๐ฉ๐ช
georgengelmann
2026-07-15 14:22:54
(4 days ago)
Failed login attempt for admin
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-21 22:22:02
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 45.80.105.158 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 45.80.105.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 18:21:57.259416 2026] [security2:error] [pid 24752:tid 24752] [client 45.80.105.158:37261] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||hazeltrane.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "hazeltrane.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ag-FhTcs9posHUNeJyL-rAAAAB0"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Tilellit.PRO
2026-05-07 16:59:42
(2 months ago)
Fail2Ban banned 45.80.105.158 for security violations in jail wp-armour. Log: 2026/05/07 16:59:42 [e ...
show more
Fail2Ban banned 45.80.105.158 for security violations in jail wp-armour. Log: 2026/05/07 16:59:42 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 45.80.105.158 | Target: wplogin" , client: 45.80.105.158, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐จ๐ฟ
ptlab
2026-04-28 02:45:50
(2 months ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
Anonymous
2026-04-27 17:42:23
(2 months ago)
45.80.105.158 - - [27/Apr/2026:19:42:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 132 "-" "Apache-HttpC ...
show more
45.80.105.158 - - [27/Apr/2026:19:42:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 132 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)"
45.80.105.158 - - [27/Apr/2026:19:42:16 +0200] "POST /xmlrpc.php HTTP/1.0" 200 346 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)"
45.80.105.158 - - [27/Apr/2026:19:42:17 +0200] "POST /xmlrpc.php HTTP/1.0" 200 420 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)"
45.80.105.158 - - [27/Apr/2026:19:42:17 +0200] "POST /xmlrpc.php HTTP/1.1" 200 206 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)"
45.80.105.158 - - [27/Apr/2026:19:42:22 +0200] "POST /xmlrpc.php HTTP/1.0" 200 346 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-26 19:40:23
(2 months ago)
(mod_security) mod_security (id:225170) triggered by 45.80.105.158 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 45.80.105.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 15:40:15.907906 2026] [security2:error] [pid 16998:tid 16998] [client 45.80.105.158:42535] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||stardancertantra.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "stardancertantra.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ae5qH6AfuF0lzIrcO_FV0gAAAA8"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-04-03 10:26:38
(3 months ago)
Web vulnerability probing: /wp-json/wp/v2/users
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-12 17:35:43
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 45.80.105.158 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 45.80.105.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 12 13:35:36.133599 2026] [security2:error] [pid 28481:tid 28481] [client 45.80.105.158:36617] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bicaco.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bicaco.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abL5aIVm3r0mN_wzBESDXAAAAAI"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
Shaik Sai Meera
2026-03-12 08:05:12
(4 months ago)
IM360 WAF: Request indicates a Headless browser
Brute-Force
Web App Attack
๐ฉ๐ช
kjaerulff
2026-03-11 13:27:56
(4 months ago)
Failed Wordpress login using wp-login.php
Web App Attack
๐ฉ๐ช
kjaerulff
2026-03-07 12:21:37
(4 months ago)
Failed Wordpress login using wp-login.php
Web App Attack
๐จ๐ฟ
lp
2025-02-04 07:21:35
(1 year ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 45.80.105.158
2025-02-04T08:02:53+01: ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 45.80.105.158
2025-02-04T08:02:53+01:00 vpn Access-Reject 'alleviate' station: 45.80.105.158 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
Anonymous
2024-10-20 00:31:46
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ท๐บ
sms.ru
2024-09-23 00:50:07
(1 year ago)
SMS pumping attack from foreign country
DDoS Attack
๐ต๐ฑ
sefinek.net
2024-08-30 14:05:20
(1 year ago)
This IP address has been identified as generating artificial traffic on websites following the purch ...
show more
This IP address has been identified as generating artificial traffic on websites following the purchase of a specific service from a Fiverr gig. User-Agent and Referrer: Mozilla/5.0 (iPad; CPU OS 14_8_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/79.0.3945.117 Mobile/15E148 Safari/604.1 - -
show less
Bad Web Bot