๐จ๐ฟ
unhfree.net
2026-07-04 04:18:53
(4 days ago)
Brute-Force
Exploited Host
๐ฎ๐น
Progetto1
2026-06-19 18:30:03
(2 weeks ago)
Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ท๐บ
sms.ru
2026-06-07 14:13:30
(1 month ago)
/wp-admin/js/widgets/setting.php
Web App Attack
๐ซ๐ท
Octopuce
2026-06-07 03:48:15
(1 month ago)
Aggressive web search of vulnerable pages: /css/index.php /images/index22.php /wp-user.php /wp-inclu ...
show more
Aggressive web search of vulnerable pages: /css/index.php /images/index22.php /wp-user.php /wp-includes/pomo/about.php /wp-includes/pomo/index. ...
show less
Web App Attack
๐ฌ๐ง
consul.to
2026-06-05 04:09:07
(1 month ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
mnsf
2026-05-07 03:05:18
(2 months ago)
Too many Status 40X (12)
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-05-06 02:05:38
(2 months ago)
Too many Status 40X (13)
Brute-Force
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-04-29 22:51:32
(2 months ago)
45.154.138.1 - - [30/Apr/2026:01:48:55 +0300] "GET /wp-content/index.php HTTP/1.1" 404 708 "-" "Go-h ...
show more
45.154.138.1 - - [30/Apr/2026:01:48:55 +0300] "GET /wp-content/index.php HTTP/1.1" 404 708 "-" "Go-http-client/1.1"
45.154.138.1 - - [30/Apr/2026:01:51:30 +0300] "GET /wp-includes/js/tinymce/themes/about.php HTTP/1.1" 404 708 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐บ๐ธ
mnsf
2026-04-29 18:05:33
(2 months ago)
Too many Status 40X (11)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-19 06:50:06
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 45.154.138.1 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 45.154.138.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 19 02:50:01.424461 2026] [security2:error] [pid 4063288:tid 4063312] [client 45.154.138.1:41283] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.docdalton.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.docdalton.com"] [uri "/team.html/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aeR7GbpKACHnCE_l-DK_WgAAAFU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-19 00:57:58
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 45.154.138.1 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 45.154.138.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 20:57:54.431213 2026] [security2:error] [pid 24203:tid 24203] [client 45.154.138.1:23267] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||bitcoinsquaretrade.com|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bitcoinsquaretrade.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aeQoksBiiwNQczhWyKqNDQAAACU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-19 00:15:22
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 45.154.138.1 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 45.154.138.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 20:15:17.419328 2026] [security2:error] [pid 3802208:tid 3802208] [client 45.154.138.1:31265] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||geodogs.org|F|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "geodogs.org"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aeQelVb41BVYGyFmEpoiaQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2026-04-08 00:33:00
(3 months ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐บ๐ธ
xmission.com
2026-03-25 02:25:14
(3 months ago)
45.154.138.1 - - [24/Mar/2026:20:25:14 -0600] "POST /wp-login.php HTTP/1.1" 200 6929 "-" "Mozilla/5. ...
show more
45.154.138.1 - - [24/Mar/2026:20:25:14 -0600] "POST /wp-login.php HTTP/1.1" 200 6929 "-" "Mozilla/5.0"
...
show less
Brute-Force
๐บ๐ฆ
URAN Publishing Service
2026-03-18 05:38:44
(3 months ago)
45.154.138.1 - - [18/Mar/2026:07:38:41 +0200] "GET /wp-includes/theme-compat/chosen.php HTTP/1.1" 40 ...
show more
45.154.138.1 - - [18/Mar/2026:07:38:41 +0200] "GET /wp-includes/theme-compat/chosen.php HTTP/1.1" 404 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36"
45.154.138.1 - - [18/Mar/2026:07:38:42 +0200] "GET /wp-includes/IXR/chosen.php HTTP/1.1" 404 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36"
...
show less
Web App Attack