๐ณ๐ฑ
Site.eu
2026-06-27 20:12:02
(6 days ago)
Excessive 404/403 errors
Brute-Force
๐ฆ๐บ
MAGIC
2026-06-23 09:04:22
(1 week ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-15 07:24:04
(2 weeks ago)
(mod_security) mod_security (id:240000) triggered by 45.133.5.124 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 45.133.5.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 03:23:58.729865 2026] [security2:error] [pid 21165:tid 21165] [client 45.133.5.124:39395] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||killeenbarrelsandtotes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "killeenbarrelsandtotes.com"] [uri "/images/stories/themes.php"] [unique_id "ai-ojmFz0nM_U__2BNwR3AAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-15 05:24:10
(2 weeks ago)
Multiple WAF Violations
Web App Attack
๐ฌ๐ง
consul.to
2026-05-06 07:42:48
(1 month ago)
Web attack/malicious scanning detected
Web App Attack
๐ณ๐ฑ
BlueWire Hosting
2026-05-05 03:46:31
(1 month ago)
Probing websites for vulnerabilities
Web App Attack
๐ฎ๐ช
Jim Keir
2026-05-05 01:13:50
(1 month ago)
2026-05-05 01:13:49 45.133.5.124 File scanning, blocking 45.133.5.124 for 5 minutes
Web App Attack
๐ณ๐ฑ
Site.eu
2026-04-24 09:20:02
(2 months ago)
Excessive multi-domain requests
Brute-Force
Anonymous
2026-04-23 10:59:15
(2 months ago)
[redacted] 45.133.5.124 - - [23/Apr/2026:12:59:08 +0200] "GET /admin/function.php HTTP/1.1" 404 196 ...
show more
[redacted] 45.133.5.124 - - [23/Apr/2026:12:59:08 +0200] "GET /admin/function.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36"
[redacted] 45.133.5.124 - - [23/Apr/2026:12:59:08 +0200] "GET /wp-includes/js/crop/admin.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36"
[redacted] 45.133.5.124 - - [23/Apr/2026:12:59:09 +0200] "GET /wp-includes/PHPMailer/admin.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36"
[redacted] 45.133.5.124 - - [23/Apr/2026:12:59:11 +0200] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0"
[redacted] 45.133.5.124 - -
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-23 07:41:42
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 45.133.5.124 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 45.133.5.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 23 03:41:31.122922 2026] [security2:error] [pid 9955:tid 9955] [client 45.133.5.124:48125] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||frenosilent.ar|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "frenosilent.ar"] [uri "/images/stories/themes.php"] [unique_id "aenNKxAmcaCPkS0TWXP4gAAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-04-21 08:18:32
(2 months ago)
Web vulnerability probing: /log.php
Web App Attack
Anonymous
2026-04-19 04:17:08
(2 months ago)
[redacted] 45.133.5.124 - - [19/Apr/2026:06:17:00 +0200] "GET /wp-admin/maint/file.php HTTP/1.1" 404 ...
show more
[redacted] 45.133.5.124 - - [19/Apr/2026:06:17:00 +0200] "GET /wp-admin/maint/file.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36"
[redacted] 45.133.5.124 - - [19/Apr/2026:06:17:01 +0200] "GET /.well-known/acme-challenge/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36"
[redacted] 45.133.5.124 - - [19/Apr/2026:06:17:02 +0200] "GET /wp-admin/theme-editor.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
[redacted] 45.133.5.124 - - [19/Apr/2026:06:17:02 +0200] "GET /wp-admin/css/colors/blue/abc.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36"
[redacted] 45.133.5.124 - - [19/Apr/2
...
show less
Hacking
Web App Attack
๐ฉ๐ช
Vegascosmetics
2026-04-14 21:51:27
(2 months ago)
Kingcopy(AI-IDS):IP is Probing for Wordpress vulnerabilities WTF:Banned
Hacking
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-04-14 10:21:22
(2 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-14 08:16:23
(2 months ago)
(mod_security) mod_security (id:240000) triggered by 45.133.5.124 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240000) triggered by 45.133.5.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 04:16:15.270009 2026] [security2:error] [pid 629965:tid 629965] [client 45.133.5.124:45389] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||myriadpubs.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "myriadpubs.com"] [uri "/images/stories/themes.php"] [unique_id "ad33z-zXcNnOHSqaRT0FkwAAAC0"]
show less
Brute-Force
Bad Web Bot
Web App Attack