πΈπͺ
konseptit
2026-07-04 09:59:24
(1 day ago)
(wordpress) Failed wordpress login from 141.98.141.57 (AL/Albania/-)
Brute-Force
π²πΎ
Rizzy
2026-07-04 07:45:08
(2 days ago)
Multiple WAF Violations
Brute-Force
Web App Attack
Anonymous
2026-07-04 06:06:57
(2 days ago)
Trying to access config files
Web App Attack
π©πͺ
burlacu.org
2026-07-04 01:09:02
(2 days ago)
Nginx multi-log analysis detected: wordpress_scan. Evidence: XMLRPC abuse with 23 requests. Blocked ...
show more
Nginx multi-log analysis detected: wordpress_scan. Evidence: XMLRPC abuse with 23 requests. Blocked automatically.
show less
Web App Attack
Bad Web Bot
π¬π§
[email protected]
2026-07-04 00:04:07
(2 days ago)
141.98.141.57 - - [04/Jul/2026:00:03:42 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by W ...
show more
141.98.141.57 - - [04/Jul/2026:00:03:42 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com"
141.98.141.57 - - [04/Jul/2026:00:03:53 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com"
141.98.141.57 - - [04/Jul/2026:00:04:05 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)"
...
show less
Web App Attack
πΊπΈ
WeekendWeb
2026-07-03 21:00:05
(2 days ago)
Wordpress Vunerability attack
Web App Attack
π«π·
masterguru
2026-07-03 16:33:20
(2 days ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
πΊπΈ
TPI-Abuse
2026-07-03 05:52:48
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 01:52:43.514722 2026] [security2:error] [pid 29154:tid 29154] [client 141.98.141.57:30905] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 141.98.141.57 (+1 hits since last alert)|applemaccomputerconsulting.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "applemaccomputerconsulting.com"] [uri "/xmlrpc.php"] [unique_id "akdOKwgWju4smk5kdvHDlAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 05:23:40
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 01:23:31.989338 2026] [security2:error] [pid 25754:tid 25754] [client 141.98.141.57:47569] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 141.98.141.57 (+1 hits since last alert)|feiz.church|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "feiz.church"] [uri "/xmlrpc.php"] [unique_id "akdHUxevjz7rFCNK1rP1mgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
dynamix
2026-07-03 03:04:53
(3 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 01:36:04
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 21:35:58.907547 2026] [security2:error] [pid 3089:tid 3089] [client 141.98.141.57:14502] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 141.98.141.57 (+1 hits since last alert)|pakistanvision.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pakistanvision.com"] [uri "/xmlrpc.php"] [unique_id "akcR_hTj5y0cocSf_X330wAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-03 00:06:05
(3 days ago)
Trying to access config files
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 23:21:57
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 19:21:50.222511 2026] [security2:error] [pid 13969:tid 13969] [client 141.98.141.57:49142] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 141.98.141.57 (+1 hits since last alert)|diamondtrailerserv.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "diamondtrailerserv.com"] [uri "/xmlrpc.php"] [unique_id "akbyjvW5_I7Fozor9WBRJwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 21:40:18
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 17:40:11.542509 2026] [security2:error] [pid 1954:tid 1954] [client 141.98.141.57:47548] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 141.98.141.57 (+1 hits since last alert)|ruthbalser.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ruthbalser.org"] [uri "/xmlrpc.php"] [unique_id "akbau1GQndqzUb1S_72SIQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 21:08:26
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 141.98.141.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 17:08:22.746504 2026] [security2:error] [pid 21015:tid 21015] [client 141.98.141.57:15083] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 141.98.141.57 (+1 hits since last alert)|capriexpress.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "capriexpress.com"] [uri "/xmlrpc.php"] [unique_id "akbTRh1AI_IukUgArxK7GQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack