๐บ๐ธ
stechusa
2026-07-02 17:06:52
(5 days ago)
ELEVATED_THREAT | country=LB | ASN=Wave Net LLC | 416 IPs targeting /category/light-bulbs.html | Fac ...
show more
ELEVATED_THREAT | country=LB | ASN=Wave Net LLC | 416 IPs targeting /category/light-bulbs.html | Facet request during elevated threat (facet_ratio=0.83, unique_ips=925) | HTTP/1.1 over TLS (elevated=True)
show less
Bad Web Bot
DDoS Attack
๐บ๐ธ
gui-ying233
2026-06-24 00:18:54
(1 week ago)
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Sa ...
show more
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36 Edg/144.0.0.0
show less
Bad Web Bot
๐ฉ๐ช
Vegascosmetics
2026-06-23 16:09:31
(2 weeks ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐ฉ๐ช
pltcldvlpr
2026-06-22 16:26:48
(2 weeks ago)
Bogus Useragent: 185.134.176.158 - - [22/Jun/2026:18:26:47 +0200] "GET /protocol?id=nw_13_144&offset ...
show more
Bogus Useragent: 185.134.176.158 - - [22/Jun/2026:18:26:47 +0200] "GET /protocol?id=nw_13_144&offset=50&seq=74 HTTP/1.1" 444 0 "-" "Opera/8.73.(X11; Linux i686; hr-HR) Presto/2.9.184 Version/12.00" asn=31037 org="Wave Net LLC" country=LB
...
show less
Bad Web Bot
๐ช๐ธ
el-brujo
2026-06-21 00:40:54
(2 weeks ago)
Cloudflare WAF: Request Path: /Smileys/navidad/sad.gif Request Query: Host: forum.elhacker.net user ...
show more
Cloudflare WAF: Request Path: /Smileys/navidad/sad.gif Request Query: Host: forum.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 Action: managed_challenge Source: firewallCustom ASN Description: Wave Net LLC Country: LB Method: GET Timestamp: 2026-06-21T00:40:54Z ruleId: 770fb332273f47628e1c012f2ac4e3d3. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐ฎ๐ฉ
hermawan
2026-06-13 00:17:58
(3 weeks ago)
[Sat Jun 13 07:17:55.372180 2026] [security2:error] [pid 456984:tid 140091704936128] [client 185.134 ...
show more
[Sat Jun 13 07:17:55.372180 2026] [security2:error] [pid 456984:tid 140091704936128] [client 185.134.176.158:50788] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yandex.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yandex.go.id found within REQUEST_HEADERS:Referer: https://www.yandex.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-dasarian/infografis-dasarian-analisis-kejadian-hujan-lebat HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-dasarian/infografis-dasarian-analisis-kejadian-hujan-lebat"] [unique_id "aiyhszIP_7OCxb33slWURgABGA4"], referer https://www.yandex.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[456999] [3aJUhpcbtcE] [aiyhszIP_7OCxb33slWURgABGA4] keep_alive=[1] [2026
...
show less
Email Spam
Hacking
๐ฌ๐ง
Oakley
2026-06-02 22:06:39
(1 month ago)
(confirmed_bot_sig) Confirmed bot
Hacking
๐ฎ๐ฉ
hermawan
2026-06-02 06:57:37
(1 month ago)
[Tue Jun 02 13:57:32.869120 2026] [security2:error] [pid 211685:tid 139858197587648] [client 185.134 ...
show more
[Tue Jun 02 13:57:32.869120 2026] [security2:error] [pid 211685:tid 139858197587648] [client 185.134.176.158:40128] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/analisis-iklim/analisis-bulanan/analisis-distribusi-hujan/analisis-distribusi-curah-hujan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/analisis-iklim/analisis-bulanan/analisis-distribusi-hujan/analisis-distribusi-curah-hujan"] [unique_id "ah5-3KfkANHUdb_E5R84swABBAU"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[211691] [Iak707/UMV0] [ah5-3KfkANHUdb_E5R84swABBAU] keep_alive=[1] [2026-06-02 13:57:32.869125] [R:ah5-3Kf
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
David Koswari
2026-05-29 05:14:00
(1 month ago)
REQ_BLOCKED_ACL
DDoS Attack
FTP Brute-Force
Ping of Death
Port Scan
Hacking
SQL Injection
Spoofing
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
SSH
IoT Targeted
๐ฉ๐ช
SMARTNET
2026-05-27 06:03:53
(1 month ago)
Aisuru(Mirai variant) DDoS | Incident ID: 991a3054-d12a-4e5e-ac87-2c17a3082180
DDoS Attack
๐บ๐ธ
RAP
2026-05-23 02:40:10
(1 month ago)
2026-05-23 02:40:10 UTC Unauthorized activity to TCP port 23. Telnet
Port Scan
๐ซ๐ท
vtchost.com
2026-05-18 10:16:39
(1 month ago)
requested honeypot page - ignored robots.txt - scraping botnet or virus
...
Bad Web Bot
Exploited Host
๐จ๐ญ
ALPHANET
2026-05-11 10:45:05
(1 month ago)
Botnet or web spider not respecting robots.txt
DDoS Attack
Exploited Host
๐บ๐ธ
RAP
2026-05-09 16:54:22
(1 month ago)
2026-05-09 16:54:22 UTC Unauthorized activity to TCP port 23. Telnet
Port Scan
๐ฆ๐บ
afleventoffice.com.au
2026-05-09 03:50:56
(1 month ago)
GET /ashes/booking-conditions.php HTTP/1.1
Web App Attack