๐บ๐ธ
agenciahypelab.com.br
2025-08-24 03:55:16
(10 months ago)
WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER
Brute-Force
SSH
๐ซ๐ฎ
as211431.net
2025-08-10 04:57:28
(11 months ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: BLOCK
Protocol: HTTP/2 (HEAD method ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: BLOCK
Protocol: HTTP/2 (HEAD method)
Endpoint: /
UA: Empty string
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฉ๐ช
Phenix Info
2025-08-02 05:51:44
(11 months ago)
SmallGuard.fr/Prestashop Empty User Agent
Web App Attack
Anonymous
2025-07-27 09:33:02
(11 months ago)
Attempting to access restricted files
Hacking
Brute-Force
Web App Attack
๐ฆ๐บ
afleventoffice.com.au
2025-07-26 11:29:11
(11 months ago)
HEAD /archive.zip HTTP/1.1
Web App Attack
๐บ๐ธ
mnsf
2025-07-26 03:05:30
(11 months ago)
Too many Status 40X (12)
Brute-Force
Web App Attack
๐บ๐ธ
OceanTreasure
2025-07-25 06:55:04
(11 months ago)
tcp/443; Backup-file sweep, looking for exposed ZIPs / DB dumps: "HEAD /backup.zip" @ 2025-07-25T06: ...
show more
tcp/443; Backup-file sweep, looking for exposed ZIPs / DB dumps: "HEAD /backup.zip" @ 2025-07-25T06:53:48Z [proxy]
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-19 08:19:41
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 04:19:33.583886 2025] [security2:error] [pid 18229:tid 18309] [client 82.165.86.35:49644] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rawhabitat.com"] [uri "/wp-config.php_old"] [unique_id "aHtVFULDGuEJEGx9hP0O8QAAAZg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
octageeks.com
2025-07-16 04:08:23
(1 year ago)
Wordpress malicious attack:[octablocked]
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-15 17:18:02
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 13:17:54.192825 2025] [security2:error] [pid 26089:tid 26089] [client 82.165.86.35:47202] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wonboyn.com"] [uri "/wp-config.php1"] [unique_id "aHaNQklqZEYQn68UE4wSuwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
Mr-Money
2025-07-15 08:44:53
(1 year ago)
82.165.86.35 - - [15/Jul/2025:10:44:53 +0200] "GET /wp-config.php1 HTTP/1.1" 404 438 "-" "-"
82.165. ...
show more
82.165.86.35 - - [15/Jul/2025:10:44:53 +0200] "GET /wp-config.php1 HTTP/1.1" 404 438 "-" "-"
82.165.86.35 - - [15/Jul/2025:10:44:53 +0200] "GET /wp-config.phpold HTTP/1.1" 404 438 "-" "-"
82.165.86.35 - - [15/Jul/2025:10:44:53 +0200] "GET /wp-config.php.org HTTP/1.1" 404 438 "-" "-"
...
show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-14 20:10:02
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 14 16:09:56.201768 2025] [security2:error] [pid 3745:tid 3884] [client 82.165.86.35:39334] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "taxelon.com"] [uri "/wp-config.php.old"] [unique_id "aHVkFI--6Y1S4Vx40uzxsgAAAo8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-13 07:15:47
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 13 03:15:44.101086 2025] [security2:error] [pid 24210:tid 24210] [client 82.165.86.35:53962] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "taxijunkremoval.com"] [uri "/wp-config.php.old"] [unique_id "aHNdIISap8hAFrG3SZhYSgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-13 02:43:54
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 ...
show more
(mod_security) mod_security (id:210492) triggered by 82.165.86.35 (infongp-fr42.clienthosting.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 12 22:43:48.972551 2025] [security2:error] [pid 15715:tid 15715] [client 82.165.86.35:40360] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "transcapitalsolutions.com"] [uri "/wp-config.php.old"] [unique_id "aHMdZAxhvDxZAu0A1TFZIwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
RCS
2025-07-12 19:47:34
(1 year ago)
fail2ban apache-modsecurity
...
Bad Web Bot
Web App Attack