๐บ๐ธ
TPI-Abuse
2026-07-02 03:12:38
(40 minutes ago)
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:12:24.841031 2026] [security2:error] [pid 21981:tid 21981] [client 36.70.92.217:55562] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 36.70.92.217 (+1 hits since last alert)|guarinofurnituredesigns.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "guarinofurnituredesigns.com"] [uri "/xmlrpc.php"] [unique_id "akXXGKRBDQOG1YizqXRGVQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 23:50:03
(4 hours ago)
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 19:49:47.737206 2026] [security2:error] [pid 22768:tid 22768] [client 36.70.92.217:15853] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 36.70.92.217 (+1 hits since last alert)|stantontownship.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "stantontownship.org"] [uri "/xmlrpc.php"] [unique_id "akWnm18IyecGjc82rkXv8wAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 21:03:38
(6 hours ago)
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:03:25.498473 2026] [security2:error] [pid 29020:tid 29020] [client 36.70.92.217:49594] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 36.70.92.217 (+1 hits since last alert)|telecompros.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "telecompros.net"] [uri "/xmlrpc.php"] [unique_id "akWAnXhRWdWt2EPQGiDW9AAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-01 13:37:43
(14 hours ago)
36.70.92.217 - - [01/Jul/2026:15:37:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com ...
show more
36.70.92.217 - - [01/Jul/2026:15:37:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com"
36.70.92.217 - - [01/Jul/2026:15:37:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com"
36.70.92.217 - - [01/Jul/2026:15:37:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)"
36.70.92.217 - - [01/Jul/2026:15:37:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)"
36.70.92.217 - - [01/Jul/2026:15:37:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 06:00:35
(21 hours ago)
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 02:00:19.917665 2026] [security2:error] [pid 7346:tid 7346] [client 36.70.92.217:34021] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 36.70.92.217 (+1 hits since last alert)|psychiatryabuse.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "psychiatryabuse.com"] [uri "/xmlrpc.php"] [unique_id "akSs8_Vf9aUzx7gUc6YcfwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
AWW-Admin
2026-07-01 05:57:40
(21 hours ago)
(wordpress) Failed wordpress login from 36.70.92.217 (ID/Indonesia/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-01 05:29:11
(22 hours ago)
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 01:28:54.343579 2026] [security2:error] [pid 26374:tid 26374] [client 36.70.92.217:15671] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 36.70.92.217 (+1 hits since last alert)|cycontechnology.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cycontechnology.com"] [uri "/xmlrpc.php"] [unique_id "akSllvZfc8AsAPQOXdBGVAAAACk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 03:57:54
(23 hours ago)
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 23:57:41.583378 2026] [security2:error] [pid 24462:tid 24462] [client 36.70.92.217:58110] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 36.70.92.217 (+1 hits since last alert)|drwolberg.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "drwolberg.com"] [uri "/xmlrpc.php"] [unique_id "akSQNZi77rdRZS7v28zu-AAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 03:09:46
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 36.70.92.217 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 23:09:30.777593 2026] [security2:error] [pid 17393:tid 17393] [client 36.70.92.217:62141] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cajunpicasso.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cajunpicasso.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akSE6qNe6GcuWzmT70kGAQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
syokadmin
2021-08-18 23:43:39
(4 years ago)
(mod_security) mod_security (id:949110) triggered by 36.70.92.217 (ID/Indonesia/-): 1 in the last 36 ...
show more
(mod_security) mod_security (id:949110) triggered by 36.70.92.217 (ID/Indonesia/-): 1 in the last 3600 secs
show less
Brute-Force
๐บ๐ธ
www.serverprotection.dev
2021-07-05 07:56:38
(4 years ago)
Attempt to access port 22 by IP 36.70.92.217
Port Scan