๐ซ๐ท
matthieul.dev
2026-07-07 10:45:28
(4 hours ago)
Blocked by os-abuseipdb; 3 hits, proto=tcp, ports=8080
Port Scan
Brute-Force
๐ณ๐ฑ
Site.eu
2026-07-06 15:09:00
(1 day ago)
Excessive multi-domain requests
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-06 11:57:35
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 45.132.224.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.132.224.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 07:57:31.913343 2026] [security2:error] [pid 16813:tid 16845] [client 45.132.224.157:22039] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sunshinepumpers.com"] [uri "/wp-includes/wp-config.php"] [unique_id "akuYK2R8ztvXA0UVloWLDwAAAVg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-05 15:01:54
(2 days ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195)
show less
Bad Web Bot
๐ช๐ธ
masterguru
2026-07-05 06:42:32
(2 days ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122)
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-04 20:20:16
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 45.132.224.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.132.224.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 16:20:12.052425 2026] [security2:error] [pid 5630:tid 5630] [client 45.132.224.157:38845] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pattenden.com"] [uri "/wp-includes/images/wp-config.php"] [unique_id "aklq_L1c6wa0C-DAS5ZdNAAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-04 05:55:13
(3 days ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 04:06:15
(3 days ago)
(mod_security) mod_security (id:240000) triggered by 45.132.224.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240000) triggered by 45.132.224.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 00:06:08.471554 2026] [security2:error] [pid 30140:tid 30140] [client 45.132.224.157:30061] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||noel-designs.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "noel-designs.com"] [uri "/images/stories/themes.php"] [unique_id "akiGsCZd6HrFh7EsBwmO0AAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Admin-Gito
2026-07-04 03:18:42
(3 days ago)
45.132.224.157 - - [04/Jul/2026:05:08:38 +0200] "GET /wp-includes/block-supports/222.php HTTP/1.1" 4 ...
show more
45.132.224.157 - - [04/Jul/2026:05:08:38 +0200] "GET /wp-includes/block-supports/222.php HTTP/1.1" 404 355357 "-" "Go-http-client/1.1"
45.132.224.157 - - [04/Jul/2026:05:08:43 +0200] "GET /wp-includes/ID3/module.tag.lyrics3-class.php HTTP/1.1" 404 355341 "-" "Go-http-client/1.1"
45.132.224.157 - - [04/Jul/2026:05:09:00 +0200] "GET /wp-includes/Text/Diff/Engine/template-singl-portfolio.php HTTP/1.1" 404 355347 "-" "Go-http-client/1.1"
45.132.224.157 - - [04/Jul/2026:05:09:03 +0200] "GET /wp-includes/customize/222.php HTTP/1.1" 404 355319 "-" "Go-http-client/1.1"
45.132.224.157 - - [04/Jul/2026:05:09:10 +0200] "GET /wp-includes/certificates/autoload_classmap.php HTTP/1.1" 404 355336 "-" "Go-http-client/1.1"
45.132.224.157 - - [04/Jul/2026:05:09:12 +0200] "GET /wp-includes/class-wp-site-edit.php HTTP/1.1" 404 355326 "-" "Go-http-client/1.1"
45.132.224.157 - - [04/Jul/2026:05:09:17 +0200] "GET /wp-includes/system.php HTTP/1.1" 404 355312 "-" "Go-http-client/1.1"
45.132.224.157 - - [04/Jul/
...
show less
Web App Attack
๐ซ๐ท
masterguru
2026-07-03 22:06:37
(3 days ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195)
show less
Bad Web Bot
๐บ๐ธ
jsjdmediallc
2026-07-03 17:40:06
(3 days ago)
Auto-blocked: score 2275 (threshold 10). Tier: CRITICAL. Hits: 990. Flags: error-scan, php-in-upload ...
show more
Auto-blocked: score 2275 (threshold 10). Tier: CRITICAL. Hits: 990. Flags: error-scan, php-in-uploads, wp-login, config-file, joomla-probe, wp-install, webshell, vendor-probe, info-file, wp-config, wp-setup, high-rate, pki-probe, cgi-bin, wp-signup, joomla-component. Paths: /plus/90sec.php, /wp-includes/phpmailer/phpmailer.php, /wp-content/upgrade-temp-backup/about.php, /wp-includes/blocks/media-text/index.php, /wp-content/uploads/system_core.php
show less
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-30 03:52:14
(1 week ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 45.132.224.157 (AU/Australia/-): 1 in ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 45.132.224.157 (AU/Australia/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-30 00:47:03
(1 week ago)
(mod_security) mod_security (id:240000) triggered by 45.132.224.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240000) triggered by 45.132.224.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 20:46:57.327171 2026] [security2:error] [pid 25372:tid 25372] [client 45.132.224.157:45501] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||royal-barbershop.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "royal-barbershop.com"] [uri "/images/stories/themes.php"] [unique_id "akMSAUn2txXToumn6zRwPgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-29 20:24:32
(1 week ago)
Excessive 404/403 errors
Brute-Force
๐ณ๐ฑ
Site.eu
2026-06-29 11:22:51
(1 week ago)
Excessive multi-domain requests
Brute-Force