๐บ๐ธ
TPI-Abuse
2026-07-01 21:20:59
(2 hours ago)
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:20:54.473372 2026] [security2:error] [pid 12129:tid 12129] [client 95.174.98.226:49347] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 95.174.98.226 (+1 hits since last alert)|clayrivers.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "clayrivers.com"] [uri "/xmlrpc.php"] [unique_id "akWEtlGiL0hFAo-AJSUoOwAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-01 21:18:15
(2 hours ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 16:55:59
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 12:55:54.739615 2026] [security2:error] [pid 21093:tid 21093] [client 95.174.98.226:56494] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 95.174.98.226 (+1 hits since last alert)|starcrestsales.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "starcrestsales.com"] [uri "/xmlrpc.php"] [unique_id "akFSGrxPJkyMv6tpKwPJaQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-28 16:25:13
(3 days ago)
Attac
Brute-Force
๐ซ๐ท
dynamix
2026-06-28 14:21:09
(3 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 12:23:58
(5 days ago)
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 08:23:50.767934 2026] [security2:error] [pid 28756:tid 28756] [client 95.174.98.226:64014] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 95.174.98.226 (+1 hits since last alert)|forefrontmusic.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "forefrontmusic.com"] [uri "/xmlrpc.php"] [unique_id "aj5vVoadkw8ezvlUBqqQTQAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-25 22:17:09
(6 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 21:48:43
(6 days ago)
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 17:48:39.107595 2026] [security2:error] [pid 5339:tid 5339] [client 95.174.98.226:59828] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 95.174.98.226 (+1 hits since last alert)|desertalfas.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "desertalfas.org"] [uri "/xmlrpc.php"] [unique_id "aj2iN6PU0QQ_F6RiSDwTkwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 20:48:48
(6 days ago)
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 16:48:44.219471 2026] [security2:error] [pid 21173:tid 21186] [client 95.174.98.226:62066] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 95.174.98.226 (+1 hits since last alert)|utahhoaservices.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "utahhoaservices.com"] [uri "/xmlrpc.php"] [unique_id "aj2ULIyEvd9K-4xg40sxKQAAAEk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 00:18:13
(6 days ago)
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 20:18:05.562051 2026] [security2:error] [pid 11247:tid 11247] [client 95.174.98.226:60510] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 95.174.98.226 (+1 hits since last alert)|circleinthesquare.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "circleinthesquare.org"] [uri "/xmlrpc.php"] [unique_id "ajxzvVyibofyNk49H0Dp5AAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-24 23:16:12
(1 week ago)
(wordpress) Failed wordpress login from 95.174.98.226 (RU/Russia/-)
Brute-Force
๐ณ๐ฑ
Site.eu
2026-06-22 23:49:55
(1 week ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐บ๐ธ
lostswordfish.com
2026-06-22 17:44:04
(1 week ago)
Wordfence waf block on hope4scranton
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-21 19:59:41
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 95.174.98.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 15:59:37.051883 2026] [security2:error] [pid 4238:tid 4238] [client 95.174.98.226:56094] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 95.174.98.226 (+1 hits since last alert)|weird.eco|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "weird.eco"] [uri "/xmlrpc.php"] [unique_id "ajhCqVLjWTInfJUZyyrnlgAAAFI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-20 12:56:22
(1 week ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack