๐จ๐ญ
TheCoon
2026-05-13 08:00:03
(2 months ago)
Automated: Credential theft attempt - JSON bomb served
Web App Attack
Hacking
๐ฆ๐บ
2000cn.com.au
2026-05-12 00:13:40
(2 months ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐ฌ๐ง
thetomtaylor.co.uk
2026-05-11 22:09:02
(2 months ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [mx01,mx03]
Bad Web Bot
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-05-11 07:06:01
(2 months ago)
Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,wa01,wa02]
Hacking
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-05-07 01:25:26
(2 months ago)
ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/45.3.33.104
2026-05-06 ...
show more
ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/45.3.33.104
2026-05-06 09:00:41 /
2026-05-06 09:03:05 /
2026-05-06 09:25:48 /
2026-05-06 09:05:56 /
2026-05-06 08:59:30 /
show less
Web App Attack
๐ฌ๐ง
PeravixGroup
2026-05-02 22:14:02
(2 months ago)
Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HI ...
show more
Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HIGH. Aaran.cloud
show less
Hacking
Exploited Host
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
๐บ๐ธ
TPI-Abuse
2026-02-13 13:23:52
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:23:48.812739 2026] [security2:error] [pid 14491:tid 14491] [client 45.3.33.104:43943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "militaryordnance.com"] [uri "/app/.env"] [unique_id "aY8l5OUp5lzHpyOKMuJpdgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-13 12:43:47
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 07:43:39.162633 2026] [security2:error] [pid 9209:tid 9209] [client 45.3.33.104:49311] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "microscopicpablo.com"] [uri "/admin/.env"] [unique_id "aY8ce4Tp4PmvlkNUVBarNgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-13 08:54:56
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:54:50.999384 2026] [security2:error] [pid 17041:tid 17041] [client 45.3.33.104:60249] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "metalgecko.com"] [uri "/app/.git/config"] [unique_id "aY7m2kFy5uc3fh4EQ068CgAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-13 04:12:23
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:12:15.909796 2026] [security2:error] [pid 21899:tid 21939] [client 45.3.33.104:29641] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maroontribe.com"] [uri "/.env.staging"] [unique_id "aY6kn1bOvFBDCmI4tvlOVgAAAUk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-13 01:29:28
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:29:23.209144 2026] [security2:error] [pid 13650:tid 13707] [client 45.3.33.104:46973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magnumxl.com"] [uri "/app/.git/config"] [unique_id "aY5-c09_nSpw7G6GQSn3IwAAAEs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-12 07:58:05
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 02:57:59.105251 2026] [security2:error] [pid 23730:tid 23730] [client 45.3.33.104:9659] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gcsmith.com"] [uri "/.env.production"] [unique_id "aY2IBxR4DOnneMs3CFudcAAAACQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 22:16:06
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 17:16:00.312880 2026] [security2:error] [pid 28782:tid 28782] [client 45.3.33.104:26759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fundingangelinvestors.com"] [uri "/frontend/.env"] [unique_id "aYuuIIW2_nHnsjTSwzRtrgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-10 16:01:40
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.33.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 11:01:34.826790 2026] [security2:error] [pid 14763:tid 14763] [client 45.3.33.104:18137] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fsmfl.com"] [uri "/site/.git/config"] [unique_id "aYtWXllwpv-g6VclrtpSdwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack