๐บ๐ธ
TPI-Abuse
2026-07-14 15:22:28
(6 hours ago)
(mod_security) mod_security (id:240335) triggered by 160.30.104.98 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 160.30.104.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 11:22:21.815304 2026] [security2:error] [pid 12163:tid 12194] [client 160.30.104.98:62929] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 160.30.104.98 (+1 hits since last alert)|travelusa.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "travelusa.us"] [uri "/xmlrpc.php"] [unique_id "alZULYpJV3AxZ7HP2MN_FAAAAVg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-14 15:20:34
(6 hours ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-14 15:20:13
(6 hours ago)
(wordpress) Failed wordpress login from 160.30.104.98 (PK/Pakistan/-/-/-/[redacted])
Brute-Force
Anonymous
2026-07-14 15:18:50
(6 hours ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
๐ฉ๐ช
rh24
2026-07-13 12:55:43
(1 day ago)
(wordpress) Failed wordpress login from 160.30.104.98 (PK/Pakistan/-): (CF_ENABLE)
Brute-Force
๐ฌ๐ง
NotCool
2026-07-12 12:26:29
(2 days ago)
(XMLRPC) WP XMLPRC Attack 160.30.104.98 (PK/Pakistan/-): 50 in the last 3600 secs
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 10:38:58
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 160.30.104.98 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 160.30.104.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 06:38:51.737205 2026] [security2:error] [pid 9690:tid 9690] [client 160.30.104.98:33998] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 160.30.104.98 (+1 hits since last alert)|anthonyanimalclinic.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "anthonyanimalclinic.net"] [uri "/xmlrpc.php"] [unique_id "alNuu_uZL6cg19c_VHdHKAAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-12 09:36:39
(2 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฉ๐ช
abdubhai
2026-07-12 07:05:28
(2 days ago)
160.30.104.98 - - [12/Jul/2026:1
...
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-11 08:44:53
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 160.30.104.98 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 160.30.104.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 04:44:45.673874 2026] [security2:error] [pid 31527:tid 31527] [client 160.30.104.98:60615] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 160.30.104.98 (+1 hits since last alert)|vintageamptubes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "vintageamptubes.com"] [uri "/xmlrpc.php"] [unique_id "alICfSMfNGerzYyL8zI9BAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 13:15:39
(5 days ago)
(mod_security) mod_security (id:240335) triggered by 160.30.104.98 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 160.30.104.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 09:15:35.437622 2026] [security2:error] [pid 1727:tid 1727] [client 160.30.104.98:6630] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 160.30.104.98 (+1 hits since last alert)|nccb.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nccb.org"] [uri "/xmlrpc.php"] [unique_id "ak-e9-k2YbalwAvBNo8J9wAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ณ
dineshskt4all
2026-07-09 13:05:06
(5 days ago)
[Thu Jul 09 13:05:03.777289 2026] [proxy_fcgi:error] [pid 268643:tid 140634962761408] [client 160.30 ...
show more
[Thu Jul 09 13:05:03.777289 2026] [proxy_fcgi:error] [pid 268643:tid 140634962761408] [client 160.30.104.98:0] AH01071: Got error 'Primary script unknown'
...
show less
Brute-Force
๐ซ๐ท
bigorre.org
2026-07-08 15:41:44
(6 days ago)
Unidentified crawling: not a self-announced bot in user-agent
Bad Web Bot
๐บ๐ธ
kosada.com
2026-07-06 23:14:49
(1 week ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot