๐ณ๐ฟ
Antinson
2026-07-15 15:04:39
(3 days ago)
Scraping with a high error ratio and request rate
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-04 22:32:08
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 98.98.9.22 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 98.98.9.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 18:32:01.715865 2026] [security2:error] [pid 21731:tid 21731] [client 98.98.9.22:50962] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 98.98.9.22 (+1 hits since last alert)|thesalonx.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "thesalonx.com"] [uri "/xmlrpc.php"] [unique_id "akmJ4TRfvW4FPndIS4qdOAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
sshtmp
2026-05-20 00:26:08
(1 month ago)
[AbuseIPDB auto-report]
Attack: WordPress XML-RPC brute-force
Hits: 210 | First: 2026-05-19T23:44:54 ...
show more
[AbuseIPDB auto-report]
Attack: WordPress XML-RPC brute-force
Hits: 210 | First: 2026-05-19T23:44:54+02:00 | Last: 2026-05-20T02:26:08+02:00
Samples: POST /xmlrpc.php [200]
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-19 23:47:23
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 98.98.9.22 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 98.98.9.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 19:47:17.649972 2026] [security2:error] [pid 3864:tid 3864] [client 98.98.9.22:59934] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 98.98.9.22 (+1 hits since last alert)|odysseydogasporlari.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "odysseydogasporlari.com"] [uri "/xmlrpc.php"] [unique_id "agz2hZ_jccZxVW8zFChsSAAAACg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-19 22:02:08
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 98.98.9.22 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 98.98.9.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 18:02:04.929121 2026] [security2:error] [pid 16870:tid 16870] [client 98.98.9.22:62085] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 98.98.9.22 (+1 hits since last alert)|thesalonx.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "thesalonx.com"] [uri "/xmlrpc.php"] [unique_id "agzd3DaPxRw0NQXntdWL2QAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-12 17:14:40
(5 months ago)
(mod_security) mod_security (id:240335) triggered by 98.98.9.22 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 98.98.9.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:14:35.022049 2026] [security2:error] [pid 14676:tid 14676] [client 98.98.9.22:55439] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 98.98.9.22 (+1 hits since last alert)|www.goddesskink.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.goddesskink.com"] [uri "/new/xmlrpc.php"] [unique_id "aY4Ke92PS3YqHCqJO3PRQQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-01-27 04:30:25
(5 months ago)
Failed login attempt detected by Fail2Ban in plesk-postfix jail
Brute-Force
๐บ๐ธ
threatintelligence_bvc
2026-01-26 22:14:34
(5 months ago)
Brute-Force
๐ฉ๐ช
mondor.ro
2026-01-26 20:12:41
(5 months ago)
Cluster member 148.251.176.225 (DE/Germany/antares.webyouridea.ro) said, DENY 98.98.9.22, Reason:[(s ...
show more
Cluster member 148.251.176.225 (DE/Germany/antares.webyouridea.ro) said, DENY 98.98.9.22, Reason:[(smtpauth) Failed SMTP AUTH login from 98.98.9.22 (CL/Chile/-): 3 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER; Logs:
show less
Port Scan
Anonymous
2026-01-26 19:36:19
(5 months ago)
(smtpauth) Failed SMTP AUTH login from 98.98.9.22 (CL/Chile/-)
Brute-Force
Anonymous
2025-10-20 16:20:26
(8 months ago)
Ports: 25,2525,110,143,993,995; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH