๐ง๐ช
cmbplf
2026-07-14 15:01:40
(3 days ago)
10.578 requests in 1 hour (3mos1w5d)
Brute-Force
Bad Web Bot
๐บ๐ธ
infra-monitor
2026-07-14 15:00:07
(3 days ago)
Automated ban via infra-monitor: wp-sensitive-paths
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-14 14:51:02
(3 days ago)
Scraping with a high error ratio and request rate
Bad Web Bot
Anonymous
2026-07-14 14:46:12
(3 days ago)
[ssd5.kdns.gr] httpd-xmlrpc-post: sites=www.toyota-konstantinou.gr; logs=/var/log/httpd/domains/toyo ...
show more
[ssd5.kdns.gr] httpd-xmlrpc-post: sites=www.toyota-konstantinou.gr; logs=/var/log/httpd/domains/toyota-konstantinou.gr.log; samples=//xmlrpc.php
show less
Brute-Force
Web App Attack
๐ฉ๐ช
konseptit
2026-07-14 14:33:10
(3 days ago)
(wordpress) Failed wordpress login from 35.196.174.141 (US/United States/141.174.196.35.bc.googleuse ...
show more
(wordpress) Failed wordpress login from 35.196.174.141 (US/United States/141.174.196.35.bc.googleusercontent.com)
show less
Brute-Force
๐จ๐ญ
Cybercat
2026-07-14 14:30:17
(3 days ago)
CrowdSec detection: crowdsecurity/http-probing
Hacking
๐บ๐ธ
kosada.com
2026-07-14 14:29:51
(3 days ago)
Web vulnerability probing: //wordpress/wp-includes/wlwmanifest.xml
Web App Attack
๐ฉ๐ช
Kreapptivo
2026-07-14 14:29:12
(3 days ago)
[14/Jul/2026:16:29:08 +0200] Web-Request: "GET //wp-includes/ID3/license.txt", User-Agent: "Mozilla/ ...
show more
[14/Jul/2026:16:29:08 +0200] Web-Request: "GET //wp-includes/ID3/license.txt", User-Agent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
show less
Bad Web Bot
Web App Attack
๐ณ๐ฑ
tmiland
2026-07-14 14:20:09
(3 days ago)
(wordpress_xmlrpc) WordPress XMLPRC Attack 35.196.174.141 (US/United States/141.174.196.35.bc.google ...
show more
(wordpress_xmlrpc) WordPress XMLPRC Attack 35.196.174.141 (US/United States/141.174.196.35.bc.googleusercontent.com): 3 in the last 3600 secs; IP: 35.196.174.141; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 35.196.174.141 - - [14/Jul/2026:16:19:59 +0200] "POST //xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 35.196.174.141 - - [14/Jul/2026:16:20:00 +0200] "POST //xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 35.196.174.141 - - [14/Jul/2026:16:20:01 +0200] "POST //xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
show less
Brute-Force
Anonymous
2026-07-14 14:10:35
(3 days ago)
35.196.174.141 - - [14/Jul/2026:16:10:32 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 567 ...
show more
35.196.174.141 - - [14/Jul/2026:16:10:32 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
35.196.174.141 - - [14/Jul/2026:16:10:33 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
35.196.174.141 - - [14/Jul/2026:16:10:34 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
35.196.174.141 - - [14/Jul/2026:16:10:34 +0200] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
35.196.174.141 - - [14/Jul/2026:16:10:35 +0200] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 40
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 14:06:08
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 35.196.174.141 (141.174.196.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 35.196.174.141 (141.174.196.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 10:06:01.801509 2026] [security2:error] [pid 23629:tid 23629] [client 35.196.174.141:64882] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||tigerpathteam.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tigerpathteam.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "alZCSRP9hE9EZifSf4Cw2gAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
factor1
2026-07-14 14:03:09
(3 days ago)
Fail2ban at apollo Reports Abuse.
Bad Web Bot
๐ซ๐ฎ
inlink.ltd
2026-07-14 13:49:03
(3 days ago)
Known malicious PHP file or CMS probe
Web App Attack
๐ฌ๐ง
NotCool
2026-07-14 13:48:08
(3 days ago)
(XMLRPC) WP XMLPRC Attack 35.196.174.141 (US/United States/141.174.196.35.bc.googleusercontent.com): ...
show more
(XMLRPC) WP XMLPRC Attack 35.196.174.141 (US/United States/141.174.196.35.bc.googleusercontent.com): 50 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 13:47:27
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 35.196.174.141 (141.174.196.35.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 35.196.174.141 (141.174.196.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 09:47:21.184512 2026] [security2:error] [pid 26854:tid 26854] [client 35.196.174.141:59366] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||theopinionatedowl.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "theopinionatedowl.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "alY96QbPxFyg2c7FJOFHRwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack