๐ซ๐ท
Catalin Negru
2026-06-30 11:29:43
(1 day ago)
Recidive ban by fail2ban on server.blackbit.ro
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-30 11:06:21
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 34.86.91.140 (140.91.86.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 34.86.91.140 (140.91.86.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 07:06:15.839533 2026] [security2:error] [pid 19544:tid 19544] [client 34.86.91.140:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cloudex.click|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cloudex.click"] [uri "/wp-json/wp/v2/users/"] [unique_id "akOjJ4zl-GFPdZ1vRT6dGgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-30 11:05:24
(1 day ago)
Abuse Detected (11)
Brute-Force
Web App Attack
๐บ๐ธ
integrantservices.com
2026-06-30 11:03:07
(1 day ago)
(PERMBLOCK) 34.86.91.140 (US/United States/140.91.86.34.bc.googleusercontent.com) has had more than ...
show more
(PERMBLOCK) 34.86.91.140 (US/United States/140.91.86.34.bc.googleusercontent.com) has had more than 4 temp blocks
show less
Hacking
๐จ๐ญ
zynex
2026-06-30 10:40:34
(1 day ago)
URL Probing: /de/wp-includes/id3/license.txt/wp1/wp-includes/wlwmanifest.xml
Web App Attack
Anonymous
2026-06-30 10:37:35
(1 day ago)
34.86.91.140 - - [30/Jun/2026:12:37:31 +0200] "POST //xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 ...
show more
34.86.91.140 - - [30/Jun/2026:12:37:31 +0200] "POST //xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.86.91.140 - - [30/Jun/2026:12:37:32 +0200] "POST //xmlrpc.php HTTP/1.1" 200 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.86.91.140 - - [30/Jun/2026:12:37:32 +0200] "POST //xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.86.91.140 - - [30/Jun/2026:12:37:33 +0200] "POST //xmlrpc.php HTTP/1.1" 200 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.86.91.140 - - [30/Jun/2026:12:37:33 +0200] "POST //xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.463
...
show less
Brute-Force
Web App Attack
๐ฉ๐ช
findlab
2026-06-30 10:25:02
(1 day ago)
Backdrop CMS module - malicious activity detected
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-06-30 10:24:47
(1 day ago)
Try to access /xmlrpc.php?rsd
Web App Attack
๐ต๐ฑ
miriks
2026-06-30 10:19:38
(1 day ago)
Automated scan detected: GET /wp-includes/ID3/license.txt โ UA: Mozilla/5.0 (Windows NT 10.0; Win64; ...
show more
Automated scan detected: GET /wp-includes/ID3/license.txt โ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36
show less
Port Scan
Web App Attack
๐บ๐ธ
Lee Daniel
2026-06-30 10:16:55
(1 day ago)
34.86.91.140 - - [30/Jun/2026:06:16:53 -0400] "GET /wp-includes/id3/license.txt/web/wp-includes/wlwm ...
show more
34.86.91.140 - - [30/Jun/2026:06:16:53 -0400] "GET /wp-includes/id3/license.txt/web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 39937 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.86.91.140 - - [30/Jun/2026:06:16:53 -0400] "GET /wp-includes/id3/license.txt/wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 39943 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.86.91.140 - - [30/Jun/2026:06:16:53 -0400] "GET /wp-includes/id3/license.txt/wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 39931 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.86.91.140 - - [30/Jun/2026:06:16:54 -0400] "GET /wp-includes/id3/license.txt/2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 39938 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-30 10:15:57
(1 day ago)
[server.tmg.gr] httpd-suspicious-path: sites=cardiobridge2023.gr,cardiobridge2026.gr; logs=/var/log/ ...
show more
[server.tmg.gr] httpd-suspicious-path: sites=cardiobridge2023.gr,cardiobridge2026.gr; logs=/var/log/httpd/domains/cardiobridge2023.gr.log,/var/log/httpd/domains/cardiobridge2026.gr.log; samples=/wp-includes/ID3/license.txt | /blog/wp-includes/wlwmanifest.xml | /web/wp-includes/wlwmanifest.xml
show less
Hacking
Web App Attack
๐ฉ๐ช
Viveronese
2026-06-30 10:10:12
(1 day ago)
HTTP vulnerability scanning
Web App Attack
๐ฎ๐น
VHosting
2026-06-30 10:10:10
(1 day ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ณ๐ฑ
Savvii
2026-06-30 10:09:58
(1 day ago)
10 attempts against mh-misc-ban on ficus
Web App Attack
๐ง๐พ
lns.bz
2026-06-30 10:07:55
(1 day ago)
Too many 404 requests [BY]
Web App Attack