๐ณ๐ฑ
JCB
2026-07-13 17:25:00
(21 hours ago)
/wp-includes/wlwmanifest.xml
Brute-Force
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-13 14:07:01
(1 day ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [mx01]
Bad Web Bot
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-13 13:09:02
(1 day ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx02,mx03,w ...
show more
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx02,mx03,wa01,wa02]
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 12:12:39
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 34.76.103.60 (60.103.76.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 34.76.103.60 (60.103.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 08:12:35.097399 2026] [security2:error] [pid 14770:tid 14770] [client 34.76.103.60:50693] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.majesticsolutions.co|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.majesticsolutions.co"] [uri "/wp-json/wp/v2/users/"] [unique_id "alTWM3JmGY9ntq_ihpw65QAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-13 12:12:02
(1 day ago)
34.76.103.60 - - [13/Jul/2026:14:12:02 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 443 "- ...
show more
34.76.103.60 - - [13/Jul/2026:14:12:02 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 443 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.76.103.60 - - [13/Jul/2026:14:12:02 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 294 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.76.103.60 - - [13/Jul/2026:14:12:02 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 443 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.76.103.60 - - [13/Jul/2026:14:12:02 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 294 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.76.103.60 - - [13/Jul/2026:14:12:02 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 443 "-" "Mozilla
...
show less
Brute-Force
Web App Attack
Anonymous
2026-07-13 12:09:17
(1 day ago)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 11:49:47
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 34.76.103.60 (60.103.76.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 34.76.103.60 (60.103.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 07:49:43.662562 2026] [security2:error] [pid 3357:tid 3376] [client 34.76.103.60:52519] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mail.theworldinstituteofslowness.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mail.theworldinstituteofslowness.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "alTQ11tzZQgU0GYl8Kc65gAAAJE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
lostswordfish.com
2026-07-13 11:36:04
(1 day ago)
Wordfence waf block on ncrsol
Web App Attack
๐ท๐ด
INTEQ
2026-07-13 11:34:34
(1 day ago)
Web attack from 34.76.103.60
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 11:33:50
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 34.76.103.60 (60.103.76.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 34.76.103.60 (60.103.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 07:33:45.128100 2026] [security2:error] [pid 17192:tid 17192] [client 34.76.103.60:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mail.ralphrichardson.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mail.ralphrichardson.com"] [uri "/blog/wp-json/wp/v2/users/"] [unique_id "alTNGfZoilSKg9_PD4nrQwAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-13 11:31:52
(1 day ago)
High error rate and elevated request volume targeting cPanel servers
Bad Web Bot
๐ฉ๐ช
Blexyel
2026-07-13 11:29:43
(1 day ago)
34.76.103.60 - - [13/Jul/2026:13:29:43 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 ...
show more
34.76.103.60 - - [13/Jul/2026:13:29:43 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 120 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
...
show less
Brute-Force
Web App Attack
๐ฉ๐ช
abdubhai
2026-07-13 11:23:29
(1 day ago)
34.76.103.60 - - [13/Jul/2026:16
...
Brute-Force
๐ต๐ฑ
strefapi_com
2026-07-13 11:22:53
(1 day ago)
Brute-force, web
...
Hacking
Brute-Force
Web App Attack
๐ซ๐ท
masterguru
2026-07-13 11:18:30
(1 day ago)
Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-201)
Hacking