Anonymous
2026-07-12 07:23:22
(16 hours ago)
Web attack blocked by Wordfence on heemkundesjin.nl (2 hits). Reported by CRMON.
Web App Attack
Anonymous
2026-07-07 20:06:16
(5 days ago)
Trying to access config files
Web App Attack
๐ฉ๐ช
LRob
2026-07-05 04:15:34
(1 week ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
๐บ๐ธ
dtorrer
2026-07-04 15:06:14
(1 week ago)
Brute-force general attack.
Brute-Force
๐ซ๐ท
pm33
2026-07-04 01:57:39
(1 week ago)
Wordpress login attempts
Brute-Force
๐ฉ๐ช
F242
2026-06-30 05:02:48
(1 week ago)
Wordpress Login or XMLRPC abuse
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-06-30 04:23:07
(1 week ago)
Wordpress malicious attack:[octaflood]
Web App Attack
๐ซ๐ท
Hippoline
2026-06-26 15:13:02
(2 weeks ago)
Jun 26 17:13:01 local wp(XXXX-A)[1847]: Authentication attempt for unknown user administrator from 4 ...
show more
Jun 26 17:13:01 local wp(XXXX-A)[1847]: Authentication attempt for unknown user administrator from 45.3.54.200
...
show less
Brute-Force
Web App Attack
Anonymous
2026-06-25 18:57:31
(2 weeks ago)
[osotir.org] httpd-login-spray-site: sites=agonistes.gr.synathlountes; logs=/var/log/httpd/domains/a ...
show more
[osotir.org] httpd-login-spray-site: sites=agonistes.gr.synathlountes; logs=/var/log/httpd/domains/agonistes.gr.synathlountes.log; samples=site_wide=true | distinct_ips=12 | /wp-login.php
show less
Hacking
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-05-05 00:08:47
(2 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/45.3.54.200
2026-05-04 17:2 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/45.3.54.200
2026-05-04 17:26:12 /
2026-05-04 17:36:47 /
2026-05-04 16:54:51 /
2026-05-04 17:20:38 /
2026-05-04 17:02:27 /
2026-05-04 16:57:15 /
2026-05-04 16:56:02 /
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-24 00:15:44
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 19:15:41.483294 2026] [security2:error] [pid 10147:tid 10147] [client 45.3.54.200:37773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "movil.mpservice.com.sv"] [uri "/.git/config"] [unique_id "aZztrUKxGawSifmHq15J7AAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-20 09:57:32
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 04:57:28.605773 2026] [security2:error] [pid 1917:tid 1917] [client 45.3.54.200:14961] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||kmp.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kmp.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aZgwCFHmkfPkt70BGBWzTQAAAAQ"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-20 08:24:24
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 03:24:19.486437 2026] [security2:error] [pid 19494:tid 19494] [client 45.3.54.200:57767] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||studioarts.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "studioarts.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aZgaM9eo8bJe5rlkKJfedAAAAAI"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 11:21:19
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:21:14.053330 2025] [security2:error] [pid 23031:tid 23031] [client 45.3.54.200:10017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.integritysecurity.us"] [uri "/.env"] [unique_id "aSbiqitG_dNqWr9ODmJ0MAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 10:35:23
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.54.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:35:16.626478 2025] [security2:error] [pid 20183:tid 20183] [client 45.3.54.200:36091] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.normsrotorservice.com"] [uri "/.svn/wc.db"] [unique_id "aSbX5BWDCR8i5Hz4-O7NFAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack