๐บ๐ธ
TPI-Abuse
2026-07-09 21:05:30
(4 hours ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 17:05:27.362832 2026] [security2:error] [pid 3179:tid 3193] [client 190.98.205.98:62540] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|duplexgoldmine.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "duplexgoldmine.com"] [uri "/xmlrpc.php"] [unique_id "alANF3pTUizw01L_Fj1oxwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 20:35:53
(5 hours ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 16:35:48.234245 2026] [security2:error] [pid 621:tid 621] [client 190.98.205.98:62230] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|furbabieslivesmatter.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "furbabieslivesmatter.com"] [uri "/xmlrpc.php"] [unique_id "alAGJJYTHO9pm7g4kUt_NwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 15:10:28
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 11:10:23.989039 2026] [security2:error] [pid 2795:tid 2795] [client 190.98.205.98:51033] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|bevensangi.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bevensangi.com"] [uri "/xmlrpc.php"] [unique_id "ak5oXwaKiOwXTl5YWX8nKwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WeekendWeb
2026-07-06 20:46:17
(3 days ago)
Wordpress Vunerability attack
Web App Attack
Anonymous
2026-07-03 16:59:33
(6 days ago)
(wordpress) Failed wordpress login from 190.98.205.98 (CL/Chile/outip.penalolen.cl)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-03 14:15:22
(6 days ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 10:15:16.930576 2026] [security2:error] [pid 19091:tid 19091] [client 190.98.205.98:53687] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|kompareiq.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kompareiq.com"] [uri "/xmlrpc.php"] [unique_id "akfD9PVQWyw0shx_-gCu8gAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-02 20:29:21
(1 week ago)
190.98.205.98 - - [02/Jul/2026:22:29:00 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.co ...
show more
190.98.205.98 - - [02/Jul/2026:22:29:00 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com"
190.98.205.98 - - [02/Jul/2026:22:29:00 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com"
190.98.205.98 - - [02/Jul/2026:22:29:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com"
190.98.205.98 - - [02/Jul/2026:22:29:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com"
190.98.205.98 - - [02/Jul/2026:22:29:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.1)"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 22:04:33
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 18:04:30.442145 2026] [security2:error] [pid 26688:tid 26688] [client 190.98.205.98:59045] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|kotelbarmitzvah.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kotelbarmitzvah.com"] [uri "/xmlrpc.php"] [unique_id "akWO7pJWl1of54SW4gPJXQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-07-01 20:36:55
(1 week ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 19:32:27
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 15:32:19.650289 2026] [security2:error] [pid 11671:tid 11671] [client 190.98.205.98:56037] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|arsenalfordemocracy.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "arsenalfordemocracy.com"] [uri "/xmlrpc.php"] [unique_id "akVrQwzxYm7RTlCFSqukBQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 13:21:42
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 09:21:35.344167 2026] [security2:error] [pid 17945:tid 17945] [client 190.98.205.98:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|avaliantlife.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "avaliantlife.com"] [uri "/xmlrpc.php"] [unique_id "akUUX9IEw-1NE_kacixAJwAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 17:03:33
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 13:03:26.137776 2026] [security2:error] [pid 22024:tid 22024] [client 190.98.205.98:57738] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|laecovillage.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "laecovillage.org"] [uri "/xmlrpc.php"] [unique_id "akP23nbCsQo6J7lNJArz3wAAAE8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 16:51:01
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 12:50:56.642746 2026] [security2:error] [pid 8230:tid 8230] [client 190.98.205.98:58453] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|studioyau.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "studioyau.com"] [uri "/xmlrpc.php"] [unique_id "aj6t8PpyYqEzxM5qj2xNZQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 16:27:07
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 12:27:01.102259 2026] [security2:error] [pid 29080:tid 29080] [client 190.98.205.98:56373] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|lemoulinavent.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lemoulinavent.org"] [uri "/xmlrpc.php"] [unique_id "ajwFVZ8m7iDqUYJqjd_6iAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-23 18:52:51
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the la ...
show more
(mod_security) mod_security (id:240335) triggered by 190.98.205.98 (outip.penalolen.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 14:52:48.370500 2026] [security2:error] [pid 6568:tid 6568] [client 190.98.205.98:60314] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 190.98.205.98 (+1 hits since last alert)|stantontownship.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "stantontownship.org"] [uri "/xmlrpc.php"] [unique_id "ajrWAMs9QE1wlKZOntUuZgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack