๐ซ๐ท
SpaceHost-Server
2026-07-04 22:32:16
(2 days ago)
Brute-Force
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-03 22:31:08
(3 days ago)
Brute-Force
Web App Attack
๐จ๐ฆ
polycoda
2026-07-03 11:47:47
(3 days ago)
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based) - ๐ Directory Listings (Decay-Based) - โ Excess ...
show more
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based) - ๐ Directory Listings (Decay-Based) - โ Excessive 40X Errors (Decay-Based)
show less
Hacking
Bad Web Bot
Web App Attack
Anonymous
2026-07-03 11:34:23
(3 days ago)
34.150.172.38 - - [03/Jul/2026:13:34:23 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 445 " ...
show more
34.150.172.38 - - [03/Jul/2026:13:34:23 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 445 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.150.172.38 - - [03/Jul/2026:13:34:23 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 296 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.150.172.38 - - [03/Jul/2026:13:34:23 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 445 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.150.172.38 - - [03/Jul/2026:13:34:23 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 296 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.150.172.38 - - [03/Jul/2026:13:34:23 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 445 "-" "Mo
...
show less
Brute-Force
Web App Attack
๐ซ๐ท
largo-it.net
2026-07-03 11:34:13
(3 days ago)
Jul 3 13:34:11 vps-9f3cdc33 haproxy[1148102]: 34.150.172.38:57987 [03/Jul/2026:13:34:11.299] www_fr ...
show more
Jul 3 13:34:11 vps-9f3cdc33 haproxy[1148102]: 34.150.172.38:57987 [03/Jul/2026:13:34:11.299] www_frontend~ finance_cluster/finance1_test1_https 0/0/10/45/55 404 3252 - - ---- 67/18/0/0/0 0/0 "GET //wp-includes/ID3/license.txt HTTP/1.1"
Jul 3 13:34:11 vps-9f3cdc33 haproxy[1148102]: 34.150.172.38:57987 [03/Jul/2026:13:34:11.355] www_frontend~ finance_cluster/finance1_test1_https 88/0/11/49/148 404 3151 - - ---- 67/18/0/0/0 0/0 "GET //feed/ HTTP/1.1"
Jul 3 13:34:11 vps-9f3cdc33 haproxy[1148102]: 34.150.172.38:57987 [03/Jul/2026:13:34:11.504] www_frontend~ finance_cluster/finance1_test1_https 140/0/11/40/191 404 3151 - - ---- 67/18/0/0/0 0/0 "GET //xmlrpc.php?rsd HTTP/1.1"
Jul 3 13:34:11 vps-9f3cdc33 haproxy[1148102]: 34.150.172.38:57987 [03/Jul/2026:13:34:11.695] www_frontend~ finance_cluster/finance1_test1_https 128/0/11/45/184 404 3151 - - ---- 67/18/0/0/0 0/0 "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1"
Jul 3 13:34:12 vps-9f3cdc33 haproxy[1148102]: 34.150.172.38:57987 [03/Jul
...
show less
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
macrob
2026-07-03 11:33:46
(3 days ago)
2026/07/03 11:33:45 [error] 1188670#1188670: *347901483 access forbidden by rule, client: 34.150.172 ...
show more
2026/07/03 11:33:45 [error] 1188670#1188670: *347901483 access forbidden by rule, client: 34.150.172.38, server: finami.es, request: "GET //wp-includes/ID3/license.txt HTTP/2.0", host: "finami.es"
2026/07/03 11:33:45 [error] 1188670#1188670: *347901484 access forbidden by rule, client: 34.150.172.38, server: finami.mx, request: "GET //wp-includes/ID3/license.txt HTTP/2.0", host: "finami.mx"
2026/07/03 11:33:45 [error] 1188670#1188670: *347901485 access forbidden by rule, client: 34.150.172.38, server: finami.ph, request: "GET //wp-includes/ID3/license.txt HTTP/2.0", host: "finami.ph"
...
