Anonymous
2026-05-18 11:03:16
(1 month ago)
Attac
Brute-Force
Anonymous
2026-05-16 05:18:19
(2 months ago)
Attac
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-05-13 15:17:33
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 11:17:27.579707 2026] [security2:error] [pid 12443:tid 12443] [client 102.70.93.137:37397] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 102.70.93.137 (+1 hits since last alert)|calvaryadminservices.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "calvaryadminservices.com"] [uri "/xmlrpc.php"] [unique_id "agSWBw1mzyW8yyqdEJS6mwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Kenshin869
2026-05-13 11:13:32
(2 months ago)
Wordpress unauthorized access attempt
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-05-13 08:30:54
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 04:30:46.539144 2026] [security2:error] [pid 16287:tid 16287] [client 102.70.93.137:33581] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 102.70.93.137 (+1 hits since last alert)|marshdcs.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "marshdcs.com"] [uri "/xmlrpc.php"] [unique_id "agQ2tuM-W276NQNw_-SgtQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-05-12 07:05:27
(2 months ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐จ๐ฆ
Paulo Henrique dos Santos Nichio
2026-05-11 09:54:53
(2 months ago)
(ls_brute) LiteSpeed Brute Force Attack 102.70.93.137 (MW/Malawi/-): 3 in the last 600 secs; Ports: ...
show more
(ls_brute) LiteSpeed Brute Force Attack 102.70.93.137 (MW/Malawi/-): 3 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 2026-05-11 06:54:26.600705 [WARN] [266588] [T0] [102.70.93.137:57344-19#APVH_www.vrgames.com.br:443] Brute force detected for IP [102.70.93.137], throttle.
2026-05-11 06:54:36.603153 [WARN] [266588] [T0] [102.70.93.137:57344-20#APVH_www.vrgames.com.br:443] Brute force detected for IP [102.70.93.137], throttle.
2026-05-11 06:54:47.615576 [WARN] [266588] [T0] [102.70.93.137:57344-21#APVH_www.vrgames.com.br:443] Brute force detected for IP [102.70.93.137], throttle.
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-05-11 07:22:41
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 03:22:36.727760 2026] [security2:error] [pid 3124:tid 3124] [client 102.70.93.137:54203] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 102.70.93.137 (+1 hits since last alert)|rnance.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "rnance.com"] [uri "/xmlrpc.php"] [unique_id "agGDvCR3LGh9NXA1qSS35QAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
Paulo Henrique dos Santos Nichio
2026-05-09 08:05:35
(2 months ago)
(ls_brute) LiteSpeed Brute Force Attack 102.70.93.137 (MW/Malawi/-): 3 in the last 600 secs; Ports: ...
show more
(ls_brute) LiteSpeed Brute Force Attack 102.70.93.137 (MW/Malawi/-): 3 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 2026-05-09 05:05:11.146728 [WARN] [2698420] [T0] [102.70.93.137:29944-28#APVH_www.totalseguros.digital:443] Brute force detected for IP [102.70.93.137], throttle.
2026-05-09 05:05:22.100265 [WARN] [2698420] [T0] [102.70.93.137:29944-29#APVH_www.totalseguros.digital:443] Brute force detected for IP [102.70.93.137], throttle.
2026-05-09 05:05:32.116259 [WARN] [2698420] [T0] [102.70.93.137:29944-30#APVH_www.totalseguros.digital:443] Brute force detected for IP [102.70.93.137], throttle.
show less
Port Scan
Anonymous
2026-05-09 08:00:51
(2 months ago)
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-08 13:45:28
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 09:45:25.273975 2026] [security2:error] [pid 18733:tid 18733] [client 102.70.93.137:33191] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 102.70.93.137 (+1 hits since last alert)|lambert-heating-and-air.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lambert-heating-and-air.com"] [uri "/xmlrpc.php"] [unique_id "af3o9YIVSHUyDV9DSlfCQgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-08 13:17:56
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 09:17:52.710573 2026] [security2:error] [pid 10423:tid 10423] [client 102.70.93.137:34799] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 102.70.93.137 (+1 hits since last alert)|comobarbershop.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "comobarbershop.com"] [uri "/xmlrpc.php"] [unique_id "af3igMIX_TbHHyFyUC_OGwAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-08 12:45:52
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 102.70.93.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 08:45:48.368351 2026] [security2:error] [pid 28647:tid 28647] [client 102.70.93.137:63009] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 102.70.93.137 (+1 hits since last alert)|ssion.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ssion.com"] [uri "/xmlrpc.php"] [unique_id "af3a_GSW7M82WiPXP04KegAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-05-08 09:09:37
(2 months ago)
(wordpress) Failed wordpress login from 102.70.93.137 (MW/Malawi/-)
Brute-Force
๐ฉ๐ช
Mario Silber
2026-05-08 07:07:36
(2 months ago)
(wordpress) Failed wordpress login from 102.70.93.137 (MW/Malawi/-)
Brute-Force