๐จ๐ญ
backslash
2026-07-10 12:03:00
(39 minutes ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ซ๐ท
masterguru
2026-07-10 05:24:58
(7 hours ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-135)
show less
Bad Web Bot
๐ซ๐ท
Octopuce
2026-05-04 17:45:05
(2 months ago)
Aggressive web search of vulnerable pages: /wp-content/plugins/waspthemes-yellow-pencil/images/list/ ...
show more
Aggressive web search of vulnerable pages: /wp-content/plugins/waspthemes-yellow-pencil/images/list/about.php /wp-content/plugins/woocommerce/i ...
show less
Web App Attack
๐บ๐ธ
nyt
2026-05-04 14:13:04
(2 months ago)
Known Backdoor Name
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-15 04:26:01
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 45.13.191.83 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 45.13.191.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 00:25:56.581032 2026] [security2:error] [pid 1340538:tid 1340538] [client 45.13.191.83:45811] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||airdriedrivingschool.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "airdriedrivingschool.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ad8TVFa8r8oawbUZ-N8ebwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2026-04-15 02:00:58
(2 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฉ๐ช
ghostwarriors
2026-04-04 17:50:03
(3 months ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
Valhalla
2026-03-15 11:08:31
(3 months ago)
/backups/bak.tar
Hacking
Web App Attack
๐ฉ๐ช
filstal.org
2026-02-28 06:55:17
(4 months ago)
Security scan or malicious bot activity detected by Fail2Ban
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-25 00:59:11
(4 months ago)
(mod_security) mod_security (id:210730) triggered by 45.13.191.83 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 45.13.191.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 19:59:07.238811 2026] [security2:error] [pid 29044:tid 29044] [client 45.13.191.83:52403] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||cryptofructo.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cryptofructo.com"] [uri "/backup/dump.sql"] [unique_id "aZ5JW1hL0WwgxFP49o3RFwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
gnom4ik
2026-02-22 04:19:00
(4 months ago)
ban-reviewer auto report; ip=45.13.191.83; scenario=http:scan; verdict=valid_ban; confidence=0.85; c ...
show more
ban-reviewer auto report; ip=45.13.191.83; scenario=http:scan; verdict=valid_ban; confidence=0.85; categories=14,15,22; active_decisions=1; lookback_decisions=1; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=IP flagged for HTTP scanning activity (scenario: http:scan); AbuseIPDB category 14 (Port Scan) is applicable; AbuseIPDB category 15 (Hacking) is applicable; AbuseIPDB category 22 (SSH) is applicable
show less
Port Scan
Hacking
SSH
๐บ๐ธ
Penny Packer
2026-02-15 23:52:43
(4 months ago)
Fail2Ban apache-tripwires
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-02-12 10:42:21
(4 months ago)
45.13.191.83 - - [12/Feb/2026:12:42:19 +0200] "GET //wp-content/plugins/about.php HTTP/1.1" 404 280 ...
show more
45.13.191.83 - - [12/Feb/2026:12:42:19 +0200] "GET //wp-content/plugins/about.php HTTP/1.1" 404 280 "-" "Go-http-client/1.1"
45.13.191.83 - - [12/Feb/2026:12:42:20 +0200] "GET //wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 404 280 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐ซ๐ท
polido
2026-02-04 16:55:23
(5 months ago)
Unauthorized connection attempt to port 443 from 45.13.191.83
Port Scan
Anonymous
2026-01-31 06:20:38
(5 months ago)
"GET //wp-content/themes/index.php HTTP/1.1"
Hacking
Web App Attack