๐ฆ๐บ
Anytech
2026-07-02 16:24:59
(36 minutes ago)
Blocked by Conn-Monitor: Web scanning activity
Web App Attack
๐ณ๐ฑ
Savvii
2026-07-02 16:24:05
(37 minutes ago)
10 attempts against mh-misc-ban on taro
Web App Attack
๐บ๐ธ
mnsf
2026-07-02 16:05:53
(56 minutes ago)
Abuse Detected (11)
Brute-Force
Web App Attack
๐ช๐ธ
Francisco Vallejo
2026-07-02 15:55:07
(1 hour ago)
[Thu Jul 02 17:55:06.913852 2026] [core:info] [pid 1080275:tid 127200414131904] [client 34.139.50.12 ...
show more
[Thu Jul 02 17:55:06.913852 2026] [core:info] [pid 1080275:tid 127200414131904] [client 34.139.50.121:62727] AH00128: File does not exist: /var/www/barluna/wp-includes/ID3/license.txt
[Thu Jul 02 17:55:07.010607 2026] [core:info] [pid 1080275:tid 127200422524608] [client 34.139.50.121:62727] AH00128: File does not exist: /var/www/barluna/feed/
[Thu Jul 02 17:55:07.108098 2026] [core:info] [pid 1080275:tid 127201864132288] [client 34.139.50.121:62727] AH00128: File does not exist: /var/www/barluna/xmlrpc.php
[Thu Jul 02 17:55:07.204649 2026] [core:info] [pid 1080275:tid 127201185867456] [client 34.139.50.121:62727] AH00128: File does not exist: /var/www/barluna/blog/wp-includes/wlwmanifest.xml
[Thu Jul 02 17:55:07.301407 2026] [core:info] [pid 1080275:tid 127201202652864] [client 34.139.50.121:62727] AH00128: File does not exist: /var/www/barluna/web/wp-includes/wlwmanifest.xml
...
show less
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-07-02 15:52:52
(1 hour ago)
(mod_security) mod_security (id:225170) triggered by 34.139.50.121 (121.50.139.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:225170) triggered by 34.139.50.121 (121.50.139.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 11:52:47.185233 2026] [security2:error] [pid 20230:tid 20230] [client 34.139.50.121:55760] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||barecreationsaz.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "barecreationsaz.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "akaJTyuEYuf4WYnX13U2kgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Lee Daniel
2026-07-02 15:50:07
(1 hour ago)
34.139.50.121 - - [02/Jul/2026:11:50:05 -0400] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 ...
show more
34.139.50.121 - - [02/Jul/2026:11:50:05 -0400] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 36817 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.139.50.121 - - [02/Jul/2026:11:50:05 -0400] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 36817 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.139.50.121 - - [02/Jul/2026:11:50:05 -0400] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 29087 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.139.50.121 - - [02/Jul/2026:11:50:06 -0400] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 36817 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
34.139.50.121 - - [02/Jul/2026:11:50:06 -0400] "GET //wp/wp-includes/wlwmanifest.xml
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
AvonleaConsulting
2026-07-02 15:48:44
(1 hour ago)
Scanning unused Default website or suspicious access to valid sites from IP marked as abusive
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Savvii
2026-07-02 15:37:57
(1 hour ago)
10 attempts against mh-misc-ban on ceres
Web App Attack
๐จ๐ญ
backslash
2026-07-02 15:36:00
(1 hour ago)
block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8
Bad Web Bot
๐ซ๐ท
dynamix
2026-07-02 15:33:17
(1 hour ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ณ๐ฑ
ipoac.nl
2026-07-02 15:31:25
(1 hour ago)
-:443 34.139.50.121 - - [02/Jul/2026:17:31:24 +0200] - "GET //xmlrpc.php?rsd HTTP/1.1" 403 1072 "-" ...
show more
-:443 34.139.50.121 - - [02/Jul/2026:17:31:24 +0200] - "GET //xmlrpc.php?rsd HTTP/1.1" 403 1072 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
show less
Bad Web Bot
๐จ๐ญ
Origon
2026-07-02 15:30:43
(1 hour ago)
http-probing - IP: 34.139.50.121 - time="2026-07-02T17:30:42+02:00" level=info msg="(555f66b4f6a745 ...
show more
http-probing - IP: 34.139.50.121 - time="2026-07-02T17:30:42+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-probing by ip 34.139.50.121 (US/396982) : 4h ban on Ip 34.139.50.121" module=db
show less
Web App Attack
๐ฎ๐น
VHosting
2026-07-02 15:30:14
(1 hour ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ง๐ช
Lunix
2026-07-02 15:18:00
(1 hour ago)
Brute-Force
Web App Attack
๐ซ๐ท
Baking333
2026-07-02 15:16:29
(1 hour ago)
[redacted] 34.139.50.121 - - [02/Jul/2026:16:16:28 +0100] "GET //wp-includes/ID3/[redacted] HTTP/1.1 ...
show more
[redacted] 34.139.50.121 - - [02/Jul/2026:16:16:28 +0100] "GET //wp-includes/ID3/[redacted] HTTP/1.1" 302 1528 0/217044 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" [redacted] 34.139.50.121 - - [02/Jul/2026:16:16:28 +0100] "GET /[redacted]?rsd HTTP/1.1" 302 1527 0/116332 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
show less
Bad Web Bot
Web App Attack