๐ซ๐ฎ
2.26.122.229
17 May 2026
CrowdSec: crowdsecurity/http-crawl-non_statics
2.26.122.229 - - [16/May/2026:04:46:39 +0000] "GET /t ...
show more
CrowdSec: crowdsecurity/http-crawl-non_statics
2.26.122.229 - - [16/May/2026:04:46:39 +0000] "GET /test.php HTTP/1.1" 404 20462 "-" "curl/8.7.1"
17 alerts in 15s | Action: ban 4h
show less
Web App Attack
๐ซ๐ฎ
144.31.169.223
17 May 2026
CrowdSec: crowdsecurity/http-crawl-non_statics
144.31.169.223 - - [14/May/2026:20:32:49 +0000] "GET ...
show more
CrowdSec: crowdsecurity/http-crawl-non_statics
144.31.169.223 - - [14/May/2026:20:32:49 +0000] "GET /wp-cron.php HTTP/1.1" 404 43585 "-" "masscan/1.3 (https://github.com/robertdavidgraham/masscan)"
27 alerts in 37s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
2.26.123.23
17 May 2026
CrowdSec: crowdsecurity/http-wordpress-scan
2.26.123.23 - - [14/May/2026:21:49:51 +0000] "GET /teles ...
show more
CrowdSec: crowdsecurity/http-wordpress-scan
2.26.123.23 - - [14/May/2026:21:49:51 +0000] "GET /telescope/requests HTTP/1.1" 401 32686 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"
8 alerts in 40s | Action: ban 4h
show less
Web App Attack
๐ซ๐ฎ
144.31.169.111
17 May 2026
CrowdSec: crowdsecurity/http-wordpress-scan
144.31.169.111 - - [14/May/2026:19:03:08 +0000] "GET /wp ...
show more
CrowdSec: crowdsecurity/http-wordpress-scan
144.31.169.111 - - [14/May/2026:19:03:08 +0000] "GET /wp-content/uploads/ HTTP/1.1" 404 6671 "-" "HTTPie/3.2.2"
11 alerts in 48s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
144.31.148.7
17 May 2026
CrowdSec: crowdsecurity/http-backdoors-attempts
144.31.148.7 - - [14/May/2026:10:11:12 +0000] "GET / ...
show more
CrowdSec: crowdsecurity/http-backdoors-attempts
144.31.148.7 - - [14/May/2026:10:11:12 +0000] "GET /Autodiscover/Autodiscover.xml HTTP/1.1" 404 22786 "-" "Go-http-client/1.1"
3 alerts in 29s | Action: ban 4h
show less
Web App Attack
๐ซ๐ฎ
144.31.169.1
17 May 2026
CrowdSec: crowdsecurity/http-backdoors-attempts
144.31.169.1 - - [15/May/2026:02:54:05 +0000] "GET / ...
show more
CrowdSec: crowdsecurity/http-backdoors-attempts
144.31.169.1 - - [15/May/2026:02:54:05 +0000] "GET /.well-known/openid-configuration HTTP/1.1" 403 4723 "-" "axios/1.6.8"
26 alerts in 55s | Action: ban 4h
show less
Web App Attack
๐ซ๐ฎ
31.76.245.120
17 May 2026
CrowdSec: crowdsecurity/http-bad-user-agent
31.76.245.120 - - [15/May/2026:16:02:02 +0000] "GET /ser ...
show more
CrowdSec: crowdsecurity/http-bad-user-agent
31.76.245.120 - - [15/May/2026:16:02:02 +0000] "GET /server-status HTTP/1.1" 401 4029 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36"
21 alerts in 42s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
31.76.244.99
17 May 2026
CrowdSec: crowdsecurity/http-path-traversal-probing
31.76.244.99 - - [16/May/2026:09:59:03 +0000] "G ...
show more
CrowdSec: crowdsecurity/http-path-traversal-probing
31.76.244.99 - - [16/May/2026:09:59:03 +0000] "GET /server-status HTTP/1.1" 403 9869 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv)"
30 alerts in 58s | Action: ban 4h
show less
Web App Attack
๐ซ๐ฎ
144.31.169.207
17 May 2026
CrowdSec: crowdsecurity/http-bad-user-agent
144.31.169.207 - - [16/May/2026:17:58:51 +0000] "GET /wp ...
