๐บ๐ธ
theanalogmaker
2026-07-14 00:01:00
(14 hours ago)
CrowdSec: AbuseIPDB 85% (NL, 15 reports) (720h ban)
Brute-Force
Web App Attack
๐ง๐ช
cmbplf
2026-07-12 13:07:48
(2 days ago)
247.176 requests in 1 hour (2mos3w1d)
Brute-Force
Bad Web Bot
๐บ๐ธ
factor1
2026-07-12 12:40:22
(2 days ago)
Fail2ban at saturn Reports Abuse.
Bad Web Bot
๐ฉ๐ช
0x44
2026-07-12 12:37:42
(2 days ago)
Abusive host detected - Web probing for vulnerabilities
Web App Attack
Hacking
๐ฉ๐ช
abdubhai
2026-07-12 12:36:12
(2 days ago)
34.7.152.191 - - [12/Jul/2026:17
...
Brute-Force
Anonymous
2026-07-12 12:28:09
(2 days ago)
34.7.152.191 - [12/Jul/2026:05:28:08 -0700] audiobookshelf.koselig.dynu.net "GET //wp-includes/ID3/l ...
show more
34.7.152.191 - [12/Jul/2026:05:28:08 -0700] audiobookshelf.koselig.dynu.net "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 4384
34.7.152.191 - [12/Jul/2026:05:28:08 -0700] audiobookshelf.koselig.dynu.net "GET //feed/ HTTP/1.1" 404 542
34.7.152.191 - [12/Jul/2026:05:28:08 -0700] audiobookshelf.koselig.dynu.net "GET //xmlrpc.php?rsd HTTP/1.1" 404 547
34.7.152.191 - [12/Jul/2026:05:28:08 -0700] audiobookshelf.koselig.dynu.net "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 569
34.7.152.191 - [12/Jul/2026:05:28:09 -0700] audiobookshelf.koselig.dynu.net "GET //web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 568
...
show less
Web App Attack
Anonymous
2026-07-12 12:27:48
(2 days ago)
34.7.152.191 - - [12/Jul/2026:14:27:45 +0200] "GET //feed/ HTTP/1.1" 404 578
34.7.152.191 - - [12/Ju ...
show more
34.7.152.191 - - [12/Jul/2026:14:27:45 +0200] "GET //feed/ HTTP/1.1" 404 578
34.7.152.191 - - [12/Jul/2026:14:27:45 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 5615
34.7.152.191 - - [12/Jul/2026:14:27:45 +0200] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 578
34.7.152.191 - - [12/Jul/2026:14:27:46 +0200] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 578
34.7.152.191 - - [12/Jul/2026:14:27:46 +0200] "GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 578
34.7.152.191 - - [12/Jul/2026:14:27:46 +0200] "GET //2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 578
34.7.152.191 - - [12/Jul/2026:14:27:46 +0200] "GET //2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 578
34.7.152.191 - - [12/Jul/2026:14:27:46 +0200] "GET //2021/wp-includes/wlwmanifest.xml HTTP/1.1" 404 578
34.7.152.191 - - [12/Jul/2026:14:27:46 +0200] "GET //shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 578
34.7.152.191 - - [12/Jul/2026:14:27:46 +0200] "GET //wp1/wp-includes/wlwmanifest.xml HTT
...
show less
Web Spam
Web App Attack
Anonymous
2026-07-12 12:24:42
(2 days ago)
Automatically blocked after 7 security events. Observed repeated web application attack probes. Sour ...
show more
Automatically blocked after 7 security events. Observed repeated web application attack probes. Source: Cloudflare security controls.
show less
Hacking
Web App Attack
๐บ๐ธ
Charlesiv
2026-07-12 12:22:31
(2 days ago)
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: BLOCK
ASN: 396982 (Google LLC)
Prot ...
show more
Triggered Cloudflare WAF (firewallCustom) from NL.
Action taken: BLOCK
ASN: 396982 (Google LLC)
Protocol: HTTP/1.1 (GET method)
Endpoint: /2020/wp-includes/wlwmanifest.xml
Timestamp: 2026-07-12T12:21:10Z
Ray ID: a1a001951e5306d2
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36
show less
Bad Web Bot
๐ฎ๐ฑ
Dolphi
2026-07-12 12:20:03
(2 days ago)
POST //xmlrpc.php
Brute-Force
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-12 12:11:51
(2 days ago)
Try to access /xmlrpc.php?rsd
Web App Attack
๐ต๐พ
armandosaucedo.me
2026-07-12 12:11:27
(2 days ago)
Threat Intelligence via ARMTI, Web Attack: GET //wp-includes/ID3/license.txt
Web App Attack
Anonymous
2026-07-12 12:10:27
(2 days ago)
34.7.152.191 - - [12/Jul/2026:14:10:23 +0200] "POST //xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 ...
show more
34.7.152.191 - - [12/Jul/2026:14:10:23 +0200] "POST //xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.7.152.191 - - [12/Jul/2026:14:10:24 +0200] "POST //xmlrpc.php HTTP/1.1" 200 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.7.152.191 - - [12/Jul/2026:14:10:24 +0200] "POST //xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.7.152.191 - - [12/Jul/2026:14:10:25 +0200] "POST //xmlrpc.php HTTP/1.1" 200 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.7.152.191 - - [12/Jul/2026:14:10:25 +0200] "POST //xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.463
...
show less
Brute-Force
Web App Attack
๐ฎ๐น
VHosting
2026-07-12 12:10:06
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-12 12:08:16
(2 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 247
Exploited Host
Web App Attack