Anonymous
2026-07-08 12:17:12
(1 day ago)
Fuzzing/Looking for credentials files.
Brute-Force
Web App Attack
๐ซ๐ท
pm33
2026-07-07 17:34:20
(2 days ago)
Wordpress login attempts
Brute-Force
๐บ๐ธ
lostswordfish.com
2026-07-06 10:10:04
(3 days ago)
Wordfence waf block on registrymatters
Web App Attack
Anonymous
2026-07-05 19:45:15
(4 days ago)
Web attack blocked by Wordfence on mezzia.nl (1 hit). Reported by CRMON.
Web App Attack
๐บ๐ธ
cwytech
2026-07-04 03:14:56
(6 days ago)
Fleet-wide ban from the Ghostfleet ๐ป. Triggered by scenario: cwy/wordpress-login-lockdown-high.
Bad Web Bot
Web App Attack
๐จ๐ฆ
Liborio
2026-07-02 12:01:00
(1 week ago)
wp_login
Brute-Force
Web App Attack
๐ช๐ธ
10dencehispahard SL
2026-01-26 11:19:05
(5 months ago)
Wordpress probing for vulnerabilities
Hacking
Exploited Host
๐ณ๐ฑ
MM-bot
2026-01-01 11:54:30
(6 months ago)
URL-probe: HTTP/1.1 GET request on /Telerik.Web.UI.WebResource.axd (2026-01-01 12:54:30 UTC+1)
Hacking
Web App Attack
Anonymous
2025-12-15 04:59:29
(6 months ago)
botnet
DDoS Attack
๐บ๐ธ
TPI-Abuse
2025-12-09 20:56:33
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 15:56:26.117638 2025] [security2:error] [pid 14625:tid 14625] [client 45.3.32.147:44319] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ssl-grp.com"] [uri "/.svn/wc.db"] [unique_id "aTiM-gdhjn-Pys_N6I5vfgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-08 19:10:14
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 14:10:11.106672 2025] [security2:error] [pid 26976:tid 26976] [client 45.3.32.147:21233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rescuedpekes.com"] [uri "/.git/HEAD"] [unique_id "aTcikxpmWIsRUCNF2u21_QAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-08 16:06:09
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 11:06:03.749096 2025] [security2:error] [pid 16031:tid 16050] [client 45.3.32.147:52171] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sillytheatreproductions.com"] [uri "/.git/HEAD"] [unique_id "aTb3a_5vqgeZMIzlpHZM9AAAANE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-08 06:17:11
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 01:17:06.160543 2025] [security2:error] [pid 20127:tid 20127] [client 45.3.32.147:27771] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rocksolidhomebuilders.com"] [uri "/.env"] [unique_id "aTZtYqRppAdoZJ6yGNRtBgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-08 03:25:09
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 22:25:01.069989 2025] [security2:error] [pid 25626:tid 25626] [client 45.3.32.147:42983] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "commonwealthcateringky.com"] [uri "/.svn/wc.db"] [unique_id "aTZFDRAmUNoJvizgsU20DQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-06 19:54:17
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.32.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 14:54:10.781585 2025] [security2:error] [pid 21612:tid 21612] [client 45.3.32.147:19971] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krystalsgiftshopandboutique.net"] [uri "/.env"] [unique_id "aTSJ4ppbfu17-Vu4kTluqwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack