Anonymous
2026-07-06 14:20:01
(2 days ago)
Web attack blocked by Wordfence on vestingstadvalkenburg.nl (1 hit). Reported by CRMON.
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 14:05:21
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 34.11.54.68 (68.54.11.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:225170) triggered by 34.11.54.68 (68.54.11.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 10:05:16.144472 2026] [security2:error] [pid 4429:tid 4429] [client 34.11.54.68:63376] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||wealthsec.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wealthsec.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aku2HHJuoebkQeNpyBtB7wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-06 14:04:32
(2 days ago)
34.11.54.68 - - [06/Jul/2026:16:04:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (W ...
show more
34.11.54.68 - - [06/Jul/2026:16:04:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
34.11.54.68 - - [06/Jul/2026:16:04:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
34.11.54.68 - - [06/Jul/2026:16:04:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
34.11.54.68 - - [06/Jul/2026:16:04:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
34.11.54.68 - - [06/Jul/2026:16:04:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 591 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108
...
show less
Brute-Force
Web App Attack
๐ฎ๐น
eliosbrocchi
2026-07-06 14:02:27
(2 days ago)
2026-07-06T16:02:26.812947+02:00 thunderchild wordpress(vocidallapiazzaliberta.ddns.net)[1511840]: B ...
show more
2026-07-06T16:02:26.812947+02:00 thunderchild wordpress(vocidallapiazzaliberta.ddns.net)[1511840]: Blocked user enumeration attempt from 34.11.54.68
...
show less
VPN IP
Anonymous
2026-07-06 14:02:06
(2 days ago)
Bot / scanning and/or hacking attempts: POST //xmlrpc.php HTTP/1.1, GET //?author=2 HTTP/1.1, GET / ...
show more
Bot / scanning and/or hacking attempts: POST //xmlrpc.php HTTP/1.1, GET //?author=2 HTTP/1.1, GET / HTTP/1.1, GET //?author=1 HTTP/1.1, GET //wp-includes/wlwmanifest.xml HTTP/1.1
show less
Hacking
Web App Attack
๐ซ๐ฎ
bittiguru.fi
2026-07-06 14:01:35
(2 days ago)
34.11.54.68 - [06/Jul/2026:17:01:31 +0300] "POST //xmlrpc.php HTTP/1.1" 404 18398 "-" "Mozilla/5.0 ( ...
show more
34.11.54.68 - [06/Jul/2026:17:01:31 +0300] "POST //xmlrpc.php HTTP/1.1" 404 18398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "-"
34.11.54.68 - [06/Jul/2026:17:01:34 +0300] "POST //xmlrpc.php HTTP/1.1" 404 24035 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "-"
...
show less
Hacking
Brute-Force
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-06 14:01:25
(2 days ago)
34.11.54.68 - - [06/Jul/2026:16:01:16 +0200] "POST //xmlrpc.php HTTP/1.1" 200 6383 "-" "Mozilla/5.0 ...
show more
34.11.54.68 - - [06/Jul/2026:16:01:16 +0200] "POST //xmlrpc.php HTTP/1.1" 200 6383 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
34.11.54.68 - - [06/Jul/2026:16:01:18 +0200] "POST //xmlrpc.php HTTP/1.1" 200 6383 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
34.11.54.68 - - [06/Jul/2026:16:01:19 +0200] "POST //xmlrpc.php HTTP/1.1" 200 6383 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
show less
Hacking
Web App Attack
๐ซ๐ฎ
000rosiu
2026-07-06 14:00:57
(2 days ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoi ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoint: //wp-includes/wlwmanifest.xml | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฎ๐น
VHosting
2026-07-06 14:00:07
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack