๐ง๐ช
cmbplf
2026-07-08 11:30:44
(2 days ago)
41.772 requests with url.path //xmlrpc.php
41.706 requests with url.path */xmlrpc.php
3.424 reque ...
show more
41.772 requests with url.path //xmlrpc.php
41.706 requests with url.path */xmlrpc.php
3.424 requests with url.path */wp-includes/wlwmanifest.xml
show less
Brute-Force
Bad Web Bot
๐บ๐ธ
mnsf
2026-07-08 11:05:12
(2 days ago)
Too many Status 40X (14)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 10:21:39
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 34.181.183.133 (133.183.181.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 34.181.183.133 (133.183.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 06:21:35.912275 2026] [security2:error] [pid 29764:tid 29764] [client 34.181.183.133:62633] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.goodfrequencies.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.goodfrequencies.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak4kr5KK858IBpPBCuuvxgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
brightenfield
2026-07-08 10:06:59
(3 days ago)
Web App Attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 10:00:56
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 34.181.183.133 (133.183.181.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 34.181.183.133 (133.183.181.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 06:00:50.772039 2026] [security2:error] [pid 25953:tid 25953] [client 34.181.183.133:55005] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||globalweb123.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "globalweb123.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak4f0r4mUgy5fPtC3OkXpgAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-08 09:52:30
(3 days ago)
Scraping with a high error ratio and request rate
Bad Web Bot
Anonymous
2026-07-08 09:45:06
(3 days ago)
Bot / scanning and/or hacking attempts: POST //xmlrpc.php HTTP/1.1, GET //wp-json/wp/v2/users/ HTTP/ ...
show more
Bot / scanning and/or hacking attempts: POST //xmlrpc.php HTTP/1.1, GET //wp-json/wp/v2/users/ HTTP/1.1
show less
Hacking
Web App Attack
๐บ๐ธ
Lee Daniel
2026-07-08 09:40:53
(3 days ago)
34.181.183.133 - - [08/Jul/2026:05:40:52 -0400] "GET /wp-includes/id3/license.txt/web/wp-includes/wl ...
show more
34.181.183.133 - - [08/Jul/2026:05:40:52 -0400] "GET /wp-includes/id3/license.txt/web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 27729 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.181.183.133 - - [08/Jul/2026:05:40:52 -0400] "GET /wp-includes/id3/license.txt/wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 27741 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.181.183.133 - - [08/Jul/2026:05:40:52 -0400] "GET /wp-includes/id3/license.txt/wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 27728 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.181.183.133 - - [08/Jul/2026:05:40:52 -0400] "GET /wp-includes/id3/license.txt/2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 27732 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-08 09:36:56
(3 days ago)
34.181.183.133 - - [08/Jul/2026:11:36:52 +0200] "POST //xmlrpc.php HTTP/1.1" 200 428 "-" "Mozilla/5. ...
show more
34.181.183.133 - - [08/Jul/2026:11:36:52 +0200] "POST //xmlrpc.php HTTP/1.1" 200 428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.181.183.133 - - [08/Jul/2026:11:36:54 +0200] "POST //xmlrpc.php HTTP/1.1" 200 428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.181.183.133 - - [08/Jul/2026:11:36:55 +0200] "POST //xmlrpc.php HTTP/1.1" 200 428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
show less
Hacking
Web App Attack
๐ณ๐ฑ
Savvii
2026-07-08 09:30:40
(3 days ago)
10 attempts against mh-misc-ban on ethyl
Web App Attack
๐ง๐พ
lns.bz
2026-07-08 09:29:21
(3 days ago)
Too many 404 requests [BY]
Web App Attack
๐ฎ๐น
VHosting
2026-07-08 09:25:05
(3 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
Anonymous
2026-07-08 09:21:58
(3 days ago)
Automatically blocked after 5 security events. Observed repeated web application attack probes. Sour ...
show more
Automatically blocked after 5 security events. Observed repeated web application attack probes. Source: Cloudflare security controls.
show less
Hacking
Web App Attack
๐ฉ๐ช
ramazan
2026-07-08 09:20:30
(3 days ago)
Fail2Ban: nginx-4xx | Failures: 10 | Log: //2019/wp-includes/wlwmanifest.xml //2020/wp-includes/wlwm ...
show more
Fail2Ban: nginx-4xx | Failures: 10 | Log: //2019/wp-includes/wlwmanifest.xml //2020/wp-includes/wlwmanifest.xml //2021/wp-includes/wlwmanifest.xml //blog/wp-includes/wlwmanifest.xml //feed/
show less
Web App Attack
Hacking
๐ซ๐ท
dynamix
2026-07-08 09:20:10
(3 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack