๐น๐ท
ycoskun41
2026-07-13 15:53:44
(22 hours ago)
fail2ban: plesk-modsecurity jail on genckocaeli.com
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 15:53:22
(22 hours ago)
(mod_security) mod_security (id:225170) triggered by 135.136.51.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 135.136.51.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 11:53:17.668409 2026] [security2:error] [pid 8536:tid 8664] [client 135.136.51.35:49532] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||duplexgoldmine.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "duplexgoldmine.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "alUJ7eDKqoAAkQYotiqwbAAAANg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
gigatech
2026-07-13 15:45:02
(23 hours ago)
Webserver Probing
Web App Attack
๐ฉ๐ช
maxpower
2026-07-13 15:41:31
(23 hours ago)
(wp_fingerprint) REGOLA 6 - WP Exploit Attempt xmlrpc 135.136.51.35 (RO/Romania/-): 1 in the last 36 ...
show more
(wp_fingerprint) REGOLA 6 - WP Exploit Attempt xmlrpc 135.136.51.35 (RO/Romania/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 135.136.51.35 - - [13/Jul/2026:17:41:26 +0200] "GET /wp-json/wp/v2/users/2 HTTP/2.0" 404 81 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" "-" host=sensationart.it
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-07-13 15:37:53
(23 hours ago)
(mod_security) mod_security (id:225170) triggered by 135.136.51.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 135.136.51.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 11:37:49.085589 2026] [security2:error] [pid 27852:tid 27852] [client 135.136.51.35:57660] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.travelwithjenniferb.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.travelwithjenniferb.com"] [uri "/wp-json/wp/v2/users/2"] [unique_id "alUGTbdicbEk9EQSOTAGEgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
agenciahypelab.com.br
2026-07-13 15:23:45
(23 hours ago)
WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER
Brute-Force
SSH
๐ฉ๐ช
LRob
2026-07-13 15:23:31
(23 hours ago)
CrowdSec: crowdsecurity/http-probing | req: /?author=1 | 11 distinct paths | UA: Mozilla/5.0 (Macint ...
show more
CrowdSec: crowdsecurity/http-probing | req: /?author=1 | 11 distinct paths | UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15
show less
Port Scan
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 15:17:08
(23 hours ago)
(mod_security) mod_security (id:225170) triggered by 135.136.51.35 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 135.136.51.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 11:17:00.505202 2026] [security2:error] [pid 1850416:tid 1850416] [client 135.136.51.35:56838] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||joebankx.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "joebankx.com"] [uri "/wp-json/wp/v2/users/2"] [unique_id "alUBbMAs1GD_xNItraSz7AAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
BlueWire Hosting
2026-07-13 15:09:47
(23 hours ago)
Probing websites for vulnerabilities
Web App Attack
SQL Injection
๐ฉ๐ช
spam.must.die
2026-07-13 15:09:25
(23 hours ago)
IP triggered category <category>
Web App Attack
๐ฉ๐ช
maxpower
2026-07-13 15:07:53
(23 hours ago)
(PERMBLOCK) 135.136.51.35 (RO/Romania/-) has had more than 4 temp blocks in the last 86400 secs; Por ...
show more
(PERMBLOCK) 135.136.51.35 (RO/Romania/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:
show less
Port Scan
Anonymous
2026-07-13 15:02:12
(23 hours ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ง๐ช
cmbplf
2026-07-13 15:02:02
(23 hours ago)
9.836 requests in 1 hour (1mo3w11h)
Brute-Force
Bad Web Bot
๐ซ๐ท
masterguru
2026-07-13 14:59:29
(23 hours ago)
WordPress: User enumeration. Pattern match "(author\\\\= (88030-193)
Hacking
๐ฌ๐ง
Mendip_Defender
2026-07-13 14:52:43
(23 hours ago)
2026-07-13 15:52:32,750 fail2ban.actions [2470]: NOTICE [404-common] Ban 135.136.51.35
2026- ...
show more
2026-07-13 15:52:32,750 fail2ban.actions [2470]: NOTICE [404-common] Ban 135.136.51.35
2026-07-13 15:52:33,053 fail2ban.actions [2470]: NOTICE [plesk-modsecurity] Ban 135.136.51.35
...
show less
Brute-Force