๐บ๐ธ
TPI-Abuse
2026-07-03 08:07:15
(6 hours ago)
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): ...
show more
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:07:09.144041 2026] [security2:error] [pid 14282:tid 14282] [client 86.98.89.70:62808] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 86.98.89.70 (+1 hits since last alert)|jimrichardart.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jimrichardart.com"] [uri "/xmlrpc.php"] [unique_id "akdtrf29tSD42MwlpjAsfQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 06:03:52
(9 hours ago)
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): ...
show more
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 02:03:46.550665 2026] [security2:error] [pid 7156:tid 7156] [client 86.98.89.70:50182] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 86.98.89.70 (+1 hits since last alert)|iconconstructors.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "iconconstructors.com"] [uri "/xmlrpc.php"] [unique_id "akdQwpa0zvPkqI3AZq6quAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
QT
2026-07-03 02:46:57
(12 hours ago)
Unauthorised WordPress admin login attempted at 2026-07-03 12:46:55 +1000
Web App Attack
Anonymous
2026-07-03 01:49:05
(13 hours ago)
Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1
Hacking
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-02 22:34:43
(16 hours ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 19:48:05
(19 hours ago)
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): ...
show more
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 15:47:58.032042 2026] [security2:error] [pid 10290:tid 10329] [client 86.98.89.70:58796] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 86.98.89.70 (+1 hits since last alert)|sweeneyzone.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "sweeneyzone.com"] [uri "/xmlrpc.php"] [unique_id "akbAbq3-ipHKzA4nHLZRAwAAAEM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 15:18:16
(23 hours ago)
(mod_security) mod_security (id:225170) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): ...
show more
(mod_security) mod_security (id:225170) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 11:18:10.177558 2026] [security2:error] [pid 15865:tid 15865] [client 86.98.89.70:59661] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||nextlevelcharge.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nextlevelcharge.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akaBMuJoORW0bY6J9kJItQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-02 14:47:37
(1 day ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฉ๐ช
dbmwebdesign
2026-07-02 00:20:50
(1 day ago)
Repeated attacks detected by Fail2Ban in recidive jail
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-01 21:08:23
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): ...
show more
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:08:17.159978 2026] [security2:error] [pid 5702:tid 5702] [client 86.98.89.70:62361] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 86.98.89.70 (+1 hits since last alert)|dalessalesandservice.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "dalessalesandservice.com"] [uri "/xmlrpc.php"] [unique_id "akWBwfXHhLL_F6zaCuxVFAAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
dbmwebdesign
2026-07-01 11:00:47
(2 days ago)
WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 10:59:18
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): ...
show more
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 06:59:11.923014 2026] [security2:error] [pid 15010:tid 15010] [client 86.98.89.70:55596] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 86.98.89.70 (+1 hits since last alert)|iostation.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "iostation.com"] [uri "/xmlrpc.php"] [unique_id "akTy_1zi2BmHl7N1im9v0wAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 09:46:32
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): ...
show more
(mod_security) mod_security (id:240335) triggered by 86.98.89.70 (bba-86-98-89-70.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 05:46:23.838170 2026] [security2:error] [pid 22313:tid 22313] [client 86.98.89.70:55515] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 86.98.89.70 (+1 hits since last alert)|starcrestsales.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "starcrestsales.com"] [uri "/xmlrpc.php"] [unique_id "akTh78HBUvJduoXX7hU8wAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-01 06:41:02
(2 days ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ช๐ธ
masterguru
2026-07-01 06:13:25
(2 days ago)
(xmlrpc) Failed xmlrpc access from 86.98.89.70 (AE/United Arab Emirates/bba-86-98-89-70.alshamil.net ...
show more
(xmlrpc) Failed xmlrpc access from 86.98.89.70 (AE/United Arab Emirates/bba-86-98-89-70.alshamil.net.ae): 5 in the last 3600 secs (0-122)
show less
Hacking