๐บ๐ธ
TPI-Abuse
2026-07-13 23:59:47
(13 hours ago)
(mod_security) mod_security (id:225170) triggered by 45.131.195.239 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 45.131.195.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 19:59:42.917945 2026] [security2:error] [pid 15486:tid 15486] [client 45.131.195.239:58641] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||kylight.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kylight.net"] [uri "/wordpress/wp-json/wp/v2/users/"] [unique_id "alV77j_OauwClMWH2S2KxQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
ArturShelby
2026-07-08 18:59:34
(5 days ago)
Suspicious path access: /wp-includes/css/buttons.css
Web App Attack
๐บ๐ธ
ipblock.com
2026-07-08 00:04:00
(6 days ago)
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
neckaralb-admin.de
2026-07-06 15:36:17
(1 week ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-06 00:18:21
(1 week ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐ต๐ฑ
Kitki30.com
2026-07-05 12:02:40
(1 week ago)
HTTP Probing. Log: 45.131.195.239 - - [05/Jul/2026:12:02:38 +0000] "GET /wp-login.php HTTP/1.1" 301 ...
show more
HTTP Probing. Log: 45.131.195.239 - - [05/Jul/2026:12:02:38 +0000] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0"
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Savvii
2026-07-04 20:08:29
(1 week ago)
10 attempts against mh-misc-ban on sedna
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-04 17:25:16
(1 week ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.131.195.239 (US/United States/-) ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.131.195.239 (US/United States/-): 1 in the last 3600 secs
show less
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-04 06:44:37
(1 week ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐บ๐ธ
wordpresshosting.solutions
2026-07-04 01:55:15
(1 week ago)
WordPress login/xmlrpc abuse or user enumeration detected. Evidence: 45.131.195.239 - - [04/Jul/2026 ...
show more
WordPress login/xmlrpc abuse or user enumeration detected. Evidence: 45.131.195.239 - - [04/Jul/2026:01:55:09 +0000] "GET /wp-login.php HTTP/1.1" 200 6707 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15"
45.131.195.239 - - [04/Jul/2026:01:55:14 +0000] "GET /wp-login.php HTTP/1.1" 200 6707 "" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
show less
Brute-Force
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-03 17:34:42
(1 week ago)
Multiple WAF Violations
Brute-Force
Web App Attack
Anonymous
2026-07-03 14:26:46
(1 week ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-03 06:36:01
(1 week ago)
(y4) Failed scan -byebye- from 45.131.195.239 (US/United States/-): (CF_ENABLE)
Hacking
๐จ๐ฆ
KIsmay
2026-07-03 02:17:02
(1 week ago)
Jul 2 22:16:50 www4 WPAudit[33071]: 45.131.195.239 valhallasafety.com "Mozilla/5.0 (Macintosh; Inte ...
show more
Jul 2 22:16:50 www4 WPAudit[33071]: 45.131.195.239 valhallasafety.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" xtw183878513:DH!bYsRn6573$3uk FAIL
Jul 2 22:16:52 www4 WPAudit[35663]: 45.131.195.239 valhallasafety.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15" engineer:f,hf0rf_lf,hf1 FAIL
Jul 2 22:16:58 www4 WPAudit[33071]: 45.131.195.239 valhallasafety.com "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" xtw183875df7:DH!bYsRn6573$3uk FAIL
Jul 2 22:17:00 www4 WPAudit[35663]: 45.131.195.239 valhallasafety.com "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0" xtw18387f331:DH!bYsRn6573$3uk FAIL
Jul 2 22:17:01 www4 WPAudit[33071]: 45.131.195.239 valhallasafety.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chr
...
show less
Brute-Force
Web App Attack
๐ฌ๐ท
setupgr
2026-07-03 02:05:04
(1 week ago)
(wplogin_block) Blocked WP-Login Access Attempt 45.131.195.239 (US/United States/New Jersey/Secaucus ...
show more
(wplogin_block) Blocked WP-Login Access Attempt 45.131.195.239 (US/United States/New Jersey/Secaucus/-/[AS62240 CLOUVIDER Clouvider - Global ASN]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 45.131.195.239 - - [03/Jul/2026:05:02:57 +0300] "POST /wp-login.php HTTP/1.1" 200 4688 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; rv:143.0) Gecko/20100101 Firefox/143.0"
show less
Port Scan