๐ญ๐บ
bcsaba
2026-07-15 00:57:11
(4 days ago)
Joomla spam
45.130.81.76 - - [15/Jul/2026:02:57:09 +0200] "GET /index.php?option=com_easyblog&view=d ...
show more
Joomla spam
45.130.81.76 - - [15/Jul/2026:02:57:09 +0200] "GET /index.php?option=com_easyblog&view=dashboard&layout=write HTTP/1.1" 404 789 "https://*REDACTED*" "Mozilla/5.0 (X11; Linux aarch64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36"
show less
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-01 16:19:30
(2 weeks ago)
(wordpress) Failed wordpress login from 45.130.81.76 (UA/Ukraine/-): (CF_ENABLE)
Brute-Force
๐ฌ๐ง
relianoid.com
2026-06-30 18:09:23
(2 weeks ago)
POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com
Web Spam
๐บ๐ธ
TPI-Abuse
2026-05-22 12:59:02
(1 month ago)
(mod_security) mod_security (id:210350) triggered by 45.130.81.76 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 45.130.81.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 08:58:55.179554 2026] [security2:error] [pid 12198:tid 12198] [client 45.130.81.76:52457] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||3DSportsChannel.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "3dsportschannel.com"] [uri "/inde.cgi.com/index.cgi"] [unique_id "ahBTD3jYB45zp9z6UzkjdgAAAAw"], referer: http://3DSportsChannel.com/inde.cgi.com/index.cgi
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-20 16:03:37
(1 month ago)
(mod_security) mod_security (id:210350) triggered by 45.130.81.76 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 45.130.81.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 12:03:08.098198 2026] [security2:error] [pid 6765:tid 6788] [client 45.130.81.76:40961] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.tvpin.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.tvpin.com"] [uri "/index.cgi"] [unique_id "ag3bPAoKkrfPLengCjRddgAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-12 07:32:32
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 45.130.81.76 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 45.130.81.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 03:32:24.969716 2026] [security2:error] [pid 4986:tid 4986] [client 45.130.81.76:56883] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||1012invest.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "1012invest.com"] [uri "/archivarix.cms.php"] [unique_id "agLXiH_yV34B-rp3yQUF1wAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-05-05 00:31:06
(2 months ago)
937 requests with url.path //xmlrpc.php
Brute-Force
Bad Web Bot
๐ฉ๐ช
ger-stg-sifi1
2026-05-04 23:17:33
(2 months ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ฉ๐ช
Lino Project
2026-04-16 14:53:14
(3 months ago)
45.130.81.76 - - [16/Apr/2026:16:53:11 +0200] "GET /xmlrpc.php HTTP/1.1" 403 3963 "https://www.primo ...
show more
45.130.81.76 - - [16/Apr/2026:16:53:11 +0200] "GET /xmlrpc.php HTTP/1.1" 403 3963 "https://www.primobio.it/mio-account/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2026-04-09 01:34:46
(3 months ago)
IM360 WAF: Old style account creation and modification in Joomla! MV:registration
Web App Attack
๐บ๐ธ
threatintelligence_bvc
2026-04-07 14:13:39
(3 months ago)
Brute-Force
๐บ๐ธ
cybsecaoccol
2026-04-06 18:10:03
(3 months ago)
Brute Force SASL Attack
Hacking
Brute-Force
Web App Attack
๐ท๐บ
DZBOT
2026-03-29 16:39:01
(3 months ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-03-28 23:46:23
(3 months ago)
Brute-Force
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-03-27 23:39:55
(3 months ago)
Brute-Force
Web App Attack