๐บ๐ธ
TPI-Abuse
2026-07-02 03:38:16
(5 hours ago)
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): ...
show more
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:38:11.574436 2026] [security2:error] [pid 17411:tid 17411] [client 49.248.92.6:54530] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.248.92.6 (+1 hits since last alert)|tracytappan.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "tracytappan.net"] [uri "/xmlrpc.php"] [unique_id "akXdI6n2vt7asRpMn4Gy1wAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 11:47:35
(21 hours ago)
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): ...
show more
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 07:47:27.540125 2026] [security2:error] [pid 25085:tid 25085] [client 49.248.92.6:64832] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.248.92.6 (+1 hits since last alert)|bosdkbook.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bosdkbook.com"] [uri "/xmlrpc.php"] [unique_id "akT-T5PXNVsFYqwBA5mUugAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
ConsulHosting
2026-07-01 04:28:04
(1 day ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
๐ต๐ฑ
nfsec.pl
2026-06-30 09:40:22
(1 day ago)
Detected: TCP scan on port: 445 with flags: SYN
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-29 12:14:18
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): ...
show more
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 08:14:14.273917 2026] [security2:error] [pid 17925:tid 17925] [client 49.248.92.6:58410] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.248.92.6 (+1 hits since last alert)|avalderlaw.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "avalderlaw.com"] [uri "/xmlrpc.php"] [unique_id "akJhlj5cIqrzny0EncrWgwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
oralunal
2026-06-25 11:39:40
(6 days ago)
IP banned by Fail2Ban in jail ente-suss ente.com-ssl_log mvfnds
...
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-06-25 05:03:17
(1 week ago)
2.071 requests from abuseipdb.com blacklisted IP (4mos1w15h)
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-24 05:39:03
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): ...
show more
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 01:38:55.758306 2026] [security2:error] [pid 1883:tid 1883] [client 49.248.92.6:53755] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.248.92.6 (+1 hits since last alert)|idmadventures.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "idmadventures.com"] [uri "/xmlrpc.php"] [unique_id "ajttbx56v8s0oBcy9u1ZKQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 04:08:00
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): ...
show more
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 00:07:56.633699 2026] [security2:error] [pid 16207:tid 16207] [client 49.248.92.6:62159] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.248.92.6 (+1 hits since last alert)|yanlidesign.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "yanlidesign.com"] [uri "/xmlrpc.php"] [unique_id "ajtYHIOn_8q1lqCma_3GVAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-06-22 12:20:21
(1 week ago)
(wordpress) Failed wordpress login from 49.248.92.6 (IN/India/static-6.92.248.49-tataidc.co.in)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-22 07:39:07
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): ...
show more
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 03:39:01.725366 2026] [security2:error] [pid 13722:tid 13722] [client 49.248.92.6:65033] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.248.92.6 (+1 hits since last alert)|theamarals.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "theamarals.com"] [uri "/xmlrpc.php"] [unique_id "ajjmlTvoYDyrXSNET1VGdQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-22 07:06:17
(1 week ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-22 05:05:00
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): ...
show more
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 01:04:52.262324 2026] [security2:error] [pid 10200:tid 10200] [client 49.248.92.6:64051] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.248.92.6 (+1 hits since last alert)|technesa.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "technesa.com"] [uri "/xmlrpc.php"] [unique_id "ajjCdDgOb8DsfOgq_QKoYQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 09:03:26
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): ...
show more
(mod_security) mod_security (id:240335) triggered by 49.248.92.6 (static-6.92.248.49-tataidc.co.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 05:03:20.997446 2026] [security2:error] [pid 16776:tid 16776] [client 49.248.92.6:53017] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.248.92.6 (+1 hits since last alert)|eftekharschool.ir|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "eftekharschool.ir"] [uri "/xmlrpc.php"] [unique_id "ajUF2LLMJS-8SFg9F7BVfwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-19 07:30:03
(1 week ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH