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.4
show less
Web App Attack
Bad Web Bot
๐ฆ๐บ
screwlooseit.com.au
2026-05-13 13:56:10
(2 months ago)
Blocked by CSF 13 firewall - Rule: WPLOGIN
DE/Germany/saure.unesty.net
Web App Attack
๐ซ๐ท
masterguru
2026-05-13 13:54:02
(2 months ago)
Blocked scraper - old Chrome UA. Match of "rx (?i)(amazonbot|bingbot|googlebot|yandexbot|duckduckbot ...
show more
Blocked scraper - old Chrome UA. Match of "rx (?i)(amazonbot|bingbot|googlebot|yandexbot|duckduckbot)" against "REQUEST_HEADERS:User-Agent" required. (780532-133)
show less
Hacking
๐ณ๐ฑ
Roderic
2026-05-13 12:56:58
(2 months ago)
(apache-useragents) Failed apache-useragents trigger with match [redacted])
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-05-13 12:19:11
(2 months ago)
(mod_security) mod_security (id:210831) triggered by 89.144.30.186 (saure.unesty.net): 1 in the last ...
show more
(mod_security) mod_security (id:210831) triggered by 89.144.30.186 (saure.unesty.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 08:19:05.549676 2026] [security2:error] [pid 4791:tid 4791] [client 89.144.30.186:63426] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||furballaudio.com|F|4"] [data "grub-client"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "furballaudio.com"] [uri "/g12accthome.php"] [unique_id "agRsOaKw4EMbc63gOJSjfAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
JuicyJ
2026-01-26 17:00:59
(5 months ago)
Trying to look for places to exploit
Web Spam
๐ง๐ช
cmbplf
2026-01-16 23:01:20
(6 months ago)
23.540 requests in 1 hour (1mo3w3d)
Brute-Force
Bad Web Bot
๐ญ๐บ
zolav8
2026-01-06 08:35:05
(6 months ago)
SQL injection / web attack attempt
Hacking
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-01-06 01:22:06
(6 months ago)
(mod_security) mod_security (id:210831) triggered by 89.144.30.186 (saure.unesty.net): 1 in the last ...
show more
(mod_security) mod_security (id:210831) triggered by 89.144.30.186 (saure.unesty.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 05 20:22:03.168730 2026] [security2:error] [pid 19133:tid 19133] [client 89.144.30.186:55506] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||cs-mall.com|F|4"] [data "Microsoft URL"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "cs-mall.com"] [uri "/category.php"] [unique_id "aVxju5_uM8x4tjP9fkDS8QAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack