πΊπΈ
TPI-Abuse
2026-07-03 13:40:42
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 09:40:35.944918 2026] [security2:error] [pid 22599:tid 22599] [client 136.110.59.203:60460] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||websitesforauthors.design|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "websitesforauthors.design"] [uri "/wp-json/wp/v2/users"] [unique_id "ake700sKD73rJiyVL1aREgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 13:08:11
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 09:08:04.478072 2026] [security2:error] [pid 30434:tid 30434] [client 136.110.59.203:32896] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||campnecon.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "campnecon.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ake0NNyzwZeAFDfzikGEKwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 11:53:14
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 07:53:09.421096 2026] [security2:error] [pid 6965:tid 6965] [client 136.110.59.203:49698] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||drwolberg.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drwolberg.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akeipXj2gZ8OOHu2p6NelgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 11:09:29
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 07:09:23.332146 2026] [security2:error] [pid 11138:tid 11138] [client 136.110.59.203:57422] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||churchbehindthewalls.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "churchbehindthewalls.com"] [uri "/wp-json/wp/v2/users/7"] [unique_id "akeYY1vKP05gHRx77vd8vAAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
conseilgouz
2026-07-03 10:01:42
(3 days ago)
hae-7 : Trying access unauthorized files/dir=>/wp-json/wp/v2/users/7?_fields=id,slug,roles
Hacking
πΊπΈ
TPI-Abuse
2026-07-03 09:44:15
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 05:44:10.469305 2026] [security2:error] [pid 21502:tid 21502] [client 136.110.59.203:33134] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||artevoix.com.velvetculture.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "artevoix.com.velvetculture.com"] [uri "/wp-json/wp/v2/users/7"] [unique_id "akeEamiejyKLuveBdZg-xwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 08:58:09
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:58:04.302893 2026] [security2:error] [pid 7215:tid 7253] [client 136.110.59.203:42854] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||noharm-nofowl.plumeraproductions.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "noharm-nofowl.plumeraproductions.com"] [uri "/wp-json/wp/v2/users/7"] [unique_id "akd5nFyUFl7E0v3J5QStvgAAAMQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 07:08:25
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 03:08:21.137503 2026] [security2:error] [pid 6531:tid 6531] [client 136.110.59.203:51138] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||asapstarsmogcheck.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "asapstarsmogcheck.com"] [uri "/wp-json/wp/v2/users/7"] [unique_id "akdf5XjG9qSKyX11T0Nk1gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 05:58:41
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 01:58:33.760851 2026] [security2:error] [pid 22461:tid 22461] [client 136.110.59.203:42506] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bernsteinip.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bernsteinip.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akdPiZHjgQSlRnbSfZREvAAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 05:41:29
(3 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 01:41:22.846393 2026] [security2:error] [pid 17227:tid 17227] [client 136.110.59.203:46928] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bigislandhawaiirealty.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bigislandhawaiirealty.com"] [uri "/wp-json/wp/v2/users/3"] [unique_id "akdLgpanzAlh3McyGq7clAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
FeG Deutschland
2026-07-03 04:36:54
(4 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2
Exploited Host
Web App Attack
π¨πΏ
huginet
2026-07-03 03:42:29
(4 days ago)
136.110.59.203 - - [03/Jul/2026:05:42:28 +0200] "GET /wp-login.php HTTP/1.1" 200 9112 "-" "Mozilla/5 ...
show more
136.110.59.203 - - [03/Jul/2026:05:42:28 +0200] "GET /wp-login.php HTTP/1.1" 200 9112 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
136.110.59.203 - - [03/Jul/2026:05:42:28 +0200] "POST /wp-login.php HTTP/1.1" 200 9549 "https://centrum-eko-likvidace.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36"
...
show less
Web Spam
Blog Spam
Hacking
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 03:17:29
(4 days ago)
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:225170) triggered by 136.110.59.203 (203.59.110.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 23:17:22.282019 2026] [security2:error] [pid 6900:tid 6906] [client 136.110.59.203:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.mindgardens.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.mindgardens.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akcpwv0EvVLrON-A1zPaXAAAAIQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-02 04:30:05
(5 days ago)
| CMS scanner: 3 domains targeted (CMS (WordPress or Joomla) login attempt.)
Web App Attack
Hacking
SQL Injection
π²π½
octageeks.com
2026-07-02 04:22:07
(5 days ago)
Wordpress malicious attack:[octawp]
Web App Attack