πΊπΈ
ambor
2026-07-04 23:58:34
(3 hours ago)
Honeypot access: WordPress admin access attempt. Path: /wp-login.php
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-30 11:25:19
(4 days ago)
(mod_security) mod_security (id:225170) triggered by 45.159.22.241 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 45.159.22.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 07:25:13.373825 2026] [security2:error] [pid 4691:tid 4691] [client 45.159.22.241:46733] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||saimedo.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "saimedo.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akOnmU4Yab35bBnTIaM6hQAAAAo"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
tilellit.pro
2026-06-28 08:24:26
(6 days ago)
Fail2Ban banned 45.159.22.241 for security violations in jail wp-armour. Log: 2026/06/28 08:24:26 [e ...
show more
Fail2Ban banned 45.159.22.241 for security violations in jail wp-armour. Log: 2026/06/28 08:24:26 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 45.159.22.241 | Target: wplogin" , client: 45.159.22.241, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
π«π·
tilellit.pro
2026-06-25 18:16:57
(1 week ago)
Fail2Ban banned 45.159.22.241 for security violations in jail wp-armour. Log: 2026/06/25 18:16:56 [e ...
show more
Fail2Ban banned 45.159.22.241 for security violations in jail wp-armour. Log: 2026/06/25 18:16:56 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 45.159.22.241 | Target: wplogin" , client: 45.159.22.241, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
π¨πΏ
ptlab
2026-04-09 04:45:16
(2 months ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-08 04:14:13
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 45.159.22.241 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 45.159.22.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 00:14:08.157713 2026] [security2:error] [pid 2335646:tid 2335646] [client 45.159.22.241:34167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||heathdiesel.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "heathdiesel.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adXWEEx6CyXsKKCeE3qJcAAAAAI"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
ambor
2026-04-04 01:36:05
(3 months ago)
Honeypot access: WordPress admin access attempt. Path: /wp-login.php
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-03-29 18:39:50
(3 months ago)
(mod_security) mod_security (id:225170) triggered by 45.159.22.241 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 45.159.22.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 14:39:42.492374 2026] [security2:error] [pid 4742:tid 4742] [client 45.159.22.241:25569] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bohk.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bohk.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aclx7hbAueqhZEW_1kSiqQAAAA4"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-03-28 14:22:35
(3 months ago)
Web App Attack
Brute-Force
Web App Attack
π«π·
masterguru
2026-03-05 04:23:10
(3 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 45.159.22.241 (LV/Latvia/-): 1 in the last 360 ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 45.159.22.241 (LV/Latvia/-): 1 in the last 3600 secs (0-196)
show less
Hacking
π¬π§
noise.agency
2026-02-11 06:24:50
(4 months ago)
(wordpress) Failed wordpress login from 45.159.22.241 (US/United States/-)
Brute-Force
Anonymous
2024-08-01 00:47:46
(1 year ago)
Ports: *; Direction: 0; Trigger: CT_LIMIT
Brute-Force
SSH
Anonymous
2024-05-12 08:13:59
(2 years ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
Anonymous
2024-02-14 04:16:50
(2 years ago)
Common attack or app scan event detected and blocked
Port Scan
Hacking
Web App Attack
πΏπ¦
IrisFlower
2022-09-17 10:02:37
(3 years ago)
Unauthorized connection attempt detected from IP address 45.159.22.241 to port 443 [J]
Port Scan
Hacking