๐ซ๐ท
Dade
2026-06-28 09:22:17
(1 week ago)
Fail2Ban banned 155.212.39.249 for security violations in jail wp-armour. Log: 2026/06/28 09:22:17 [ ...
show more
Fail2Ban banned 155.212.39.249 for security violations in jail wp-armour. Log: 2026/06/28 09:22:17 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 155.212.39.249 | Target: wplogin" , client: 155.212.39.249, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐บ๐ธ
TPI-Abuse
2026-06-24 23:26:02
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 19:25:56.339323 2026] [security2:error] [pid 25009:tid 25009] [client 155.212.39.249:15429] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||catholicshopper.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "catholicshopper.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajxnhCKL1vd9br7Ws-8tDgAAAAg"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 23:13:52
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 19:13:47.401999 2026] [security2:error] [pid 21527:tid 21527] [client 155.212.39.249:40673] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||zost.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "zost.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajXNK_2S9cpzF20K8mVQmAAAAAc"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-06-09 23:07:54
(3 weeks ago)
Web password guessing
Brute-Force
๐บ๐ธ
agenciahypelab.com.br
2026-06-04 19:43:40
(1 month ago)
WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER
Brute-Force
SSH
๐ณ๐ฑ
homeshowdomain.nl
2026-05-23 22:03:13
(1 month ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-22.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-22 20:06:27
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 16:06:21.599811 2026] [security2:error] [pid 11784:tid 11784] [client 155.212.39.249:27337] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||blackcanyonguides.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "blackcanyonguides.com"] [uri "/s3cmd.ini"] [unique_id "ahC3PRH_BxSLaxHAkXPE4AAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-05-22 14:40:51
(1 month ago)
Web password guessing
Brute-Force
๐บ๐ธ
octageeks.com
2026-05-10 04:08:08
(1 month ago)
Wordpress malicious attack:[octaxmlrpc]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-13 13:39:12
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 09:39:04.189092 2026] [security2:error] [pid 4184210:tid 4184210] [client 155.212.39.249:22019] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ibcountn.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ibcountn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adzx-EJg8Rk4fjExWr6GggAAABE"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 04:07:38
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 00:07:30.809201 2026] [security2:error] [pid 22640:tid 22640] [client 155.212.39.249:41585] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||333w88.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "333w88.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab4Zgo37Gmnx3XC-r8KD6QAAABM"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-21 02:14:19
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 22:14:11.684987 2026] [security2:error] [pid 3875333:tid 3875333] [client 155.212.39.249:58575] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||nekstlevel.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nekstlevel.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab3-86WuEBXXvhk5owQDdQAAAAU"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-13 08:42:53
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 155.212.39.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 13 04:42:48.630515 2026] [security2:error] [pid 7646:tid 7646] [client 155.212.39.249:33791] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||theklines.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "theklines.net"] [uri "/wp-json/wp/v2/users"] [unique_id "abPOCL7QBfYmr5SqdLI9lwAAAC4"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
kjaerulff
2026-03-10 10:19:32
(3 months ago)
Failed Wordpress login using wp-login.php
Web App Attack
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:01:23
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam