๐ง๐ช
cmbplf
2026-07-15 11:04:36
(18 hours ago)
61.424 requests in 1 hour (3mos1w5d)
Brute-Force
Bad Web Bot
๐จ๐ฆ
polycoda
2026-07-15 10:34:52
(18 hours ago)
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based) - ๐ Directory Listings (Decay-Based) - โ Excess ...
show more
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based) - ๐ Directory Listings (Decay-Based) - โ Excessive 40X Errors (Decay-Based)
show less
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
oralunal
2026-07-15 10:25:23
(18 hours ago)
IP banned by Fail2Ban in jail oral-suss access.log mvfnds
...
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 10:16:54
(19 hours ago)
(mod_security) mod_security (id:225170) triggered by 136.66.46.29 (29.46.66.136.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 136.66.46.29 (29.46.66.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 06:16:48.265140 2026] [security2:error] [pid 4481:tid 4481] [client 136.66.46.29:60000] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.plazahacienda.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.plazahacienda.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aldeEOuaVDbV9pTydPN1YAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
dbmwebdesign
2026-07-15 10:10:20
(19 hours ago)
WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail
Brute-Force
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-15 10:09:38
(19 hours ago)
Try to access /xmlrpc.php?rsd
Web App Attack
Anonymous
2026-07-15 10:09:36
(19 hours ago)
[redacted] 136.66.46.29 - - [15/Jul/2026:12:09:22 +0200] "POST //xmlrpc.php HTTP/1.1" 200 446 "-" "M ...
show more
[redacted] 136.66.46.29 - - [15/Jul/2026:12:09:22 +0200] "POST //xmlrpc.php HTTP/1.1" 200 446 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
[redacted] 136.66.46.29 - - [15/Jul/2026:12:09:23 +0200] "POST //xmlrpc.php HTTP/1.1" 200 446 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
[redacted] 136.66.46.29 - - [15/Jul/2026:12:09:25 +0200] "POST //xmlrpc.php HTTP/1.1" 200 446 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
[redacted] 136.66.46.29 - - [15/Jul/2026:12:09:26 +0200] "POST //xmlrpc.php HTTP/1.1" 200 446 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
[redacted] 136.66.46.29 - - [15/Jul/2026:12:09:28 +0200] "POST //xmlrpc.php HTTP/1.1" 200 446 "-" "Mozilla
...
show less
Hacking
Web App Attack
๐บ๐ธ
mnsf
2026-07-15 10:06:40
(19 hours ago)
Abuse Detected (11)
Brute-Force
Web App Attack
๐ท๐บ
DZBOT
2026-07-15 10:03:20
(19 hours ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 09:58:34
(19 hours ago)
(mod_security) mod_security (id:225170) triggered by 136.66.46.29 (29.46.66.136.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 136.66.46.29 (29.46.66.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 05:58:28.647257 2026] [security2:error] [pid 13338:tid 13429] [client 136.66.46.29:57475] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||piazzala.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "piazzala.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aldZxHCRBZDfPzh0mIJsfgAAAkE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Oakley
2026-07-15 09:56:29
(19 hours ago)
(mod_security) mod_security (id:900191) triggered by 136.66.46.29 (US/United States/29.46.66.136.bc. ...
show more
(mod_security) mod_security (id:900191) triggered by 136.66.46.29 (US/United States/29.46.66.136.bc.googleusercontent.com): 5 in the last 900 secs
show less
Web App Attack
Hacking
๐ฉ๐ช
LRob
2026-07-15 09:55:50
(19 hours ago)
CrowdSec: crowdsecurity/http-probing | req: //wp-includes/ID3/license.txt | 10 distinct paths | UA: ...
show more
CrowdSec: crowdsecurity/http-probing | req: //wp-includes/ID3/license.txt | 10 distinct paths | UA: -
show less
Port Scan
Web App Attack
๐ช๐ธ
masterguru
2026-07-15 09:54:34
(19 hours ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (5000900-122)
Web App Attack
๐ณ๐ฑ
Savvii
2026-07-15 09:53:22
(19 hours ago)
10 attempts against mh-misc-ban on frost
Web App Attack
๐บ๐ธ
zwebvigil
2026-07-15 09:46:00
(19 hours ago)
136.66.46.29 [15/Jul/2026:02:45:59 -0700] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 22 "-" p ...
show more
136.66.46.29 [15/Jul/2026:02:45:59 -0700] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 22 "-" port=60636 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "-" "-" "<host>" 15838
136.66.46.29 [15/Jul/2026:02:45:59 -0700] "GET //feed/ HTTP/1.1" 404 22 "-" port=60636 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "-" "-" "<host>" 4594
136.66.46.29 [15/Jul/2026:02:45:59 -0700] "GET //xmlrpc.php?rsd HTTP/1.1" 404 22 "-" port=60636 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "-" "-" "<host>" 4637
136.66.46.29 [15/Jul/2026:02:46:00 -0700] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 22 "-" port=60636 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "-" "-" "<h
show less
Web App Attack