๐ฉ๐ช
YF
2026-07-07 15:10:18
(1 week ago)
WordPress author enumeration
Web App Attack
๐บ๐ธ
HamSammich
2026-07-07 14:54:02
(1 week ago)
Automated sensor: 3 HTTP connection/probe attempts on port(s) 80 over the last 24h (latest 2026-07-0 ...
show more
Automated sensor: 3 HTTP connection/probe attempts on port(s) 80 over the last 24h (latest 2026-07-07T14:54Z).
show less
Brute-Force
Web App Attack
๐ฉ๐ช
HandyTreff.de
2026-07-07 14:41:21
(1 week ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -85.042 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -85.042 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.10
show less
Web App Attack
Bad Web Bot
๐ธ๐ฌ
anotherwatcher
2026-07-07 14:35:53
(1 week ago)
bad bot
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-07 14:32:47
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 34.105.110.226 (226.110.105.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 34.105.110.226 (226.110.105.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 10:32:38.926921 2026] [security2:error] [pid 29546:tid 29546] [client 34.105.110.226:56764] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.bernsteinip.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bernsteinip.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak0OBlZkLutyXsebVTO1ogAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
pipeline.es
2026-07-07 14:15:45
(1 week ago)
Web scanning / probing for vulnerable paths | URL: //wp2/wp-includes/wlwmanifest.xml | Evidence: tra ...
show more
Web scanning / probing for vulnerable paths | URL: //wp2/wp-includes/wlwmanifest.xml | Evidence: travelplanet.pt 34.105.110.226 - - [07/Jul/2026:16:12:29 +0200] \"GET //wp2/wp-includes/wlwmanifest.xml HTTP/1.1\" 404 20510 \"-\" \"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36\" GEOIP_COUNTRY_CODE=US | ASN: GOOGLE-CLOUD-PLATFORM | Country: US
show less
Port Scan
Web App Attack
๐ฉ๐ช
TrackerSB
2026-07-07 14:08:38
(1 week ago)
34.105.110.226 - "-" [07/Jul/2026:16:08:34 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 200 2 ...
show more
34.105.110.226 - "-" [07/Jul/2026:16:08:34 +0200] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 200 2442 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "34.105.110.226"
34.105.110.226 - "-" [07/Jul/2026:16:08:37 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 200 2442 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "34.105.110.226"
...
show less
Web App Attack
๐ณ๐ฑ
maxxsense
2026-07-07 14:07:13
(1 week ago)
(wordpress) Failed wordpress login from 34.105.110.226 (US/United States/226.110.105.34.bc.googleuse ...
show more
(wordpress) Failed wordpress login from 34.105.110.226 (US/United States/226.110.105.34.bc.googleusercontent.com)
show less
Brute-Force
๐จ๐ญ
zynex
2026-07-07 13:58:11
(1 week ago)
URL Probing: /2019/wp-includes/wlwmanifest.xml
Web App Attack
๐ฎ๐น
VHosting
2026-07-07 13:50:05
(1 week ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ฏ๐ต
Valhalla
2026-07-07 13:45:33
(1 week ago)
/xmlrpc.php?rsd
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 13:45:25
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 34.105.110.226 (226.110.105.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 34.105.110.226 (226.110.105.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 09:45:20.014335 2026] [security2:error] [pid 2769:tid 2769] [client 34.105.110.226:57065] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.cartiologyfilms.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.cartiologyfilms.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak0C8MkCRoZZSHz2M_E4SgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐พ
lns.bz
2026-07-07 13:43:55
(1 week ago)
Too many 404 requests [BY]
Web App Attack