๐บ๐ธ
TPI-Abuse
2026-06-30 05:01:00
(2 days ago)
(mod_security) mod_security (id:240000) triggered by 45.132.225.238 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240000) triggered by 45.132.225.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 01:00:54.746412 2026] [security2:error] [pid 18724:tid 18724] [client 45.132.225.238:58899] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||mail.mumawvickers.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "mail.mumawvickers.com"] [uri "/images/stories/themes.php"] [unique_id "akNNhi1FibcYlSdmc5CIgwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ท
setupgr
2026-06-27 11:34:04
(4 days ago)
(mod_security) mod_security (id:1000001) triggered by 45.132.225.238 (AU/Australia/Victoria/Melbourn ...
show more
(mod_security) mod_security (id:1000001) triggered by 45.132.225.238 (AU/Australia/Victoria/Melbourne/-/[AS137409 GSL Networks Pty LTD]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 27 14:34:01.840792 2026] [security2:error] [pid 1094402:tid 1094719] [client 45.132.225.238:41305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/db.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "103"] [id "1000001"] [msg "Bad file blocked: /db.php"] [severity "CRITICAL"] [tag "security"] [hostname "doityourself.gr"] [uri "/db.php"] [unique_id "aj-1Ke7w21w0WpBYAZ1RhAAABIo"]
show less
Port Scan
๐ซ๐ท
dynamix
2026-06-23 21:45:26
(1 week ago)
Multiple WAF Violations
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-21 13:59:08
(1 week ago)
45.132.225.238 - - [21/Jun/2026:16:59:07 +0300] "GET /wp-content/themes/index.php HTTP/1.1" 404 709 ...
show more
45.132.225.238 - - [21/Jun/2026:16:59:07 +0300] "GET /wp-content/themes/index.php HTTP/1.1" 404 709 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-21 10:37:59
(1 week ago)
45.132.225.238 - - [21/Jun/2026:13:37:58 +0300] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 70 ...
show more
45.132.225.238 - - [21/Jun/2026:13:37:58 +0300] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 707 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐ฎ๐น
VHosting
2026-06-21 05:35:03
(1 week ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
Anonymous
2026-06-21 03:04:16
(1 week ago)
Banned by Fail2Ban on server
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-20 18:57:38
(1 week ago)
45.132.225.238 - - [20/Jun/2026:21:57:37 +0300] "GET /wp-includes/Text/Diff/Engine/template-singl-po ...
show more
45.132.225.238 - - [20/Jun/2026:21:57:37 +0300] "GET /wp-includes/Text/Diff/Engine/template-singl-portfolio.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1"
45.132.225.238 - - [20/Jun/2026:21:57:38 +0300] "GET /wp-includes/ID3/index.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐ฌ๐ง
consul.to
2026-05-30 02:15:59
(1 month ago)
Web attack/malicious scanning detected
Web App Attack
๐ณ๐ฑ
Site.eu
2026-04-19 09:51:55
(2 months ago)
Excessive 404/403 errors
Brute-Force
๐ซ๐ท
dynamix
2026-04-19 00:39:18
(2 months ago)
Multiple WAF Violations
Web App Attack
Anonymous
2026-04-18 21:24:48
(2 months ago)
[redacted] 45.132.225.238 - - [18/Apr/2026:23:24:41 +0200] "GET /admin/function.php HTTP/1.1" 404 23 ...
show more
[redacted] 45.132.225.238 - - [18/Apr/2026:23:24:41 +0200] "GET /admin/function.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0"
[redacted] 45.132.225.238 - - [18/Apr/2026:23:24:41 +0200] "GET /wp-includes/js/crop/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
[redacted] 45.132.225.238 - - [18/Apr/2026:23:24:42 +0200] "GET /wp-includes/PHPMailer/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0"
[redacted] 45.132.225.238 - - [18/Apr/2026:23:24:44 +0200] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0"
[redacted] 45.132.225.238 - - [18/Apr/2026:23:24:44 +0200] "GET /wp-includes/IXR/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
...
show less
Hacking
Web App Attack
๐ง๐ท
Halux
2026-04-18 20:12:42
(2 months ago)
45.132.225.238 Probing protected path or service
Web App Attack
๐ณ๐ฑ
EGP Abuse Dept
2026-03-10 11:27:15
(3 months ago)
Scanning for port/service exploits on tpc-042.mach3builders.nl
Port Scan
Hacking
๐บ๐ธ
mnsf
2026-03-10 10:06:30
(3 months ago)
Too many Status 40X (11)
Brute-Force
Web App Attack