๐ง๐ช
cmbplf
2026-07-03 11:36:46
(18 hours ago)
2.881 requests with url.path */wp-includes/wlwmanifest.xml
Brute-Force
Bad Web Bot
๐บ๐ธ
integrantservices.com
2026-07-03 11:09:38
(19 hours ago)
(PERMBLOCK) 34.148.191.75 (US/United States/75.191.148.34.bc.googleusercontent.com) has had more tha ...
show more
(PERMBLOCK) 34.148.191.75 (US/United States/75.191.148.34.bc.googleusercontent.com) has had more than 4 temp blocks
show less
Hacking
๐ฉ๐ช
Ano_Nym
2026-07-03 10:59:21
(19 hours ago)
CrowdSec IDS alert on VPS 217.154.115.19 (DE). Scenario: crowdsecurity/http-probing
Web App Attack
๐ซ๐ท
Donovan
2026-07-03 10:59:18
(19 hours ago)
Web scan/exploit blocked by fail2ban on commitshift.fr - jail: npm-scan - 1 attempt(s)
Web App Attack
๐ช๐ธ
masterguru
2026-07-03 10:46:56
(19 hours ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (5000900-122)
Web App Attack
๐บ๐ธ
Lee Daniel
2026-07-03 10:43:11
(19 hours ago)
34.148.191.75 - - [03/Jul/2026:06:43:09 -0400] "GET /wp-includes/id3/license.txt/web/wp-includes/wlw ...
show more
34.148.191.75 - - [03/Jul/2026:06:43:09 -0400] "GET /wp-includes/id3/license.txt/web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 57083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.148.191.75 - - [03/Jul/2026:06:43:09 -0400] "GET /wp-includes/id3/license.txt/wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 57124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.148.191.75 - - [03/Jul/2026:06:43:09 -0400] "GET /wp-includes/id3/license.txt/wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 57076 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.148.191.75 - - [03/Jul/2026:06:43:09 -0400] "GET /wp-includes/id3/license.txt/2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 57090 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
patrisei
2026-07-03 10:42:20
(19 hours ago)
You are now banned for 10 years by Schiffdorf-West Patrol. Trigger: crowdsecurity/http-probing
Port Scan
Web App Attack
๐บ๐ฆ
Olexiy Backend
2026-07-03 10:37:57
(19 hours ago)
34.148.191.75
...
Bad Web Bot
Web App Attack
Anonymous
2026-07-03 10:35:58
(19 hours ago)
34.148.191.75 - - [03/Jul/2026:12:35:56 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 567 " ...
show more
34.148.191.75 - - [03/Jul/2026:12:35:56 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.148.191.75 - - [03/Jul/2026:12:35:57 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.148.191.75 - - [03/Jul/2026:12:35:57 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.148.191.75 - - [03/Jul/2026:12:35:57 +0200] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.148.191.75 - - [03/Jul/2026:12:35:57 +0200] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567
...
show less
Brute-Force
Web App Attack
๐จ๐ญ
Origon
2026-07-03 10:35:06
(19 hours ago)
http-probing - IP: 34.148.191.75 - time="2026-07-03T12:35:05+02:00" level=info msg="(555f66b4f6a745 ...
show more
http-probing - IP: 34.148.191.75 - time="2026-07-03T12:35:05+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-probing by ip 34.148.191.75 (US/396982) : 4h ban on Ip 34.148.191.75" module=db
show less
Web App Attack
๐ท๐บ
DZBOT
2026-07-03 10:25:20
(20 hours ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
WizardsToolkit
2026-07-03 10:21:39
(20 hours ago)
attempted to access //blog/wp-includes/wlwmanifest.xml
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 10:18:56
(20 hours ago)
(mod_security) mod_security (id:225170) triggered by 34.148.191.75 (75.191.148.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 34.148.191.75 (75.191.148.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 06:18:48.921533 2026] [security2:error] [pid 20351:tid 20351] [client 34.148.191.75:55436] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||aimer.es|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aimer.es"] [uri "/wordpress/wp-json/wp/v2/users/"] [unique_id "akeMiK2A1_Qp27KXizjYTAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-03 10:15:03
(20 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-03 10:08:10
(20 hours ago)
(wordpress) Failed wordpress login from 34.148.191.75 (US/United States/75.191.148.34.bc.googleuserc ...
show more
(wordpress) Failed wordpress login from 34.148.191.75 (US/United States/75.191.148.34.bc.googleusercontent.com)
show less
Brute-Force