show more
CrowdSec: crowdsecurity/http-bad-user-agent
144.31.169.207 - - [16/May/2026:17:58:51 +0000] "GET /wp-content/uploads/ HTTP/1.1" 403 11580 "-" "curl/8.7.1"
17 alerts in 18s | Action: ban 4h
show less
Web App Attack
๐ซ๐ฎ
144.31.53.205
17 May 2026
CrowdSec: crowdsecurity/http-probing
144.31.53.205 - - [14/May/2026:23:25:43 +0000] "GET /admin/ HTT ...
show more
CrowdSec: crowdsecurity/http-probing
144.31.53.205 - - [14/May/2026:23:25:43 +0000] "GET /admin/ HTTP/1.1" 403 43789 "-" "python-requests/2.31.0"
26 alerts in 7s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
31.76.244.3
17 May 2026
CrowdSec: crowdsecurity/http-backdoors-attempts
31.76.244.3 - - [16/May/2026:10:44:05 +0000] "GET /g ...
show more
CrowdSec: crowdsecurity/http-backdoors-attempts
31.76.244.3 - - [16/May/2026:10:44:05 +0000] "GET /graphql HTTP/1.1" 403 23570 "-" "python-requests/2.31.0"
5 alerts in 18s | Action: ban 4h
show less
Web App Attack
๐ซ๐ฎ
2.26.122.74
17 May 2026
CrowdSec: crowdsecurity/http-probing
2.26.122.74 - - [15/May/2026:10:40:28 +0000] "GET /db.sql HTTP/ ...
show more
CrowdSec: crowdsecurity/http-probing
2.26.122.74 - - [15/May/2026:10:40:28 +0000] "GET /db.sql HTTP/1.1" 401 45835 "-" "python-requests/2.31.0"
19 alerts in 52s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
144.31.148.62
17 May 2026
CrowdSec: crowdsecurity/http-sensitive-files
144.31.148.62 - - [14/May/2026:20:51:37 +0000] "GET /so ...
show more
CrowdSec: crowdsecurity/http-sensitive-files
144.31.148.62 - - [14/May/2026:20:51:37 +0000] "GET /solr/admin/info/system HTTP/1.1" 401 31543 "-" "python-requests/2.32.3"
18 alerts in 48s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
31.76.244.44
17 May 2026
CrowdSec: crowdsecurity/http-wordpress-scan
31.76.244.44 - - [15/May/2026:03:11:49 +0000] "GET /.env ...
show more
CrowdSec: crowdsecurity/http-wordpress-scan
31.76.244.44 - - [15/May/2026:03:11:49 +0000] "GET /.env HTTP/1.1" 403 46129 "-" "HTTPie/3.2.2"
13 alerts in 30s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
144.31.223.170
17 May 2026
CrowdSec: crowdsecurity/http-bad-user-agent
144.31.223.170 - - [14/May/2026:03:09:08 +0000] "GET /sw ...
show more
CrowdSec: crowdsecurity/http-bad-user-agent
144.31.223.170 - - [14/May/2026:03:09:08 +0000] "GET /swagger.json HTTP/1.1" 404 26203 "-" "curl/8.4.0"
5 alerts in 41s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
31.76.244.87
17 May 2026
CrowdSec: crowdsecurity/http-crawl-non_statics
31.76.244.87 - - [14/May/2026:19:09:46 +0000] "GET /s ...
show more
CrowdSec: crowdsecurity/http-crawl-non_statics
31.76.244.87 - - [14/May/2026:19:09:46 +0000] "GET /server-status HTTP/1.1" 403 7165 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"
13 alerts in 23s | Action: ban 4h
show less
Web App Attack
๐ซ๐ฎ
144.31.169.190
17 May 2026
CrowdSec: crowdsecurity/ssh-slow-bf
65 auth failures in 77s
sshd[43681]: Failed password for bitbuck ...
