๐ฉ๐ช
Vegascosmetics
2026-07-12 00:59:49
(2 days ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐บ๐ธ
kosada.com
2026-07-06 17:31:36
(1 week ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
Anonymous
2026-06-28 19:14:03
(2 weeks ago)
WEB attack
Brute-Force
๐ธ๐ฌ
mypatricks
2026-06-28 19:09:21
(2 weeks ago)
45.186.209.160 | Port: 12791 | DNS: 45.186.209.160 2026-06-29T03:09:20+08:00 America/Caracas | FETCH ...
show more
45.186.209.160 | Port: 12791 | DNS: 45.186.209.160 2026-06-29T03:09:20+08:00 America/Caracas | FETCH Sproofing Activity Detetced. | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 HTTP/1.1 443 GET | URL: /?1755370371&faf8cd899cf8cccffef=717 | Ref: - | Country: VE/Venezuela/โ04:00 IP City: Caracas a12efc35ddef6380-MIA/Miami, FL, United States 1 hits/0 secs Robots 2
show less
Brute-Force
Web App Attack
Blog Spam
Web Spam
Exploited Host
๐บ๐ธ
TPI-Abuse
2026-06-22 22:00:51
(3 weeks ago)
(mod_security) mod_security (id:210730) triggered by 45.186.209.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 45.186.209.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 18:00:45.723956 2026] [security2:error] [pid 3385:tid 3404] [client 45.186.209.160:42327] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vtweaversguild.org|F|2"] [data ".lucienne-repweave.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vtweaversguild.org"] [uri "/workshops/www.lucienne-repweave.com"] [unique_id "ajmwjeQx40g10fSK8tyt_AAAAJE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-03 06:25:14
(2 months ago)
Unauthorized connection attempt on Port 23
Port Scan
Hacking
Exploited Host
๐ฉ๐ช
filstal.org
2026-05-01 15:03:29
(2 months ago)
Bad web bot: Spoofed/obsolete UA (Opera/9.62.(X11; Linux x86_64; hne-IN) Presto/2.9.176 Version/12.0 ...
show more
Bad web bot: Spoofed/obsolete UA (Opera/9.62.(X11; Linux x86_64; hne-IN) Presto/2.9.176 Version/12.00). Mass-scanning WordPress plugin. Coordinated large-scale bot attack.
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-22 00:39:44
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 45.186.209.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 45.186.209.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 21 20:39:36.999545 2026] [security2:error] [pid 18827:tid 18859] [client 45.186.209.160:40812] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.ajbruner.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.ajbruner.com"] [uri "/adventures/swrd/1/[email protected] "] [unique_id "aegYyPgC3-s2mXeuXck2twAAAcA"], referer: https://www.ajbruner.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
johnkarlhill
2026-03-28 17:06:05
(3 months ago)
WebKnight blocked malicious web request on johnkarlhill.com
Brute-Force
SSH
Anonymous
2026-03-28 15:02:33
(3 months ago)
XMLRPC BRUTEFORCE - HTTP (Request)
Hacking
๐ซ๐ท
Tilellit.PRO
2026-03-28 11:52:46
(3 months ago)
Fail2Ban banned 45.186.209.160 for security violations in jail wp-armour. Log: 2026/03/28 11:52:46 [ ...
show more
Fail2Ban banned 45.186.209.160 for security violations in jail wp-armour. Log: 2026/03/28 11:52:46 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 45.186.209.160 | Target: wplogin" , client: 45.186.209.160, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "http://espsformacion.com/wp-login.php"
...
show less
Web Spam
๐ฉ๐ช
Honeypot-EU-Fru
2026-03-22 19:06:51
(3 months ago)
1774206410 - 03/22/2026 20:06:50 Host: 45.186.209.160/45.186.209.160 Port: 445 TCP Blocked
...
Port Scan
๐ง๐ท
somosbr
2026-03-21 22:20:23
(3 months ago)
[2026-03-21T22:20:23Z] Unsolicited scan from 45.186.209.160 to port 3306/tcp
Port Scan
๐บ๐ธ
TPI-Abuse
2026-03-18 04:49:40
(3 months ago)
(mod_security) mod_security (id:211030) triggered by 45.186.209.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211030) triggered by 45.186.209.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 18 00:49:31.867626 2026] [security2:error] [pid 28924:tid 28924] [client 45.186.209.160:62891] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at ARGS. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "17"] [id "211030"] [rev "3"] [msg "COMODO WAF: LDAP Injection Attack||dhingra.com|F|2"] [data "Matched Data: (('~'||( found within ARGS: 0"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "dhingra.com"] [uri "/itemdetails.asp"] [unique_id "abou2_9fv0WdEDI92wJypgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-03-02 16:15:48
(4 months ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot