Anonymous
2026-07-05 16:53:04
(2 days ago)
Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1
Hacking
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-30 21:59:28
(1 week ago)
Auto-ban: >3000 req/min op 2026-06-30
Web App Attack
SSH
Hacking
Anonymous
2026-06-29 12:10:03
(1 week ago)
| CMS brute-force from dangerous country Iran (6 attempts in 3 min)
Web App Attack
Hacking
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-06-26 21:25:32
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 151.242.242.45 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 151.242.242.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 17:25:29.612872 2026] [security2:error] [pid 22660:tid 22660] [client 151.242.242.45:36982] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||sharonmauldin.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sharonmauldin.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aj7uSTvKEwqMZ3qi6TgCNgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-06-19 21:59:32
(2 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-18.
show less
Web App Attack
SSH
Hacking
๐ฆ๐บ
screwlooseit.com.au
2026-06-18 14:38:31
(2 weeks ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
IR/Iran/-
Web App Attack
๐ฉ๐ช
LRob
2026-06-16 05:00:15
(3 weeks ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-13 01:05:29
(3 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐ซ๐ฎ
nNordic
2026-06-09 10:19:14
(4 weeks ago)
Connection attempt blocked by IDS/IPS from 151.242.242.45/32
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-30 02:58:16
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 151.242.242.45 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 151.242.242.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 22:58:14.156421 2026] [security2:error] [pid 4739:tid 4739] [client 151.242.242.45:57304] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||personalcareattendants.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "personalcareattendants.com"] [uri "/dump.sql"] [unique_id "ahpSRr0OgYvA_uVE7QsTbQAAAAM"], referer: personalcareattendants.com/dump.sql
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-29 21:20:38
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 151.242.242.45 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 151.242.242.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 17:20:32.684299 2026] [security2:error] [pid 6754:tid 6754] [client 151.242.242.45:60586] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||jharsch.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jharsch.com"] [uri "/dump.sql"] [unique_id "ahoDIFT1WCtZp413sSN24QAAAAk"], referer: jharsch.com/dump.sql
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2026-05-27 13:30:20
(1 month ago)
Plesk panel login attempt with forbidden username (root/admin), blocked by Fail2Ban in custom-plesk- ...
show more
Plesk panel login attempt with forbidden username (root/admin), blocked by Fail2Ban in custom-plesk-login jail
show less
Brute-Force
Web App Attack
๐ง๐ท
Halux
2026-05-13 00:36:04
(1 month ago)
151.242.242.45 Probing protected path or service
Web App Attack
Anonymous
2026-05-06 04:00:27
(2 months ago)
2026-05-05 19:00:09,975 fail2ban.actions [3625835]: NOTICE [tor] Ban 151.242.242.45
2026-05- ...
show more
2026-05-05 19:00:09,975 fail2ban.actions [3625835]: NOTICE [tor] Ban 151.242.242.45
2026-05-05 22:00:07,865 fail2ban.actions [3625835]: NOTICE [tor] Ban 151.242.242.45
2026-05-06 01:00:06,756 fail2ban.actions [3625835]: NOTICE [tor] Ban 151.242.242.45
2026-05-06 04:00:13,104 fail2ban.actions [3625835]: NOTICE [tor] Ban 151.242.242.45
2026-05-06 07:00:25,983 fail2ban.actions [3625835]: NOTICE [tor] Ban 151.242.242.45
show less
Brute-Force
Anonymous
2026-04-24 21:00:42
(2 months ago)
2026-04-24 12:00:08,327 fail2ban.actions [7718]: NOTICE [tor] Ban 151.242.242.45
2026-04-24 ...
show more
2026-04-24 12:00:08,327 fail2ban.actions [7718]: NOTICE [tor] Ban 151.242.242.45
2026-04-24 15:00:07,744 fail2ban.actions [7718]: NOTICE [tor] Ban 151.242.242.45
2026-04-24 18:00:07,681 fail2ban.actions [7718]: NOTICE [tor] Ban 151.242.242.45
2026-04-24 21:00:18,576 fail2ban.actions [7718]: NOTICE [tor] Ban 151.242.242.45
2026-04-25 00:00:36,784 fail2ban.actions [7718]: NOTICE [tor] Ban 151.242.242.45
show less
Brute-Force