๐ซ๐ท
tilellit.pro
2026-06-29 11:10:53
(4 days ago)
Fail2Ban banned 213.108.0.242 for security violations in jail wp-armour. Log: 2026/06/29 11:10:52 [e ...
show more
Fail2Ban banned 213.108.0.242 for security violations in jail wp-armour. Log: 2026/06/29 11:10:52 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 213.108.0.242 | Target: wplogin" , client: 213.108.0.242, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐ซ๐ท
tilellit.pro
2026-06-28 08:26:26
(5 days ago)
Fail2Ban banned 213.108.0.242 for security violations in jail wp-armour. Log: 2026/06/28 08:26:26 [e ...
show more
Fail2Ban banned 213.108.0.242 for security violations in jail wp-armour. Log: 2026/06/28 08:26:26 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 213.108.0.242 | Target: wplogin" , client: 213.108.0.242, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐ซ๐ท
tilellit.pro
2026-06-27 11:48:27
(6 days ago)
Fail2Ban banned 213.108.0.242 for security violations in jail wp-armour. Log: 2026/06/27 11:48:27 [e ...
show more
Fail2Ban banned 213.108.0.242 for security violations in jail wp-armour. Log: 2026/06/27 11:48:27 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 213.108.0.242 | Target: wplogin" , client: 213.108.0.242, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐บ๐ธ
TPI-Abuse
2026-06-24 02:17:56
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 213.108.0.242 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 213.108.0.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:17:49.576354 2026] [security2:error] [pid 12073:tid 12073] [client 213.108.0.242:16437] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ahijado.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ahijado.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajs-TY-7ziZUsJL67OcTggAAAAY"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 03:47:05
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.108.0.242 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 213.108.0.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 23:47:01.638862 2026] [security2:error] [pid 7157:tid 7157] [client 213.108.0.242:9505] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||thinksite.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "thinksite.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajDHNav8CVwjanoCu765WgAAAA8"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 10:41:27
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 213.108.0.242 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 213.108.0.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:41:21.442846 2026] [security2:error] [pid 21399:tid 21399] [client 213.108.0.242:47773] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||rhysryan.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rhysryan.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai_W0SCAXnckrRsyyke5YwAAAAw"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-06-09 02:56:10
(3 weeks ago)
Web password guessing
Brute-Force
๐บ๐ธ
kosada.com
2026-05-26 09:48:58
(1 month ago)
Web password guessing
Brute-Force
๐ฌ๐ง
venus.launch.bz
2026-04-13 12:41:48
(2 months ago)
(wpscan) WordPress probe detected from 213.108.0.242 (RU/Russia/-)
Hacking
๐จ๐ญ
backslash
2026-04-11 16:48:01
(2 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ฑ๐ป
garmtech.com
2026-03-14 10:55:21
(3 months ago)
IM360 WAF: WordPress plugin/theme install or edit. Block empty Referer
Web App Attack
๐จ๐ญ
backslash
2026-03-05 09:03:00
(3 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ฆ๐บ
afleventoffice.com.au
2026-03-04 22:24:57
(3 months ago)
GET /wp-login.php HTTP/1.1
Web App Attack
๐ฒ๐พ
syokadmin
2025-09-25 03:53:57
(9 months ago)
(cpanel) Failed cPanel login from 213.108.0.242 (CA/Canada/-): 1 in the last 3600 secs
Brute-Force
Web App Attack
๐จ๐ฟ
lp
2025-05-24 13:49:24
(1 year ago)
Unauthorized VPN login attempts: 2 attempts were recorded from 213.108.0.242
2025-05-24T14:42:39+02: ...
show more
Unauthorized VPN login attempts: 2 attempts were recorded from 213.108.0.242
2025-05-24T14:42:39+02:00 vpn Access-Reject 'dyana' station: 213.108.0.242 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
2025-05-24T14:49:47+02:00 vpn Access-Reject 'pilcrow' station: 213.108.0.242 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack