๐ฒ๐น
Malta
2026-06-29 12:16:59
(3 days ago)
45.3.52.104 - - [29/Jun/2026:14:16:59 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10 ...
show more
45.3.52.104 - - [29/Jun/2026:14:16:59 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36"
show less
Hacking
Web App Attack
VPN IP
๐จ๐ญ
TheCoon
2026-06-16 10:00:01
(2 weeks ago)
Automated: Credential theft attempt - JSON bomb served
Web App Attack
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-05-18 22:00:12
(1 month ago)
Auto-ban: >3000 req/min op 2026-05-18
Web App Attack
SSH
Hacking
๐ณ๐ฑ
oisecnet
2026-02-15 22:00:45
(4 months ago)
Automated report: Unauthorized vulnerability scanning detected on 2026-02-15. 24 requests from this ...
show more
Automated report: Unauthorized vulnerability scanning detected on 2026-02-15. 24 requests from this IP.
show less
Brute-Force
Web App Attack
SSH
Anonymous
2026-02-15 11:23:56
(4 months ago)
45.3.52.104 - - [15/Feb/2026:11:23:45 +0000] "GET /admin/.env HTTP/1.1" 403 2402 "-" "Mozilla/5.0 (W ...
show more
45.3.52.104 - - [15/Feb/2026:11:23:45 +0000] "GET /admin/.env HTTP/1.1" 403 2402 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
...
show less
Bad Web Bot
Web App Attack
๐ท๐ด
INTEQ
2026-02-15 05:52:43
(4 months ago)
Web attack from 45.3.52.104
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 05:46:03
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:45:56.076756 2026] [security2:error] [pid 28555:tid 28555] [client 45.3.52.104:45459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scarylogcabin.com"] [uri "/.git/config"] [unique_id "aZFdlCbFwkwZBibFdM3HkwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 05:25:09
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:25:03.035660 2026] [security2:error] [pid 6224:tid 6275] [client 45.3.52.104:37857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oftv.xyz"] [uri "/wp/.git/config"] [unique_id "aZFYrwd6CwE1zZPIU6m40wAAARU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 04:58:45
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:58:38.845856 2026] [security2:error] [pid 3906:tid 3906] [client 45.3.52.104:38263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prestigedomainsales.com"] [uri "/app/.env"] [unique_id "aZFSfnr9nSBRI4wCaqWpVAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
myagent.site
2026-02-15 04:56:29
(4 months ago)
Blocking for trying to access an exploit file: /.aws/credentials
Hacking
๐บ๐ธ
TPI-Abuse
2026-02-15 04:34:56
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:34:49.715447 2026] [security2:error] [pid 23849:tid 23849] [client 45.3.52.104:63123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sangalgano.info"] [uri "/.env.save"] [unique_id "aZFM6TU8VRTy9B1q2IaERwAAAC8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
lns.bz
2026-02-15 03:58:00
(4 months ago)
.env scanning [DOPP]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 03:55:57
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:55:53.826914 2026] [security2:error] [pid 28003:tid 28003] [client 45.3.52.104:42199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "noshsf.com"] [uri "/wp/.git/config"] [unique_id "aZFDyeOIeWhKqpzgByhihAAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 03:14:30
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.52.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:14:25.335472 2026] [security2:error] [pid 25724:tid 25724] [client 45.3.52.104:31919] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "polishedspaservices.com"] [uri "/backend/.env"] [unique_id "aZE6EV88ktWiDfnW2l-dzAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-02-15 03:05:37
(4 months ago)
Too many Status 40X (11)
Scanning/Probing (11)
Brute-Force
Web App Attack