|
π¨πΏ
ddw
|
|
WordPress Brute Force Attack.
|
Hacking
Brute-Force
Web App Attack
|
|
|
π«π·
tilellit.pro
|
|
Fail2Ban banned 140.235.168.24 for security violations in jail wp-armour. Log: 2026/02/13 21:54:05 [ ...
show more
Fail2Ban banned 140.235.168.24 for security violations in jail wp-armour. Log: 2026/02/13 21:54:05 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 140.235.168.24 | Target: wplogin" , client: 140.235.168.24, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
|
Web Spam
|
|
|
πΊπΈ
TPI-Abuse
|
|
(mod_security) mod_security (id:210350) triggered by 140.235.168.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 140.235.168.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 03 03:05:03.839203 2026] [security2:error] [pid 11654:tid 11654] [client 140.235.168.24:15159] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||individualhealth.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "individualhealth.com"] [uri "/"] [unique_id "aYGsL3hu0P8Z3nY_YDZ8gQAAABI"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
π΅π±
sefinek.net
|
|
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Xbox; Xbox One) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edge/44.18363.8131
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
|
Bad Web Bot
|
|
|
π©πͺ
Packets-Decreaser.NET
|
|
Incoming Layer 7 Flood Detected
|
DDoS Attack
Web Spam
|
|
|
π±π»
garmtech.com
|
|
IM360 WAF: Attempt to upload malware
|
Hacking
|
|
|
π±π»
garmtech.com
|
|
IM360 WAF: Attempt to upload malware
|
Hacking
|
|
|
π±π»
garmtech.com
|
|
IM360 WAF: Attempt to upload malware
|
Hacking
|
|
|
π©πͺ
rh24
|
|
(wordpress) Failed wordpress login from 140.235.168.24 (US/United States/-): (CF_ENABLE)
|
Brute-Force
|
|
|
πΊπΈ
fbarela
|
|
FortiGate SSL VPN login failures.
|
Hacking
Brute-Force
|
|
|
πΊπΈ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 140.235.168.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 140.235.168.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 24 07:27:00.083266 2025] [security2:error] [pid 9781:tid 9781] [client 140.235.168.24:49717] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||soereng.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "soereng.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aPtihH7oWv4_bwWECRUsMQAAAAk"], referer: https://soereng.com/wp-json/wp/v2/users/
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
πΊπΈ
TPI-Abuse
|
|
(mod_security) mod_security (id:210350) triggered by 140.235.168.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 140.235.168.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 10 20:51:51.379914 2025] [security2:error] [pid 16689:tid 16689] [client 140.235.168.24:27679] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||surrenderhouse.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "surrenderhouse.com"] [uri "/about.html"] [unique_id "aMIdJ0hAAZhsYJh06963ggAAABM"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|