๐ง๐ท
Halux
2026-07-06 21:12:41
(1 hour ago)
45.3.55.187 Web Application Firewall multiple violations
Hacking
Web App Attack
๐ง๐ท
Peregrine
2026-07-06 00:03:28
(22 hours ago)
Fail2Ban ct101 Jail: tomcat-honeypot | Evidence: 45.3.55.187 172.71.102.66 - - [05/Jul/2026:21:03:24 ...
show more
Fail2Ban ct101 Jail: tomcat-honeypot | Evidence: 45.3.55.187 172.71.102.66 - - [05/Jul/2026:21:03:24 -0300] "GET //xmlrpc.php?rsd HTTP/1.1" 404 18149
show less
Bad Web Bot
๐จ๐ณ
ThreatBook.io
2025-11-27 00:55:39
(7 months ago)
ThreatBook Intelligence: Zombie,vpn_proxy more details on https://threatbook.io/ip/45.3.55.187
2025- ...
show more
ThreatBook Intelligence: Zombie,vpn_proxy more details on https://threatbook.io/ip/45.3.55.187
2025-11-26 17:29:27 /.env
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 12:41:17
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:41:11.906485 2025] [security2:error] [pid 2877295:tid 2877295] [client 45.3.55.187:43967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.wilsontribe.org"] [uri "/.git/HEAD"] [unique_id "aSb1Z9VdRqXPgDd43uqWmQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐ธ
Smel
2025-11-26 08:07:22
(7 months ago)
HTTP/80/443/8080 Unauthorized Probe, Hack -
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 05:58:55
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:58:48.008549 2025] [security2:error] [pid 11127:tid 11127] [client 45.3.55.187:51081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.incrp.org"] [uri "/.git/HEAD"] [unique_id "aSaXGCrL99ipB5wUHIJ0gwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 05:24:16
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:24:12.598523 2025] [security2:error] [pid 20980:tid 20980] [client 45.3.55.187:10793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.digbie.com"] [uri "/.svn/wc.db"] [unique_id "aSaO_CsKy4GRFA0--9Nx2gAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-26 00:48:54
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:48:48.504836 2025] [security2:error] [pid 26535:tid 26535] [client 45.3.55.187:26173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.richmondrents.com"] [uri "/.git/HEAD"] [unique_id "aSZOcNg1TiLLy41KAwRP4QAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-24 09:49:29
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210492) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:49:22.428755 2025] [security2:error] [pid 17898:tid 17898] [client 45.3.55.187:21399] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.swindon-itf.com"] [uri "/.git/HEAD"] [unique_id "aSQqIg4979oiMAoHv79fYQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
10dencehispahard SL
2025-11-19 08:35:06
(7 months ago)
WP probing for vulnerabilities
Hacking
Exploited Host
๐จ๐ญ
teamsecure
2025-11-18 02:36:40
(7 months ago)
Banned for trying to access wp-login
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-08 09:04:42
(7 months ago)
(mod_security) mod_security (id:210730) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:210730) triggered by 45.3.55.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 04:04:35.871939 2025] [security2:error] [pid 4924:tid 4924] [client 45.3.55.187:60903] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.l3l4.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.l3l4.com"] [uri "/s3cmd.ini"] [unique_id "aQ8Ho4_CoSEtajKjHYDj5wAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-02 19:13:00
(8 months ago)
This IP was involved in an brute force and password spray attack on 2025/11/02 06:56:59
Port Scan
Brute-Force
Exploited Host
Web App Attack
Anonymous
2025-10-16 10:04:44
(8 months ago)
WordPress Brute Force
Brute-Force
Anonymous
2025-04-01 22:27:33
(1 year ago)
Malicious activity detected
Hacking
Web App Attack