๐ฉ๐ช
cloudmax
2026-03-18 09:48:18
(3 months ago)
Cloudmax Protect [WORDPRESS BLOCK] - Excessive requests to private WordPress directories. Possible b ...
show more
Cloudmax Protect [WORDPRESS BLOCK] - Excessive requests to private WordPress directories. Possible brute-force attack, hacking attempt, or vulnerability probing
show less
Brute-Force
๐ฌ๐ง
Bytemark
2026-03-18 09:31:13
(3 months ago)
5.45.36.161 - - [18/Mar/2026:09:30:57 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google ...
show more
5.45.36.161 - - [18/Mar/2026:09:30:57 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
5.45.36.161 - - [18/Mar/2026:09:30:58 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
5.45.36.161 - - [18/Mar/2026:09:30:59 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
show less
Brute-Force
Web App Attack
๐ช๐ธ
el-brujo
2026-03-18 05:19:08
(3 months ago)
[Wed Mar 18 06:19:05.217838 2026] [proxy_fcgi:error] [pid 1628070:tid 1628378] [remote 5.45.36.161:0 ...
show more
[Wed Mar 18 06:19:05.217838 2026] [proxy_fcgi:error] [pid 1628070:tid 1628378] [remote 5.45.36.161:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com
[Wed Mar 18 06:19:07.888441 2026] [proxy_fcgi:error] [pid 1628095:tid 1628375] [remote 5.45.36.161:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com
...
show less
Hacking
Web App Attack
๐บ๐ธ
island-freaks.com
2026-03-18 04:34:26
(3 months ago)
Attack Type: WordPress Exploit Bot attempt on /wp-json/wp/v2/users | DNS 5.45.36.161 | Agent: Mozill ...
show more
Attack Type: WordPress Exploit Bot attempt on /wp-json/wp/v2/users | DNS 5.45.36.161 | Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
show less
Port Scan
Hacking
Bad Web Bot
Exploited Host
Web App Attack
๐ง๐ช
voormedia
2026-03-18 04:09:08
(3 months ago)
Accessed trap at '/wp-login.php'
Web App Attack
๐ฌ๐ง
consul.to
2026-03-18 03:39:08
(3 months ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
ipblock.com
2026-03-17 22:39:00
(3 months ago)
IPBlock protected site ID [3192-af][s=06].
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack
๐ฌ๐ง
Bytemark
2026-03-17 19:56:58
(3 months ago)
5.45.36.161 - - [17/Mar/2026:19:56:56 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google ...
show more
5.45.36.161 - - [17/Mar/2026:19:56:56 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
5.45.36.161 - - [17/Mar/2026:19:56:56 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
5.45.36.161 - - [17/Mar/2026:19:56:57 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
show less
Brute-Force
Web App Attack
๐บ๐ธ
mind5t0rm
2026-03-17 18:21:13
(3 months ago)
(WPLOGIN) WP Login Attack 5.45.36.161 (DE/Germany/-): 3 in the last 3600 secs; Ports: *; Direction: ...
show more
(WPLOGIN) WP Login Attack 5.45.36.161 (DE/Germany/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 5.45.36.161 - - [18/Mar/2026:01:21:05 +0700] "GET /wp-login.php HTTP/2.0" 200 2526 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
5.45.36.161 - - [18/Mar/2026:01:21:06 +0700] "POST /wp-login.php HTTP/2.0" 200 2631 "https://www.zerowaterthailand.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
5.45.36.161 - - [18/Mar/2026:01:21:07 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fzerowaterthailand.com%2Fwp-admin%2F&reauth=1 HTTP/2.0" 200 2517 "https://www.zerowaterthailand.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
show less
Port Scan
๐ฑ๐ป
garmtech.com
2026-03-17 17:22:15
(3 months ago)
Attempted access to sensitive endpoint (/wp-login.php) detected. Automated scan or unauthorized prob ...
show more
Attempted access to sensitive endpoint (/wp-login.php) detected. Automated scan or unauthorized probing.
show less
Web App Attack
๐ช๐ธ
el-brujo
2026-03-17 14:52:44
(3 months ago)
[Tue Mar 17 15:52:43.515434 2026] [proxy_fcgi:error] [pid 1325743:tid 1326254] [remote 5.45.36.161:0 ...
show more
[Tue Mar 17 15:52:43.515434 2026] [proxy_fcgi:error] [pid 1325743:tid 1326254] [remote 5.45.36.161:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com
[Tue Mar 17 15:52:43.821341 2026] [proxy_fcgi:error] [pid 1325743:tid 1326323] [remote 5.45.36.161:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com
...
show less
Hacking
Web App Attack
๐ซ๐ท
Baking333
2026-03-17 13:36:08
(3 months ago)
[redacted] 5.45.36.161 - - [17/Mar/2026:14:36:02 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/54522 ...
show more
[redacted] 5.45.36.161 - - [17/Mar/2026:14:36:02 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/54522 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" [redacted] 5.45.36.161 - - [17/Mar/2026:14:36:05 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/45040 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
MusicLibrary
2026-03-17 08:29:21
(3 months ago)
Attempted access to non existent wordpress urls
Bad Web Bot
๐ง๐ช
voormedia
2026-03-17 01:30:43
(3 months ago)
Accessed trap at '/wp-login.php'
Web App Attack
๐ฌ๐ง
Bytemark
2026-03-17 01:30:32
(3 months ago)
5.45.36.161 - - [17/Mar/2026:01:30:29 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google ...
show more
5.45.36.161 - - [17/Mar/2026:01:30:29 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
5.45.36.161 - - [17/Mar/2026:01:30:29 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
5.45.36.161 - - [17/Mar/2026:01:30:32 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
show less
Brute-Force
Web App Attack