๐บ๐ธ
TPI-Abuse
2026-07-11 12:31:42
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 45.140.206.248 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 45.140.206.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 08:31:37.817755 2026] [security2:error] [pid 5300:tid 5417] [client 45.140.206.248:63063] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||adprosfla.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "adprosfla.com"] [uri "/wp-json/wp/v2/users"] [unique_id "alI3qYHTGQj-TigbzfwqlwAAANA"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2026-05-13 06:15:06
(2 months ago)
WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail
Brute-Force
Web App Attack
๐ฆ๐บ
screwlooseit.com.au
2026-04-30 15:49:12
(2 months ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
DE/Germany/-
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-15 17:36:20
(7 months ago)
(mod_security) mod_security (id:210350) triggered by 45.140.206.248 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 45.140.206.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 12:36:13.449809 2025] [security2:error] [pid 23241:tid 23241] [client 45.140.206.248:59111] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||btsalesrep.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "btsalesrep.com"] [uri "/"] [unique_id "aRi6DeLK647Rq2AZx3opUAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
sefinek.net
2025-08-27 02:16:37
(10 months ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ธ๐ช
Johan Finn
2025-08-10 09:40:39
(11 months ago)
malicious activity, botnet
Web App Attack
Anonymous
2025-06-16 01:21:38
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ต๐ฑ
sefinek.net
2025-05-23 05:12:19
(1 year ago)
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ต๐ฑ
sefinek.net
2025-04-29 19:00:07
(1 year ago)
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ต๐ฑ
sefinek.net
2025-04-25 10:01:09
(1 year ago)
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ต๐ฑ
sefinek.net
2025-04-21 10:00:47
(1 year ago)
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /genshin-stella-mod
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
dtorrer
2025-04-13 16:11:54
(1 year ago)
Client attempted to submit spam on a website post.
Blog Spam
๐ต๐ฑ
sefinek.net
2025-04-05 03:01:37
(1 year ago)
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
ASN: 26548 (PUREV ...
show more
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
ASN: 26548 (PUREVOLTAGE-INC)
Protocol: HTTP/1.1 (GET method)
Timestamp: 2025-04-04T20:29:11Z
UA: Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ต๐ฑ
sefinek.net
2025-03-29 12:01:25
(1 year ago)
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
ASN: 26548 (PUREV ...
show more
Triggered Cloudflare WAF (firewallCustom) from IL.
Action taken: MANAGED_CHALLENGE
ASN: 26548 (PUREVOLTAGE-INC)
Protocol: HTTP/1.1 (GET method)
Timestamp: 2025-03-29T09:07:09Z
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:114.0) Gecko/20100101 Firefox/114.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐จ๐ฟ
lp
2025-03-20 16:26:22
(1 year ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 45.140.206.248
2025-03-20T16:17:40+01 ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 45.140.206.248
2025-03-20T16:17:40+01:00 vpn Access-Reject 'Administrator' station: 45.140.206.248 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack