๐ซ๐ท
dynamix
2026-07-17 22:41:26
(5 hours ago)
Multiple WAF Violations
Web App Attack
๐จ๐ฆ
Mediashaker
2026-07-17 19:59:54
(7 hours ago)
(apache-scanners) Failed apache-scanners trigger with match [redacted] from 45.133.176.38 (TW/Taiwan ...
show more
(apache-scanners) Failed apache-scanners trigger with match [redacted] from 45.133.176.38 (TW/Taiwan/-)
show less
Port Scan
๐ช๐ธ
robotstxt
2026-07-15 05:21:51
(2 days ago)
45.133.176.38 - - [15/Jul/2026:05:20:14 +0000] "GET /cgi-bin/bypass.php HTTP/1.1" 404 548 "-" "Mozil ...
show more
45.133.176.38 - - [15/Jul/2026:05:20:14 +0000] "GET /cgi-bin/bypass.php HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" "-"
45.133.176.38 - - [15/Jul/2026:05:20:18 +0000] "GET /wp-signup.php HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "-"
45.133.176.38 - - [15/Jul/2026:05:21:24 +0000] "GET /cgi-bin/class.api.php HTTP/1.1" 404 146 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" "-"
45.133.176.38 - - [15/Jul/2026:05:21:33 +0000] "GET /cgi-bin/autoload_classmap.php HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" "-"
45.133.176.38 - - [15/Jul/2026:05:21:51 +0000] "GET /cgi-bin/index.php HTTP/1.1" 404 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79
...
show less
Bad Web Bot
๐ซ๐ท
dynamix
2026-07-13 19:21:27
(4 days ago)
Multiple WAF Violations
Web App Attack
๐ซ๐ท
dynamix
2026-07-13 15:44:42
(4 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
etu brutus
2026-07-12 19:24:44
(5 days ago)
45.133.176.38 Blocked by [Attack Vector List]
...
Hacking
Brute-Force
Exploited Host
Anonymous
2026-07-11 19:41:50
(6 days ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
๐ซ๐ฎ
YF
2026-07-11 18:31:02
(6 days ago)
Attaque distribuรฉe subnet
DDoS Attack
Web App Attack
๐จ๐ญ
4server
2026-07-11 18:29:30
(6 days ago)
[SatJul1120:29:27.6220302026][security2:error][pid2662795:tid2663015][client45.133.176.38:0]ModSecur ...
show more
[SatJul1120:29:27.6220302026][security2:error][pid2662795:tid2663015][client45.133.176.38:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"368\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"www.benvenutialfood.ch\"][uri\"/xmlrpc.php\"][unique_id\"alKLh6wJChQ2oIYXLji7UQAAAUk\"]
show less
Hacking
Web App Attack
๐บ๐ธ
cwytech
2026-06-24 13:25:20
(3 weeks ago)
Fleet-wide ban from the Ghostfleet ๐ป. Triggered by scenario: cwy/wp-us-login-only-high.
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 20:01:11
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 45.133.176.38 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.133.176.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 16:01:06.222421 2026] [security2:error] [pid 32406:tid 32527] [client 45.133.176.38:37323] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.133.176.38 (+1 hits since last alert)|totheendsoftheearth.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "totheendsoftheearth.com"] [uri "/xmlrpc.php"] [unique_id "aisUAvkLT_XxnQ5kArd40wAAAQs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ป๐ณ
hirosume2
2026-04-07 00:44:12
(3 months ago)
DDoS composite score 34.6 (challenge tier) - 4 reqs/5min - high_traffic
DDoS Attack
Anonymous
2026-02-18 11:05:57
(4 months ago)
Blocked: Reason='Vulnerability probing โ PHP scan detected (13/60 min)'; Requests=13
Port Scan
๐ซ๐ท
dynamix
2026-02-18 08:12:13
(4 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-16 07:55:30
(5 months ago)
(mod_security) mod_security (id:240000) triggered by 45.133.176.38 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240000) triggered by 45.133.176.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 16 02:53:15.679549 2026] [security2:error] [pid 26115:tid 26115] [client 45.133.176.38:57861] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||mvpbees.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "mvpbees.com"] [uri "/images/stories/themes.php"] [unique_id "aZLM63_zmDajnBTfnkICHgAAADE"]
show less
Brute-Force
Bad Web Bot
Web App Attack