๐ง๐ช
cmbplf
2026-07-08 11:14:40
(1 hour ago)
30.014 requests in 1 hour (3mos1w5d)
Brute-Force
Bad Web Bot
๐ฉ๐ช
HandyTreff.de
2026-07-08 10:34:49
(2 hours ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -107.042 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -107.042 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69
show less
Web App Attack
Bad Web Bot
๐ฉ๐ช
kommunos
2026-07-08 10:32:58
(2 hours ago)
/wp-includes/ID3/license.txt
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-08 10:32:54
(2 hours ago)
Scraping with a high error ratio and request rate
Bad Web Bot
๐ฆ๐บ
screwlooseit.com.au
2026-07-08 10:28:30
(2 hours ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
US/United States/161.217.148.34.bc.googleusercontent.com
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 10:28:26
(2 hours ago)
(mod_security) mod_security (id:225170) triggered by 34.148.217.161 (161.217.148.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 34.148.217.161 (161.217.148.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 06:28:20.100521 2026] [security2:error] [pid 21745:tid 21745] [client 34.148.217.161:54115] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||knoxbestos.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "knoxbestos.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak4mRM0hARjsFHV0gOV6xgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
NihiliousMonk
2026-07-08 10:28:19
(2 hours ago)
Fail2Ban report from jail npm-scanners
Bad Web Bot
Web App Attack
๐จ๐ญ
backslash
2026-07-08 10:27:00
(2 hours ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐บ๐ฆ
URAN Publishing Service
2026-07-08 10:25:38
(2 hours ago)
34.148.217.161 - - [08/Jul/2026:13:25:36 +0300] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 683 ...
show more
34.148.217.161 - - [08/Jul/2026:13:25:36 +0300] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 683 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.148.217.161 - - [08/Jul/2026:13:25:37 +0300] "GET /xmlrpc.php?rsd HTTP/1.1" 404 683 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
...
show less
Web App Attack
๐ต๐ฑ
Kitki30.com
2026-07-08 10:17:02
(2 hours ago)
HTTP Probing. Log: 34.148.217.161 - - [08/Jul/2026:10:17:02 +0000] "GET //xmlrpc.php?rsd HTTP/1.1" 3 ...
show more
HTTP Probing. Log: 34.148.217.161 - - [08/Jul/2026:10:17:02 +0000] "GET //xmlrpc.php?rsd HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
WinnieHoneypots
2026-07-08 10:15:20
(2 hours ago)
Probe hitting //wp-includes/ID3/license.txt detected. Whatcha lookin for in there?!
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-07-08 10:05:21
(2 hours ago)
Abuse Detected (7)
Brute-Force
Web App Attack
๐บ๐ธ
ne1for23
2026-07-08 09:58:44
(2 hours ago)
Probing for installed vulnerable software.
34.148.217.161 - - [08/Jul/2026:09:58:44 +0000] "GET //w ...
show more
Probing for installed vulnerable software.
34.148.217.161 - - [08/Jul/2026:09:58:44 +0000] "GET //wp-includes/ID3/license.txt HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
show less
Hacking
Anonymous
2026-07-08 09:54:31
(2 hours ago)
[redacted] 34.148.217.161 - - [08/Jul/2026:11:54:23 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" ...
show more
[redacted] 34.148.217.161 - - [08/Jul/2026:11:54:23 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
[redacted] 34.148.217.161 - - [08/Jul/2026:11:54:24 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
[redacted] 34.148.217.161 - - [08/Jul/2026:11:54:25 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
[redacted] 34.148.217.161 - - [08/Jul/2026:11:54:25 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
[redacted] 34.148.217.161 - - [08/Jul/2026:11:54:26 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mo
...
show less
Hacking
Web App Attack
๐ฎ๐ณ
dineshskt4all
2026-07-08 09:47:13
(3 hours ago)
[Wed Jul 08 09:47:09.029355 2026] [proxy_fcgi:error] [pid 3315983:tid 133423192585920] [client 34.14 ...
show more
[Wed Jul 08 09:47:09.029355 2026] [proxy_fcgi:error] [pid 3315983:tid 133423192585920] [client 34.148.217.161:0] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force