๐ซ๐ท
matthieul.dev
2026-07-07 10:45:30
(5 days ago)
Blocked by os-abuseipdb; 3 hits, proto=tcp, ports=8080
Port Scan
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-07 07:44:03
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 45.132.224.118 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.132.224.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 03:43:58.491130 2026] [security2:error] [pid 13474:tid 13474] [client 45.132.224.118:58443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "superlamb.com"] [uri "/wp-content/wp-config.php"] [unique_id "akyuPozqfuQS1vJGVQKXLQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 04:16:38
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 45.132.224.118 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.132.224.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 00:16:32.682444 2026] [security2:error] [pid 18512:tid 18512] [client 45.132.224.118:50653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "susanleeward.com"] [uri "/wp-content/wp-config.php"] [unique_id "akx9oPxevUUNax4UQKBuDAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 01:17:44
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 45.132.224.118 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.132.224.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 21:17:39.055003 2026] [security2:error] [pid 1033:tid 1041] [client 45.132.224.118:47679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "supercyprus.com"] [uri "/wp-includes/images/wp-config.php"] [unique_id "akxTs4Chjk819AC2yK2uFAAAAUY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-05 15:03:30
(6 days ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195)
show less
Bad Web Bot
๐ช๐ธ
masterguru
2026-07-05 06:40:11
(1 week ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122)
show less
Bad Web Bot
๐ง๐ช
cmbplf
2026-07-05 04:44:09
(1 week ago)
414 requests with url.path *config.php
Brute-Force
Bad Web Bot
๐ฉ๐ช
maxpower
2026-07-05 04:10:10
(1 week ago)
(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 45.132.224.118 (AU/Australia/-): 1 in the las ...
show more
(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 45.132.224.118 (AU/Australia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 45.132.224.118 - - [05/Jul/2026:06:10:06 +0200] "GET /lock360.php HTTP/1.1" 404 55622 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" "-" host=s2servizi.com
show less
Port Scan
๐ง๐ท
Black_Brazil
2026-07-04 14:15:00
(1 week ago)
Incident Date/Time (UTC):
2026-07-04 โ 07:23:41;
Incident Summary:
Blocked IP: 45.132.224.118; Hi ...
show more
Incident Date/Time (UTC):
2026-07-04 โ 07:23:41;
Incident Summary:
Blocked IP: 45.132.224.118; High-intensity automated attack blocked by Wordfence; 707 requests blocked. Aggressive scanning for webshells and attempts to exploit known vulnerabilities in WordPress and PHP.
Malicious Paths Accessed (sample):
/upload/bilder/; /wp-admin/js/file/; /templates/beez5/; /wp-includes/blocks/file/; /.tmb/; /ALFA_DATA/alfacgiapi/; /wp-content/themes/wp-pridmag/; /wp-includes/Requests/Text/; /wp-content/themes/Avada/licensing/; /themes/travelscape/; /rest-api/fields/; /wp-includes/js/tinymce/utils/%20; /js/tinymce/utils/%20;
show less
Bad Web Bot
Web App Attack
Hacking
๐ซ๐ท
masterguru
2026-07-03 22:05:57
(1 week ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195)
show less
Bad Web Bot
๐ณ๐ฑ
Site.eu
2026-07-03 07:19:03
(1 week ago)
Excessive multi-domain requests
Brute-Force
๐ฌ๐ง
consul.to
2026-07-02 04:17:52
(1 week ago)
Web attack/malicious scanning detected
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-30 13:54:59
(1 week ago)
Excessive multi-domain requests
Brute-Force
๐ซ๐ท
masterguru
2026-06-30 05:40:43
(1 week ago)
Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-195)
Hacking
๐บ๐ธ
nyt
2026-06-29 20:36:47
(1 week ago)
Hacking, Web App Attack, suspicious: Web Shell Upload
Hacking
Web App Attack