show more
CrowdSec: crowdsecurity/ssh-slow-bf
65 auth failures in 77s
sshd[43681]: Failed password for bitbucket from 144.31.169.190 port 33844 ssh2
Action: ban 4h
show less
Brute-Force
SSH
๐ซ๐ฎ
144.31.169.81
17 May 2026
CrowdSec: crowdsecurity/http-bad-user-agent
144.31.169.81 - - [14/May/2026:09:49:37 +0000] "GET /man ...
show more
CrowdSec: crowdsecurity/http-bad-user-agent
144.31.169.81 - - [14/May/2026:09:49:37 +0000] "GET /manager/html HTTP/1.1" 401 18084 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15"
14 alerts in 35s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
144.31.238.136
17 May 2026
CrowdSec: crowdsecurity/http-probing
144.31.238.136 - - [14/May/2026:21:47:03 +0000] "GET /.DS_Store ...
show more
CrowdSec: crowdsecurity/http-probing
144.31.238.136 - - [14/May/2026:21:47:03 +0000] "GET /.DS_Store HTTP/1.1" 403 27525 "-" "Go-http-client/1.1"
8 alerts in 59s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
144.31.148.215
17 May 2026
CrowdSec: crowdsecurity/http-backdoors-attempts
144.31.148.215 - - [15/May/2026:06:44:37 +0000] "GET ...
show more
CrowdSec: crowdsecurity/http-backdoors-attempts
144.31.148.215 - - [15/May/2026:06:44:37 +0000] "GET /console/ HTTP/1.1" 401 33778 "-" "okhttp/4.12.0"
14 alerts in 35s | Action: ban 4h
show less
Web App Attack
๐ต๐ฑ
31.76.251.44
17 May 2026
CrowdSec: crowdsecurity/http-sensitive-files
31.76.251.44 - - [16/May/2026:04:37:28 +0000] "GET /.aw ...
show more
CrowdSec: crowdsecurity/http-sensitive-files
31.76.251.44 - - [16/May/2026:04:37:28 +0000] "GET /.aws/credentials HTTP/1.1" 401 28817 "-" "masscan/1.3 (https://github.com/robertdavidgraham/masscan)"
18 alerts in 26s | Action: ban 4h
show less
Web App Attack
๐ซ๐ฎ
95.85.251.194
17 May 2026
CrowdSec: crowdsecurity/http-probing
95.85.251.194 - - [15/May/2026:01:30:51 +0000] "GET /telescope/ ...
show more
CrowdSec: crowdsecurity/http-probing
95.85.251.194 - - [15/May/2026:01:30:51 +0000] "GET /telescope/requests HTTP/1.1" 404 44467 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv)"
12 alerts in 59s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
144.31.148.107
17 May 2026
CrowdSec: crowdsecurity/http-sensitive-files
144.31.148.107 - - [16/May/2026:14:29:14 +0000] "GET /a ...
show more
CrowdSec: crowdsecurity/http-sensitive-files
144.31.148.107 - - [16/May/2026:14:29:14 +0000] "GET /admin/ HTTP/1.1" 403 36466 "-" "HTTPie/3.2.2"
16 alerts in 50s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
144.31.223.28
17 May 2026
CrowdSec: crowdsecurity/http-bad-user-agent
144.31.223.28 - - [15/May/2026:21:26:12 +0000] "GET /wp- ...
show more
CrowdSec: crowdsecurity/http-bad-user-agent
144.31.223.28 - - [15/May/2026:21:26:12 +0000] "GET /wp-json/wp/v2/users HTTP/1.1" 401 18248 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"
30 alerts in 42s | Action: ban 4h
show less
Web App Attack
๐ฉ๐ช
144.31.238.116
17 May 2026
CrowdSec: crowdsecurity/http-probing
144.31.238.116 - - [14/May/2026:13:29:43 +0000] "GET /owa/auth/ ...
show more
CrowdSec: crowdsecurity/http-probing
144.31.238.116 - - [14/May/2026:13:29:43 +0000] "GET /owa/auth/logon.aspx HTTP/1.1" 403 17814 "-" "curl/8.7.1"
29 alerts in 7s | Action: ban 4h
show less
Web App Attack