๐ฉ๐ช
ps-center
2026-03-17 14:05:50
(3 months ago)
C1: Web Attack GET /wp-content/txets.php
Web Spam
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
S.O.B.A. Dev.
2026-03-07 04:55:35
(4 months ago)
Threat Blocked by BeeHive from (ASN:206092) (Network:SECFIREWALLAS) (Host:soba.dev) (Method:GET) (Pr ...
show more
Threat Blocked by BeeHive from (ASN:206092) (Network:SECFIREWALLAS) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-03-07T04:55:35Z)
show less
Brute-Force
Web Spam
Web App Attack
๐บ๐ธ
deskpass.com
2026-03-07 04:52:33
(4 months ago)
GET /wp-admin/txets.php
Web App Attack
๐บ๐ธ
xmission.com
2026-02-13 21:54:28
(4 months ago)
Blocked by UFW (TCP on 1)
Source port: 14002
TTL: 114
Packet length: 52
TOS: 0x00
This report (for ...
show more
Blocked by UFW (TCP on 1)
Source port: 14002
TTL: 114
Packet length: 52
TOS: 0x00
This report (for 85.203.34.107) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐ฌ๐ง
pinguin
2026-02-12 13:41:07
(4 months ago)
Triggered Cloudflare WAF (linkMaze) from GB.
Action taken: LINK_MAZE_INJECTED
Protocol: HTTP/2 (HEAD ...
show more
Triggered Cloudflare WAF (linkMaze) from GB.
Action taken: LINK_MAZE_INJECTED
Protocol: HTTP/2 (HEAD method)
Endpoint: /backup/bak.tar
UA: Empty string
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
Anonymous
2026-02-12 02:49:02
(4 months ago)
Bot / scanning and/or hacking attempts: POST //wp-login.php HTTP/1.1
Hacking
Web App Attack
๐ฉ๐ช
Viveronese
2026-02-11 20:21:04
(5 months ago)
HTTP vulnerability scanning
Web App Attack
๐ซ๐ท
masterguru
2026-02-11 19:27:16
(5 months ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-131)
show less
Bad Web Bot
๐ง๐ช
cmbplf
2026-02-11 07:23:36
(5 months ago)
847 POST requests with url.path */wp-login.php
Brute-Force
Bad Web Bot
๐จ๐ญ
backslash
2026-02-11 06:00:04
(5 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ฉ๐ช
HERA - Operations
2026-01-30 15:39:21
(5 months ago)
club-herrmann - searching for vulnerable scripts: alfa-rex.php 2026/01/30 16:39:21
Web App Attack
Anonymous
2026-01-30 10:59:45
(5 months ago)
[redacted] 85.203.34.107 - - [30/Jan/2026:11:50:32 +0100] "GET /wp-admin/network/ HTTP/1.1" 404 196 ...
show more
[redacted] 85.203.34.107 - - [30/Jan/2026:11:50:32 +0100] "GET /wp-admin/network/ HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36"
[redacted] 85.203.34.107 - - [30/Jan/2026:11:50:32 +0100] "GET /wp-admin/css/colors/sunrise/ HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36"
[redacted] 85.203.34.107 - - [30/Jan/2026:11:50:33 +0100] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 404 196 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95"
[redacted] 85.203.34.107 - - [30/Jan/2026:11:50:34 +0100] "GET /wp-admin/js/dist/ HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
[redacted] 85.203.34.107 - - [30/Jan/2026:11:50:35 +0100] "GET /wp-admin/js/widgets/ HTTP/1.
...
show less
Hacking
Web App Attack
๐ซ๐ท
dynamix
2026-01-28 15:17:18
(5 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-04 20:38:18
(6 months ago)
(mod_security) mod_security (id:210730) triggered by 85.203.34.107 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 85.203.34.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 04 15:38:14.733703 2026] [security2:error] [pid 27493:tid 27493] [client 85.203.34.107:30669] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.nationalenq.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nationalenq.com"] [uri "/old/dump.sql"] [unique_id "aVrPtlWrx6xwC5TD0hw-JgAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
BPS-StatisticsIndonesia
2025-12-15 02:11:08
(6 months ago)
WP Admin Scan Activities
Web App Attack