๐ฒ๐ฝ
octageeks.com
2026-07-15 04:17:13
(10 hours ago)
Wordpress malicious attack:[octamissingdomain]
Web App Attack
๐บ๐ธ
infra-monitor
2026-07-14 16:00:04
(22 hours ago)
Automated ban via infra-monitor: wp-sensitive-paths, wordpress-probe, crowdsecurity/http-probing
Port Scan
Web App Attack
๐ฉ๐ช
rh24
2026-07-14 15:57:23
(23 hours ago)
(wordpress) Failed wordpress login from 34.139.250.242 (US/United States/242.250.139.34.bc.googleuse ...
show more
(wordpress) Failed wordpress login from 34.139.250.242 (US/United States/242.250.139.34.bc.googleusercontent.com): (CF_ENABLE)
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-14 15:36:14
(23 hours ago)
(mod_security) mod_security (id:225170) triggered by 34.139.250.242 (242.250.139.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 34.139.250.242 (242.250.139.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 11:36:07.655826 2026] [security2:error] [pid 13063:tid 13063] [client 34.139.250.242:63878] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||market1st.bridgital.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "market1st.bridgital.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "alZXZ8OVsx8Bg_1tX8HttQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
tmiland
2026-07-14 15:20:42
(23 hours ago)
(wordpress_xmlrpc) WordPress XMLPRC Attack 34.139.250.242 (US/United States/242.250.139.34.bc.google ...
show more
(wordpress_xmlrpc) WordPress XMLPRC Attack 34.139.250.242 (US/United States/242.250.139.34.bc.googleusercontent.com): 3 in the last 3600 secs; IP: 34.139.250.242; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 34.139.250.242 - - [14/Jul/2026:17:20:35 +0200] "GET //xmlrpc.php?rsd HTTP/1.1" 200 792 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 34.139.250.242 - - [14/Jul/2026:17:20:37 +0200] "POST //xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 34.139.250.242 - - [14/Jul/2026:17:20:37 +0200] "POST //xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-14 15:16:12
(23 hours ago)
(mod_security) mod_security (id:225170) triggered by 34.139.250.242 (242.250.139.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 34.139.250.242 (242.250.139.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 11:16:07.869033 2026] [security2:error] [pid 26710:tid 26710] [client 34.139.250.242:61468] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||magazine.angelabcomics.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "magazine.angelabcomics.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "alZSt8gnqXbATo2ddXjjLAAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-14 15:03:15
(23 hours ago)
27.637 requests in 1 hour (3mos1w5d)
Brute-Force
Bad Web Bot
๐บ๐ธ
Lee Daniel
2026-07-14 15:02:47
(23 hours ago)
34.139.250.242 - - [14/Jul/2026:11:02:46 -0400] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1. ...
show more
34.139.250.242 - - [14/Jul/2026:11:02:46 -0400] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 22496 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.139.250.242 - - [14/Jul/2026:11:02:46 -0400] "GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 22466 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.139.250.242 - - [14/Jul/2026:11:02:46 -0400] "GET //2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 22472 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.139.250.242 - - [14/Jul/2026:11:02:46 -0400] "GET //2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 22472 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.139.250.242 - - [14/Jul/2026:11:02:46 -0400] "GET //2021/wp-includes/wlwmanife
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Roderic
2026-07-14 14:59:25
(23 hours ago)
(wordpress-404) Searching for non-existent wordpress installs from 34.139.250.242 (US/United States/ ...
show more
(wordpress-404) Searching for non-existent wordpress installs from 34.139.250.242 (US/United States/South Carolina/North Charleston/242.250.139.34.bc.googleusercontent.com/[redacted])
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-14 14:55:46
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 34.139.250.242 (242.250.139.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 34.139.250.242 (242.250.139.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 10:55:39.686761 2026] [security2:error] [pid 11092:tid 11092] [client 34.139.250.242:55628] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||loriarsenault.com.arsenaultartistmanagement.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "loriarsenault.com.arsenaultartistmanagement.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "alZN60DQqGtaHst-YMqnAQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
polycoda
2026-07-14 14:52:29
(1 day ago)
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based)
Hacking
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-14 14:51:02
(1 day ago)
Scraping with a high error ratio and request rate
Bad Web Bot
๐ง๐พ
lns.bz
2026-07-14 14:48:29
(1 day ago)
Too many 404 requests [BY]
Web App Attack
๐บ๐ธ
lnklnx
2026-07-14 14:48:25
(1 day ago)
www.lnklnx.com:443 34.139.250.242 - - [14/Jul/2026:09:48:23 -0500] "GET //wp-includes/ID3/license.tx ...
show more
www.lnklnx.com:443 34.139.250.242 - - [14/Jul/2026:09:48:23 -0500] "GET //wp-includes/ID3/license.txt HTTP/1.1" 403 3652 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
...
show less
Web App Attack
๐ณ๐ฑ
i-turnradio.nl
2026-07-14 14:44:47
(1 day ago)
2026-07-14 @ 16:44:47 (CET) ~ Blocked for trying to access: /wp-includes/ID3/license.txt
Web App Attack