๐บ๐ธ
WeekendWeb
2026-07-03 07:56:04
(55 minutes ago)
Wordpress Vunerability attack
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-01 11:24:24
(1 day ago)
(wordpress) Failed wordpress login from 103.79.165.106 (IN/India/-)
Brute-Force
๐ณ๐ฑ
Site.eu
2026-07-01 09:42:11
(1 day ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐ฉ๐ช
Sรฉfora Srl
2026-07-01 08:03:17
(2 days ago)
Failed attempt detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
Anonymous
2026-06-30 06:33:30
(3 days ago)
(wordpress) Failed wordpress login from 103.79.165.106 (IN/India/-)
Brute-Force
Anonymous
2026-06-26 13:02:12
(6 days ago)
Attac
Brute-Force
๐ซ๐ท
Kenshin869
2026-06-26 13:00:41
(6 days ago)
Wordpress unauthorized access attempt
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-26 12:29:54
(6 days ago)
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 08:29:46.801582 2026] [security2:error] [pid 32230:tid 32230] [client 103.79.165.106:62189] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 103.79.165.106 (+1 hits since last alert)|d-sinema.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "d-sinema.com"] [uri "/xmlrpc.php"] [unique_id "aj5wuoNIbJtkBlQA8xWNCAAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-26 10:52:42
(6 days ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-26 06:05:59
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 02:05:51.867685 2026] [security2:error] [pid 2929:tid 2929] [client 103.79.165.106:58645] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 103.79.165.106 (+1 hits since last alert)|stinsonbeachsurfandkayak.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "stinsonbeachsurfandkayak.com"] [uri "/xmlrpc.php"] [unique_id "aj4Wv0rQ2pM4n20tyTSO0QAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 05:04:59
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 01:04:55.821407 2026] [security2:error] [pid 24921:tid 24921] [client 103.79.165.106:65467] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 103.79.165.106 (+1 hits since last alert)|fishleadership.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "fishleadership.org"] [uri "/xmlrpc.php"] [unique_id "aj4Id7AuhMbRbLk8Kji2EgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 12:54:56
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 08:54:51.122438 2026] [security2:error] [pid 32386:tid 32386] [client 103.79.165.106:54943] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 103.79.165.106 (+1 hits since last alert)|schlegelcreative.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "schlegelcreative.com"] [uri "/xmlrpc.php"] [unique_id "aj0lG8lr9RFB2olm2r5KkAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 11:34:05
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 07:33:57.367209 2026] [security2:error] [pid 24074:tid 24074] [client 103.79.165.106:60890] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 103.79.165.106 (+1 hits since last alert)|ibermar.info|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ibermar.info"] [uri "/xmlrpc.php"] [unique_id "ajvApeV_eQZHzXRJCjXtzAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-24 11:33:34
(1 week ago)
[ns3.backorder.gr] httpd-xmlrpc-post: sites=iatrika-analosima.gr; logs=/var/log/httpd/domains/iatrik ...
show more
[ns3.backorder.gr] httpd-xmlrpc-post: sites=iatrika-analosima.gr; logs=/var/log/httpd/domains/iatrika-analosima.gr.log; samples=/xmlrpc.php
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-23 10:24:44
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 103.79.165.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 06:24:36.828313 2026] [security2:error] [pid 25768:tid 25768] [client 103.79.165.106:58310] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 103.79.165.106 (+1 hits since last alert)|monmouthcountydanceclasses.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "monmouthcountydanceclasses.com"] [uri "/xmlrpc.php"] [unique_id "ajpe5BTIcEjIoMTxyJAw7wAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack