Anonymous
2026-07-11 09:42:57
(3 days ago)
"GET /wp-includes/assets/index.php HTTP/1.1"
Hacking
Web App Attack
Anonymous
2026-07-10 21:47:07
(4 days ago)
45.13.191.100 - - [10/Jul/2026:23:47:06 +0200] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 444 ...
show more
45.13.191.100 - - [10/Jul/2026:23:47:06 +0200] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 444 "-" "Go-http-client/1.1"
45.13.191.100 - - [10/Jul/2026:23:47:06 +0200] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 248 "-" "Go-http-client/1.1"
45.13.191.100 - - [10/Jul/2026:23:47:06 +0200] "GET /wp-content/plugins/wpcall-button/button-image.php HTTP/1.1" 404 444 "-" "Go-http-client/1.1"
45.13.191.100 - - [10/Jul/2026:23:47:06 +0200] "GET /wp-content/plugins/wpcall-button/button-image.php HTTP/1.1" 404 248 "-" "Go-http-client/1.1"
45.13.191.100 - - [10/Jul/2026:23:47:07 +0200] "GET /wp-content/plugins/index.php HTTP/1.1" 404 444 "-" "Go-http-client/1.1"
...
show less
Brute-Force
Web App Attack
๐ฎ๐น
VHosting
2026-07-10 13:25:04
(4 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ซ๐ท
Octopuce
2026-07-10 04:57:37
(5 days ago)
Aggressive web search of vulnerable pages: /wp-includes/woocommerce-call.php /wp-content/plugins/wor ...
show more
Aggressive web search of vulnerable pages: /wp-includes/woocommerce-call.php /wp-content/plugins/wordpress-seo/wp-seo-main-float.php /wp-conten ...
show less
Web App Attack
๐ฉ๐ช
Viveronese
2026-05-24 11:44:54
(1 month ago)
HTTP vulnerability scanning
Web App Attack
๐บ๐ธ
mnsf
2026-05-11 05:05:24
(2 months ago)
Scanning/Probing (18)
Request Overload (195)
Brute-Force
Web App Attack
๐บ๐ธ
nyt
2026-05-11 03:44:12
(2 months ago)
404 flood (16/60s), 404 flood (17/60s)
Bad Web Bot
Web App Attack
Anonymous
2026-05-04 02:29:28
(2 months ago)
Backdrop CMS module - forbidden user agent
Bad Web Bot
Web App Attack
๐ซ๐ท
Octopuce
2026-05-04 01:37:34
(2 months ago)
Aggressive web search of vulnerable pages: /wp-admin/classwithtostring.php /alfa.php /file.php /mini ...
show more
Aggressive web search of vulnerable pages: /wp-admin/classwithtostring.php /alfa.php /file.php /mini.php /info.php /log.php /wso.php /modules/s ...
show less
Web App Attack
๐ฒ๐น
Malta
2026-04-29 15:44:12
(2 months ago)
45.13.191.100 - - [29/Apr/2026:17:44:12 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh ...
show more
45.13.191.100 - - [29/Apr/2026:17:44:12 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 Version/17.0 Safari/605.1.15"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force
๐ซ๐ท
bazter.pro
2026-04-08 20:14:00
(3 months ago)
Fail2Ban: plesk-bot-aggressive - 15 failures
Port Scan
Bad Web Bot
Web App Attack
Anonymous
2026-04-05 04:29:49
(3 months ago)
(wordpress) Failed wordpress login from 45.13.191.100 (NO/Norway/-)
Brute-Force
๐ฏ๐ต
Valhalla
2026-03-13 06:52:27
(4 months ago)
/back/bak.rar
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-13 06:18:07
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 45.13.191.100 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 45.13.191.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 13 02:18:01.362430 2026] [security2:error] [pid 2273:tid 2273] [client 45.13.191.100:31991] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||medicalexchangeasinc.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "medicalexchangeasinc.com"] [uri "/back/mysql.sql"] [unique_id "abOsGQlryz16MhcYnsvTOAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-12 08:30:42
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.13.191.100 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 45.13.191.100 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 12 04:30:36.242255 2026] [security2:error] [pid 4146:tid 4146] [client 45.13.191.100:31199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "secureonebank.net"] [uri "/bak/sftp-config.json"] [unique_id "abJ5rDAI8qu2z-EXLeewWAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack