๐ซ๐ท
tilellit.pro
2026-06-10 22:38:44
(2 weeks ago)
Fail2Ban banned 39.194.4.187 for security violations in jail wp-armour. Log: 2026/06/10 22:38:44 [er ...
show more
Fail2Ban banned 39.194.4.187 for security violations in jail wp-armour. Log: 2026/06/10 22:38:44 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 39.194.4.187 | Target: wplogin" , client: 39.194.4.187, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED]
...
show less
Web Spam
๐บ๐ธ
kosada.com
2026-06-09 16:17:56
(2 weeks ago)
Web password guessing
Brute-Force
๐ฉ๐ช
Vegascosmetics
2026-06-09 14:59:57
(2 weeks ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after PHP/webshell probe. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐จ๐ฆ
1gz
2026-06-09 06:39:59
(2 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from ID.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (GET m ...
show more
Triggered Cloudflare WAF (firewallCustom) from ID.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /auth/login
UA: Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.80 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ซ๐ท
Sklurk
2026-06-09 03:46:59
(2 weeks ago)
Web App Attack
Web App Attack
๐จ๐ฆ
1gz
2026-06-09 01:48:08
(2 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from ID.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (GET m ...
show more
Triggered Cloudflare WAF (firewallCustom) from ID.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /auth/register
UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.5304.54 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ซ๐ท
tilellit.pro
2026-06-08 14:34:46
(3 weeks ago)
Fail2Ban banned 39.194.4.187 for security violations in jail wp-armour. Log: 2026/06/08 14:34:45 [er ...
show more
Fail2Ban banned 39.194.4.187 for security violations in jail wp-armour. Log: 2026/06/08 14:34:45 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 39.194.4.187 | Target: wplogin" , client: 39.194.4.187, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED]
...
show less
Web Spam
๐ญ๐บ
kranem
2026-06-08 09:00:42
(3 weeks ago)
Triggered Cloudflare WAF from ID.
Action taken: BLOCK
ASN: 23693 (PT. Telekomunikasi Selular)
Protoc ...
show more
Triggered Cloudflare WAF from ID.
Action taken: BLOCK
ASN: 23693 (PT. Telekomunikasi Selular)
Protocol: HTTP/1.1 (GET method)
Endpoint: /login
Timestamp: 2026-06-08T07:46:15Z
User-Agent: Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.79 Safari/537.36
show less
Bad Web Bot
๐ญ๐บ
kranem
2026-06-08 03:00:33
(3 weeks ago)
Triggered Cloudflare WAF from ID.
Action taken: BLOCK
ASN: 23693 (PT. Telekomunikasi Selular)
Protoc ...
show more
Triggered Cloudflare WAF from ID.
Action taken: BLOCK
ASN: 23693 (PT. Telekomunikasi Selular)
Protocol: HTTP/1.1 (GET method)
Endpoint: /auth/login
Timestamp: 2026-06-08T01:48:12Z
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.61 Safari/537.36
show less
Bad Web Bot
๐ซ๐ท
masterguru
2026-06-07 13:40:20
(3 weeks ago)
Blocked scraper - old Chrome UA. Match of "rx (?i)(amazonbot|bingbot|googlebot|yandexbot|duckduckbot ...
show more
Blocked scraper - old Chrome UA. Match of "rx (?i)(amazonbot|bingbot|googlebot|yandexbot|duckduckbot)" against "REQUEST_HEADERS:User-Agent" required. (780532-133)
show less
Hacking
๐จ๐ฆ
1gz
2026-06-07 08:27:24
(3 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from ID.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (GET m ...
show more
Triggered Cloudflare WAF (firewallCustom) from ID.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /auth/login
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.134 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ซ๐ท
tilellit.pro
2026-06-07 04:27:41
(3 weeks ago)
Fail2Ban banned 39.194.4.187 for security violations in jail wp-armour. Log: 2026/06/07 04:27:40 [er ...
show more
Fail2Ban banned 39.194.4.187 for security violations in jail wp-armour. Log: 2026/06/07 04:27:40 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 39.194.4.187 | Target: wplogin" , client: 39.194.4.187, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED]
...
show less
Web Spam
๐ฎ๐ฉ
sockominfo
2026-06-07 02:00:38
(3 weeks ago)
IDOR Attempt. Threat Score: 8.7/10 (CRITICAL). Confidence: 70%. CVSS v3.1: 10/10 (Critical). CVSS Ve ...
show more
IDOR Attempt. Threat Score: 8.7/10 (CRITICAL). Confidence: 70%. CVSS v3.1: 10/10 (Critical). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H. Bayesian Probability: 87%. MITRE ATT&CK: T1210 (Exploitation of Remote Services). Tactic: TA0001. Freshness: Moderate. Source Reputation: KNOWN_MALICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS
show less
Hacking
Web App Attack
๐จ๐ฆ
1gz
2026-06-07 01:19:15
(3 weeks ago)
Triggered Cloudflare WAF (firewallCustom) from ID.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (GET m ...
show more
Triggered Cloudflare WAF (firewallCustom) from ID.
Action taken: CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /auth/register
UA: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.101 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฎ๐ฉ
sockominfo
2026-06-07 00:00:47
(3 weeks ago)
Reported by TangerangKota-CSIRT. Status: MALICIOUS
Hacking
Web App Attack