๐ซ๐ท
Kenshin869
2026-07-15 04:05:36
(2 hours ago)
Wordpress unauthorized access attempt
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-14 22:49:46
(7 hours ago)
(mod_security) mod_security (id:240335) triggered by 152.241.69.162 (152-241-69-162.user.vivozap.com ...
show more
(mod_security) mod_security (id:240335) triggered by 152.241.69.162 (152-241-69-162.user.vivozap.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 18:49:41.637510 2026] [security2:error] [pid 7898:tid 7898] [client 152.241.69.162:52808] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 152.241.69.162 (+1 hits since last alert)|fattoria-rendena.it|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "fattoria-rendena.it"] [uri "/xmlrpc.php"] [unique_id "ala9BaX_pTxWQvz4RvibJQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WeekendWeb
2026-07-14 17:08:13
(13 hours ago)
Wordpress Vunerability attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 13:21:38
(17 hours ago)
(mod_security) mod_security (id:240335) triggered by 152.241.69.162 (152-241-69-162.user.vivozap.com ...
show more
(mod_security) mod_security (id:240335) triggered by 152.241.69.162 (152-241-69-162.user.vivozap.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 09:21:32.619516 2026] [security2:error] [pid 31940:tid 31940] [client 152.241.69.162:58112] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 152.241.69.162 (+1 hits since last alert)|edgecomix.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "edgecomix.com"] [uri "/xmlrpc.php"] [unique_id "alY33LN-MAPmTR6JpyMAzgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 04:28:30
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 152.241.69.162 (152-241-69-162.user.vivozap.com ...
show more
(mod_security) mod_security (id:240335) triggered by 152.241.69.162 (152-241-69-162.user.vivozap.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 00:28:22.040109 2026] [security2:error] [pid 17058:tid 17068] [client 152.241.69.162:53962] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 152.241.69.162 (+1 hits since last alert)|duplexgoldmine.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "duplexgoldmine.com"] [uri "/xmlrpc.php"] [unique_id "alW65kYe0tB5ZBfQXX4-3wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-14 02:34:01
(1 day ago)
Fail2ban filtered
...
Web App Attack
๐ฆ๐บ
screwlooseit.com.au
2026-07-14 02:31:37
(1 day ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
BR/Brazil/152-241-69-162.user.vivozap.com.br
Web App Attack
๐ช๐ธ
masterguru
2026-07-14 00:33:32
(1 day ago)
(xmlrpc) Failed xmlrpc access from 152.241.69.162 (BR/Brazil/152-241-69-162.user.vivozap.com.br): 5 ...
show more
(xmlrpc) Failed xmlrpc access from 152.241.69.162 (BR/Brazil/152-241-69-162.user.vivozap.com.br): 5 in the last 3600 secs (0-122)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-14 00:32:16
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 152.241.69.162 (152-241-69-162.user.vivozap.com ...
show more
(mod_security) mod_security (id:240335) triggered by 152.241.69.162 (152-241-69-162.user.vivozap.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 20:32:12.839315 2026] [security2:error] [pid 29754:tid 29754] [client 152.241.69.162:57306] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 152.241.69.162 (+1 hits since last alert)|assheton.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "assheton.com"] [uri "/xmlrpc.php"] [unique_id "alWDjBx0HQsd5OeiBvfY_wAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
applemooz
2026-07-13 21:58:26
(1 day ago)
WordPress XMLRPC Brute Force Attacks
...
Brute-Force
Web App Attack
Anonymous
2021-04-03 07:47:14
(5 years ago)
(sshd) Failed SSH login from 152.241.69.162 (BR/Brazil/Sรยฃo Paulo/Sรยฃo Paulo/152-241-69-162.user.viv ...
show more
(sshd) Failed SSH login from 152.241.69.162 (BR/Brazil/Sรยฃo Paulo/Sรยฃo Paulo/152-241-69-162.user.vivozap.com.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 3 07:46:58 atlas sshd[11828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.241.69.162 user=root
Apr 3 07:47:00 atlas sshd[11828]: Failed password for root from 152.241.69.162 port 48540 ssh2
Apr 3 07:47:01 atlas sshd[11840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.241.69.162 user=root
Apr 3 07:47:03 atlas sshd[11840]: Failed password for root from 152.241.69.162 port 48541 ssh2
Apr 3 07:47:04 atlas sshd[11856]: Invalid user ubnt from 152.241.69.162 port 48542
show less
Brute-Force