2025-11-06 16:25:55
(7 months ago)
wordpress-trap
Web App Attack
π³π±
i-turnradio.nl
2025-11-06 10:57:07
(7 months ago)
2025-11-06 @ 11:57:07 (CET) ~ Blocked based on risk assessment and prior abuse reports
Web App Attack
2025-11-03 09:04:30
(7 months ago)
wordpress-trap
Web App Attack
2025-11-02 10:32:23
(7 months ago)
wordpress-trap
Web App Attack
2025-11-02 02:27:29
(7 months ago)
wordpress-trap
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-01 08:46:16
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 04:46:10.081723 2025] [security2:error] [pid 30379:tid 30379] [client 45.153.160.138:30599] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||fashionmenswear.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "fashionmenswear.com"] [uri "/server.sql"] [unique_id "aQXI0iE84iNDWhDiLTroowAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-01 02:51:43
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 31 22:51:39.111671 2025] [security2:error] [pid 1530:tid 1530] [client 45.153.160.138:18377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mibfans.com"] [uri "/wp-content/backup/wp-config.php.old"] [unique_id "aQV1u2aMDR50IkMuFv6etgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-10-30 22:04:41
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 30 18:04:38.386365 2025] [security2:error] [pid 16034:tid 16034] [client 45.153.160.138:20731] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||register-yacht-delaware.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "register-yacht-delaware.com"] [uri "/wp-content/backup.sql"] [unique_id "aQPg9lal0uDTysjMnszoegAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-10-30 21:48:12
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 30 17:48:04.198166 2025] [security2:error] [pid 18713:tid 18713] [client 45.153.160.138:32641] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fattoria-rendena.it"] [uri "/wp-content/backup/wp-config.php~"] [unique_id "aQPdFMjTW3Alm6yN5XQHBgAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-10-30 14:59:48
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 30 10:59:43.452836 2025] [security2:error] [pid 20585:tid 20585] [client 45.153.160.138:17879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kalvannaawards.com"] [uri "/wp-content/uploads/wp-config.php.old"] [unique_id "aQN9X678XCCPMWTmH25D-wAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
Penny Packer
2025-10-30 10:44:05
(7 months ago)
Fail2Ban apache-tripwires
Web App Attack
πΊπΈ
TPI-Abuse
2025-10-29 22:10:32
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 29 18:10:27.026383 2025] [security2:error] [pid 19267:tid 19267] [client 45.153.160.138:25523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pulleasy.com"] [uri "/wp-content/uploads/wp-config.php.bak"] [unique_id "aQKQ05rYXdcBRGu0BqROoAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-10-28 21:56:24
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 45.153.160.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 28 17:56:16.639374 2025] [security2:error] [pid 22096:tid 22096] [client 45.153.160.138:12837] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krystalsgiftshopandboutique.net"] [uri "/wp-content/wp-config.php.old"] [unique_id "aQE8AIy9d9y7zU0B5N9LnAAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π±π»
garmtech.com
2025-10-28 16:16:08
(7 months ago)
IM360 WAF: Information Disclosure Attempt in WordPress MV:/wp-content/wp-config.php.bak
Web App Attack
πΊπΈ
kosada.com
2023-05-12 23:54:55
(3 years ago)
SSH password guessing
Brute-Force
SSH