show less
Web App Attack
๐ณ๐ด
Bots.go.to.hell
2026-07-03 11:31:49
(3 days ago)
This IP was detected by CrowdSec triggering custom/ip-honeypot
Web App Attack
Bad Web Bot
๐ฉ๐ช
yvoictra
2026-07-03 11:28:29
(3 days ago)
Bloqueado automรกticamente por CrowdSec. Escenario: crowdsecurity/http-probing
Web App Attack
๐ณ๐ฑ
Webhoster
2026-07-03 11:28:16
(3 days ago)
{"ClientAddr":"172.71.190.53:10319","ClientHost":"34.150.172.38","ClientPort":"10319","ClientUsernam ...
show more
{"ClientAddr":"172.71.190.53:10319","ClientHost":"34.150.172.38","ClientPort":"10319","ClientUsername":"-","DownstreamContentSize":0,"DownstreamStatus":403,"Duration":17998978,"OriginContentSize":0,"OriginDuration":0,"OriginStatus":0,"Overhead":17998978,"RequestAddr":"files.timvdberg.dev","RequestContentSize":0,"RequestCount":83497,"RequestHost":"files.timvdberg.dev","RequestMethod":"GET","RequestPath":"/wp-includes/ID3/license.txt","RequestPort":"-","RequestProtocol":"HTTP/2.0","RequestScheme":"https","RetryAttempts":0,"RouterName":"files@file","StartLocal":"2026-07-03T11:28:15.376956331Z","StartUTC":"2026-07-03T11:28:15.376956331Z","TLSCipher":"TLS_AES_128_GCM_SHA256","TLSVersion":"1.3","entryPointName":"https","level":"info","msg":"","request_Cf-Connecting-Ip":"34.150.172.38","request_X-Forwarded-For":"34.150.172.38","request_X-Real-Ip":"172.71.190.53","time":"2026-07-03T11:28:15Z"}
{"ClientAddr":"172.71.190.53:10319","ClientHost":"34.150.172.38","ClientPort":"10319","ClientUsername
...
show less
Port Scan
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
Jarda_H
2026-07-03 11:28:07
(3 days ago)
wordpress-scan Attack Detected
Web App Attack
๐ต๐ฑ
itsvic.dev
2026-07-03 11:27:23
(3 days ago)
34.150.172.38 - - [03/Jul/2026:11:27:22 +0000] "files.itsvic.dev" "GET //wp-includes/ID3/license.txt ...
show more
34.150.172.38 - - [03/Jul/2026:11:27:22 +0000] "files.itsvic.dev" "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.150.172.38 - - [03/Jul/2026:11:27:22 +0000] "files.itsvic.dev" "GET //xmlrpc.php?rsd HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.150.172.38 - - [03/Jul/2026:11:27:23 +0000] "files.itsvic.dev" "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
...
show less
Brute-Force
Web App Attack
๐ง๐ช
cmbplf
2026-07-03 11:07:59
(3 days ago)
10.356 requests in 1 hour (1mo4w23h)
Brute-Force
Bad Web Bot
Anonymous
2026-07-03 11:07:03
(3 days ago)
Automated web scanner. Requested suspicious paths: //wp-includes/ID3/license.txt | //xmlrpc.php | // ...
show more
Automated web scanner. Requested suspicious paths: //wp-includes/ID3/license.txt | //xmlrpc.php | //web/wp-includes/wlwmanifest.xml | //blog/wp-includes/wlwmanifest.xml | //wp/wp-includes/wlwmanifest.xml | //2021/wp-includes/wlwmanifest.xml | //2020/wp-includes/wlwmanifest.xml | //2019/wp-includes/wlwmanifest.xml | //wordpress/wp-includes/wlwmanifest.xml | //shop/wp-includes/wlwmanifest.xml. UTC: 2026-07-03 10:56:58.
show less
Web App Attack
๐ณ๐ฑ
BlueWire Hosting
2026-07-03 11:03:11
(3 days ago)
Probing websites for vulnerabilities
Web App Attack
๐จ๐ญ
backslash
2026-07-03 10:57:02
(3 days ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot