Anonymous
2026-07-04 12:18:16
(2 days ago)
Fuzzing/Looking for credentials files.
Brute-Force
Web App Attack
Anonymous
2026-07-04 02:15:55
(2 days ago)
Web attack blocked by Wordfence on www.charlesquaedvlieg.nl (1 hit). Reported by CRMON.
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-03 23:08:49
(2 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2
Exploited Host
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-03 12:46:35
(3 days ago)
(y4) Failed scan -byebye- from 45.3.51.186 (US/United States/-): (CF_ENABLE)
Hacking
๐ฌ๐ท
setupgr
2026-07-02 11:16:28
(4 days ago)
(wplogin_block) Blocked WP-Login Access Attempt 45.3.51.186 (US/United States/Virginia/Ashburn/-/[AS ...
show more
(wplogin_block) Blocked WP-Login Access Attempt 45.3.51.186 (US/United States/Virginia/Ashburn/-/[AS200373 DREI-K-TECH-GMBH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 45.3.51.186 - - [02/Jul/2026:14:14:54 +0300] "POST /wp-login.php HTTP/1.1" 200 8595 "https://adoro.gr/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36"
show less
Port Scan
๐ฆ๐บ
afleventoffice.com.au
2026-05-09 02:26:01
(1 month ago)
GET http://afleventoffice.com.au/wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings HT ...
show more
GET http://afleventoffice.com.au/wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings HTT
show less
Web App Attack
๐ซ๐ท
masterguru
2026-04-03 11:02:34
(3 months ago)
(modsec_5015) ModSec 5015: Suspicious User-Agent from 45.3.51.186 (US/United States/-): 1 in the las ...
show more
(modsec_5015) ModSec 5015: Suspicious User-Agent from 45.3.51.186 (US/United States/-): 1 in the last 3600 secs (0-193)
show less
Hacking
๐ฑ๐ป
garmtech.com
2026-03-27 23:32:15
(3 months ago)
IM360 WAF: WordPress plugin/theme auto install block
Web App Attack
๐ฆ๐บ
RedBear IT
2026-03-26 10:00:37
(3 months ago)
"DDoS against public endpoint"
DDoS Attack
Anonymous
2025-11-24 11:20:04
(7 months ago)
Malicious activity detected
Hacking
Web App Attack
๐ฎ๐ฉ
Burayot
2025-11-24 09:56:13
(7 months ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.3.51.186 (US/United States/-): 1 ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.3.51.186 (US/United States/-): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 06:09:41
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.51.186 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.51.186 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:09:35.890351 2025] [security2:error] [pid 18194:tid 18287] [client 45.3.51.186:55235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "almerirock.com"] [uri "/.env"] [unique_id "aSP2n-9urIyQu8V3f-3xSgAAAIM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 05:11:12
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.51.186 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.51.186 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:11:03.960381 2025] [security2:error] [pid 6834:tid 6834] [client 45.3.51.186:18025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.dreamscometruefilms.com"] [uri "/.svn/wc.db"] [unique_id "aSPo5z_WUNwjXxhl5FuGdwAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 04:25:38
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.51.186 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.51.186 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:25:25.187298 2025] [security2:error] [pid 3965259:tid 3965340] [client 45.3.51.186:12339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.echrony.com"] [uri "/.svn/wc.db"] [unique_id "aSPeNcHsvdKIeQe-cM_7_QAAAU8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-14 04:52:44
(7 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack