๐ซ๐ท
Catalin Negru
2026-07-11 07:37:03
(21 hours ago)
Recidive ban by fail2ban on server.blackbit.ro
Brute-Force
๐ง๐ช
cmbplf
2026-07-09 06:06:49
(2 days ago)
55.168 requests in 1 hour (2mos11h59m)
Brute-Force
Bad Web Bot
๐ณ๐ฟ
Antinson
2026-07-09 06:02:00
(2 days ago)
Scraping with a high error ratio and request rate
Bad Web Bot
๐ฉ๐ช
neckaralb-admin.de
2026-07-09 05:51:05
(2 days ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
Anonymous
2026-07-09 05:28:04
(2 days ago)
Bot / scanning and/or hacking attempts: POST //xmlrpc.php HTTP/1.1
Hacking
Web App Attack
๐ฌ๐ง
Apache
2026-07-09 05:24:19
(2 days ago)
(mod_security) mod_security (id:210410) triggered by 34.148.60.24 (US/United States/24.60.148.34.bc. ...
show more
(mod_security) mod_security (id:210410) triggered by 34.148.60.24 (US/United States/24.60.148.34.bc.googleusercontent.com): 5 in the last 300 secs (CF_ENABLE)
show less
Brute-Force
Web App Attack
๐จ๐ญ
backslash
2026-07-09 05:21:00
(2 days ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ซ๐ท
Catalin Negru
2026-07-09 05:20:58
(2 days ago)
Recidive ban by fail2ban on server.blackbit.ro
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-09 05:15:35
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 34.148.60.24 (24.60.148.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 34.148.60.24 (24.60.148.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 01:15:27.976005 2026] [security2:error] [pid 8209:tid 8285] [client 34.148.60.24:63725] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||lavotel.com.oplconnect.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lavotel.com.oplconnect.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak8ub5cKm98t-um5Z9CvVQAAAFE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
zynex
2026-07-09 05:13:45
(2 days ago)
URL Probing: /wordpress/wp-includes/wlwmanifest.xml
Web App Attack
๐ฉ๐ช
BlueWire Hosting
2026-07-09 05:13:12
(2 days ago)
Probing websites for vulnerabilities
Web App Attack
SQL Injection
๐ซ๐ท
pm33
2026-07-09 05:11:03
(2 days ago)
Excessive crawling HTTP 404
Web App Attack
๐ซ๐ท
largo-it.net
2026-07-09 05:09:11
(2 days ago)
Jul 9 07:09:08 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:56142 [09/Jul/2026:07:09:08.840] www_fro ...
show more
Jul 9 07:09:08 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:56142 [09/Jul/2026:07:09:08.840] www_frontend~ finance_cluster/finance1_test1_https 98/0/11/44/153 404 3151 - - ---- 60/8/0/0/0 0/0 "GET /fr//wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 9 07:09:09 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:56142 [09/Jul/2026:07:09:08.994] www_frontend~ finance_cluster/finance1_test1_https 99/0/10/45/154 404 3151 - - ---- 60/8/0/0/0 0/0 "GET /fr//xmlrpc.php?rsd HTTP/1.1"
Jul 9 07:09:10 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:56142 [09/Jul/2026:07:09:10.045] www_frontend~ finance_cluster/finance1_test1_https 480/0/11/65/556 404 3151 - - ---- 60/8/1/1/0 0/0 "GET /fr//blog/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 9 07:09:10 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:56142 [09/Jul/2026:07:09:10.601] www_frontend~ finance_cluster/finance1_test1_https 195/0/10/48/253 404 3151 - - ---- 60/8/1/1/0 0/0 "GET /fr//web/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 9 07:09:11 vps-9f3cdc33 haproxy[13412
...
show less
Hacking
Bad Web Bot
Web App Attack
๐ณ๐ด
jad-abuse
2026-07-09 04:51:24
(2 days ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: xmlrpc. O ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: xmlrpc. Observed by 1 sensor(s); 18 hits.
show less
Brute-Force
Web App Attack
๐ซ๐ท
largo-it.net
2026-07-09 04:50:23
(2 days ago)
Jul 9 06:50:21 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:64934 [09/Jul/2026:06:50:21.178] www_fro ...
show more
Jul 9 06:50:21 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:64934 [09/Jul/2026:06:50:21.178] www_frontend~ finance_cluster/finance1_test1_https 98/0/10/65/173 404 3151 - - ---- 65/8/1/1/0 0/0 "GET /fr//wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 9 06:50:21 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:64934 [09/Jul/2026:06:50:21.352] www_frontend~ finance_cluster/finance1_test1_https 98/0/10/61/169 404 3151 - - ---- 65/8/1/1/0 0/0 "GET /fr//xmlrpc.php?rsd HTTP/1.1"
Jul 9 06:50:22 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:64934 [09/Jul/2026:06:50:22.476] www_frontend~ finance_cluster/finance1_test1_https 100/0/11/48/159 404 3151 - - ---- 65/8/0/0/0 0/0 "GET /fr//blog/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 9 06:50:22 vps-9f3cdc33 haproxy[1341211]: 34.148.60.24:64934 [09/Jul/2026:06:50:22.636] www_frontend~ finance_cluster/finance1_test1_https 98/0/11/49/158 404 3151 - - ---- 65/8/0/0/0 0/0 "GET /fr//web/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 9 06:50:22 vps-9f3cdc33 haproxy[134121
...
show less
Hacking
Bad Web Bot
Web App Attack