๐ซ๐ท
largo-it.net
2026-07-01 17:41:13
(16 minutes ago)
Jul 1 19:41:11 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:57474 [01/Jul/2026:19:41:11.174] www_f ...
show more
Jul 1 19:41:11 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:57474 [01/Jul/2026:19:41:11.174] www_frontend~ finance_cluster/finance1_test1_https 33/0/10/52/95 404 3151 - - ---- 59/7/0/0/0 0/0 "GET /fr//wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 1 19:41:11 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:57474 [01/Jul/2026:19:41:11.269] www_frontend~ finance_cluster/finance1_test1_https 32/0/16/45/93 404 3151 - - ---- 59/7/0/0/0 0/0 "GET /fr//xmlrpc.php?rsd HTTP/1.1"
Jul 1 19:41:12 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:57474 [01/Jul/2026:19:41:12.141] www_frontend~ finance_cluster/finance1_test1_https 29/0/10/46/85 404 3151 - - ---- 59/7/0/0/0 0/0 "GET /fr//blog/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 1 19:41:12 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:57474 [01/Jul/2026:19:41:12.227] www_frontend~ finance_cluster/finance1_test1_https 37/0/11/43/91 404 3151 - - ---- 59/7/0/0/0 0/0 "GET /fr//web/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 1 19:41:12 vps-9f3cdc33 haproxy[108
...
show less
Hacking
Bad Web Bot
Web App Attack
๐ฌ๐ง
Oakley
2026-07-01 16:32:36
(1 hour ago)
(mod_security) mod_security (id:900191) triggered by 203.159.90.218 (-): 5 in the last 900 secs
Web App Attack
Hacking
Anonymous
2026-07-01 15:46:40
(2 hours ago)
Failed Wordpress Logins
Web App Attack
๐ซ๐ท
largo-it.net
2026-07-01 15:20:06
(2 hours ago)
Jul 1 17:20:05 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:62328 [01/Jul/2026:17:20:04.939] www_f ...
show more
Jul 1 17:20:05 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:62328 [01/Jul/2026:17:20:04.939] www_frontend~ finance_cluster/finance1_test1_https 21/0/11/73/105 404 3151 - - ---- 85/13/0/0/0 0/0 "GET /fr//wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 1 17:20:05 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:62328 [01/Jul/2026:17:20:05.045] www_frontend~ finance_cluster/finance1_test1_https 25/0/10/164/199 404 3151 - - ---- 85/13/0/0/0 0/0 "GET /fr//xmlrpc.php?rsd HTTP/1.1"
Jul 1 17:20:06 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:62328 [01/Jul/2026:17:20:06.012] www_frontend~ finance_cluster/finance1_test1_https 66/0/10/53/129 404 3151 - - ---- 82/12/0/0/0 0/0 "GET /fr//blog/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 1 17:20:06 vps-9f3cdc33 haproxy[1085475]: 203.159.90.218:62328 [01/Jul/2026:17:20:06.142] www_frontend~ finance_cluster/finance1_test1_https 24/0/11/66/101 404 3151 - - ---- 82/12/0/0/0 0/0 "GET /fr//web/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 1 17:20:06 vps-9f3cdc33 ha
...
show less
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
lostswordfish.com
2026-07-01 15:00:06
(2 hours ago)
Wordfence waf block on podcasts
Web App Attack
๐ฎ๐ฉ
origrata
2026-07-01 14:37:43
(3 hours ago)
[OGWAF] bad_reputation attack blocked | severity: high | GET /website/wp-includes/wlwmanifest.xml | ...
show more
[OGWAF] bad_reputation attack blocked | severity: high | GET /website/wp-includes/wlwmanifest.xml | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.10
show less
Web App Attack
๐ฌ๐ง
Yosi
2026-07-01 13:55:35
(4 hours ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
๐บ๐ธ
agenciahypelab.com.br
2026-07-01 12:30:47
(5 hours ago)
WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER
Brute-Force
SSH
๐ง๐ช
Lunix
2026-07-01 12:26:31
(5 hours ago)
Brute-Force
Web App Attack
๐ฎ๐ฑ
Dolphi
2026-07-01 07:52:15
(10 hours ago)
POST //xmlrpc.php
Brute-Force
Web App Attack
๐ฎ๐ฉ
soc-yk
2026-07-01 04:06:13
(13 hours ago)
Type: suspicious_network_activity
Risk: 68
Events: 187
Evidence:
- Persistent suspicious network ac ...
show more
Type: suspicious_network_activity
Risk: 68
Events: 187
Evidence:
- Persistent suspicious network activity detected
- Repeated hostile operational behavior observed
- Multi-event operational persistence identified
- Threat escalation behavior observed
show less
Port Scan
Hacking
๐ซ๐ท
โจ
2026-07-01 01:43:17
(16 hours ago)
Domain : obs.bitsa.uk
Rule : env
2026-07-01 01:42:03 ***hidden-privacy*** GET /wordpress/wp-includes ...
show more
Domain : obs.bitsa.uk
Rule : env
2026-07-01 01:42:03 ***hidden-privacy*** GET /wordpress/wp-includes/wlwmanifest.xml - 80 - 203.159.90.218 HTTP/1.1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 - obs.bitsa.uk 404 0 2 1524 353 24 - -
show less
Hacking
SQL Injection
๐ฉ๐ช
abdubhai
2026-07-01 01:40:08
(16 hours ago)
203.159.90.218 - - [01/Jul/2026:
...
Brute-Force
๐ซ๐ท
largo-it.net
2026-07-01 01:20:56
(16 hours ago)
Jul 1 03:20:54 vps-9f3cdc33 haproxy[1064352]: 203.159.90.218:65353 [01/Jul/2026:03:20:54.772] www_f ...
show more
Jul 1 03:20:54 vps-9f3cdc33 haproxy[1064352]: 203.159.90.218:65353 [01/Jul/2026:03:20:54.772] www_frontend~ finance_cluster/finance1_test1_https 17/0/10/52/79 404 3151 - - ---- 46/3/0/0/0 0/0 "GET /fr//wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 1 03:20:54 vps-9f3cdc33 haproxy[1064352]: 203.159.90.218:65353 [01/Jul/2026:03:20:54.852] www_frontend~ finance_cluster/finance1_test1_https 17/0/11/48/76 404 3151 - - ---- 46/3/0/0/0 0/0 "GET /fr//xmlrpc.php?rsd HTTP/1.1"
Jul 1 03:20:55 vps-9f3cdc33 haproxy[1064352]: 203.159.90.218:65353 [01/Jul/2026:03:20:55.605] www_frontend~ finance_cluster/finance1_test1_https 35/0/10/48/93 404 3151 - - ---- 46/3/0/0/0 0/0 "GET /fr//blog/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 1 03:20:55 vps-9f3cdc33 haproxy[1064352]: 203.159.90.218:65353 [01/Jul/2026:03:20:55.699] www_frontend~ finance_cluster/finance1_test1_https 17/0/10/41/68 404 3151 - - ---- 46/3/0/0/0 0/0 "GET /fr//web/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 1 03:20:55 vps-9f3cdc33 haproxy[106
...
show less
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
CounterScrape
2026-06-30 20:01:22
(21 hours ago)
CounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked hon ...
show more
CounterScrape Deception: Bot identified as HONEYTOKEN_HIT (Unauthorized access attempt to leaked honeytoken infrastructure subdomain). Trapped in honeypot. Concurrency hits: 50. Bandwidth drained: 193.94 MB.
show less
Bad Web Bot
Port Scan