๐ง๐ช
cmbplf
2026-07-09 10:05:38
(19 hours ago)
25.929 requests in 1 hour (1mo3w2d)
Brute-Force
Bad Web Bot
๐ฎ๐ฉ
Burayot
2026-07-09 10:00:40
(19 hours ago)
LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 34.57.85.236 (US/United States/236.8 ...
show more
LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 34.57.85.236 (US/United States/236.85.57.34.bc.googleusercontent.com): 2 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 09:50:12
(19 hours ago)
(mod_security) mod_security (id:225170) triggered by 34.57.85.236 (236.85.57.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 34.57.85.236 (236.85.57.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 05:50:04.386370 2026] [security2:error] [pid 20947:tid 20947] [client 34.57.85.236:58435] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||desarrollosdecolima.imerka.com.mx|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "desarrollosdecolima.imerka.com.mx"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak9uzAx-2DfvdKjmcD6PGwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
HandyTreff.de
2026-07-09 09:49:16
(19 hours ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -95.042 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -95.042 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69
show less
Web App Attack
Bad Web Bot
๐ณ๐ฑ
BlueWire Hosting
2026-07-09 09:48:05
(19 hours ago)
Probing websites for vulnerabilities
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-09 09:32:00
(20 hours ago)
Scraping with a high error ratio and request rate
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-09 09:27:13
(20 hours ago)
(mod_security) mod_security (id:225170) triggered by 34.57.85.236 (236.85.57.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 34.57.85.236 (236.85.57.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 05:27:09.061737 2026] [security2:error] [pid 12333:tid 12333] [client 34.57.85.236:60822] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cycon.kleens-uk.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cycon.kleens-uk.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak9pbSq963GNjeVnFH7w6gAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Safronus
2026-07-09 09:22:55
(20 hours ago)
Banned by fail2ban jail=nginx-noscript match=$f2bV_matches
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 09:09:31
(20 hours ago)
(mod_security) mod_security (id:225170) triggered by 34.57.85.236 (236.85.57.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 34.57.85.236 (236.85.57.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 05:09:24.328209 2026] [security2:error] [pid 1379:tid 1379] [client 34.57.85.236:56831] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.constructionloansfunding.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.constructionloansfunding.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak9lREUi3dVEN1Vs08aQWQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
rh24
2026-07-09 09:08:36
(20 hours ago)
(wordpress) Failed wordpress login from 34.57.85.236 (US/United States/236.85.57.34.bc.googleusercon ...
show more
(wordpress) Failed wordpress login from 34.57.85.236 (US/United States/236.85.57.34.bc.googleusercontent.com): (CF_ENABLE)
show less
Brute-Force
๐บ๐ธ
mnsf
2026-07-09 09:05:12
(20 hours ago)
Too many Status 40X (17)
Brute-Force
Web App Attack
๐ฎ๐น
VHosting
2026-07-09 09:00:05
(20 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ฉ๐ช
IVski
2026-07-09 08:59:49
(20 hours ago)
IVski WAF | WordPress scanner detected - probing wp-content, xmlrpc or wp-login
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 08:53:53
(20 hours ago)
(mod_security) mod_security (id:225170) triggered by 34.57.85.236 (236.85.57.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:225170) triggered by 34.57.85.236 (236.85.57.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 04:53:47.347743 2026] [security2:error] [pid 7204:tid 7204] [client 34.57.85.236:56244] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||christaylorjazzpianist.arsenaultartistmanagement.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "christaylorjazzpianist.arsenaultartistmanagement.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak9hm1wbVLWMLUlkcz9mgwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-09 08:53:22
(20 hours ago)
Try to access /xmlrpc.php?rsd
Web App Attack