๐บ๐ธ
kosada.com
2026-07-12 19:37:39
(2 days ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-12 07:10:57
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 106.213.85.7 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 106.213.85.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 03:10:49.972463 2026] [security2:error] [pid 15785:tid 15808] [client 106.213.85.7:21980] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 106.213.85.7 (+1 hits since last alert)|travelusa.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "travelusa.us"] [uri "/xmlrpc.php"] [unique_id "alM9-Q17axDb8lzpey2Z3wAAARU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WeekendWeb
2026-07-12 06:49:19
(2 days ago)
Wordpress Vunerability attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 06:46:55
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 106.213.85.7 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 106.213.85.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 02:46:50.008308 2026] [security2:error] [pid 25098:tid 25098] [client 106.213.85.7:19652] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 106.213.85.7 (+1 hits since last alert)|maffiniandbearce.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "maffiniandbearce.com"] [uri "/xmlrpc.php"] [unique_id "alM4Wpm8MoccFVmt45KFSQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
screwlooseit.com.au
2026-06-20 15:31:08
(3 weeks ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
IN/India/-
Web App Attack
๐บ๐ธ
Jason Howell
2026-06-20 13:50:16
(3 weeks ago)
106.213.85.7 - - [20/Jun/2026:08:37:28 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4738 "-" "Jetpack by W ...
show more
106.213.85.7 - - [20/Jun/2026:08:37:28 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4738 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.2)"
106.213.85.7 - - [20/Jun/2026:08:43:51 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4738 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.1)"
106.213.85.7 - - [20/Jun/2026:08:46:00 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4736 "-" "Jetpack by WordPress.com"
106.213.85.7 - - [20/Jun/2026:08:48:07 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4737 "-" "Jetpack by WordPress.com"
106.213.85.7 - - [20/Jun/2026:08:50:15 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4736 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.4)"
...
show less
Web App Attack
๐ซ๐ท
dynamix
2026-06-20 06:30:55
(3 weeks ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฑ๐ป
garmtech.com
2026-06-19 14:55:21
(3 weeks ago)
IM360 WAF: Rate limit exceeded for XMLRPC DoS (fault code)
Web App Attack
Anonymous
2026-06-19 11:19:39
(3 weeks ago)
[osotir.org] httpd-xmlrpc-post: sites=logosparakliseos.gr; logs=/var/log/httpd/domains/logosparaklis ...
show more
[osotir.org] httpd-xmlrpc-post: sites=logosparakliseos.gr; logs=/var/log/httpd/domains/logosparakliseos.gr.log; samples=/xmlrpc.php
show less
Brute-Force
Web App Attack
๐บ๐ธ
lostswordfish.com
2026-06-19 09:14:04
(3 weeks ago)
Wordfence waf block on pameganslaw
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 09:19:31
(3 weeks ago)
(mod_security) mod_security (id:240335) triggered by 106.213.85.7 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 106.213.85.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 05:19:27.507629 2026] [security2:error] [pid 23412:tid 23412] [client 106.213.85.7:16034] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 106.213.85.7 (+1 hits since last alert)|seabreezeculvert.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "seabreezeculvert.com"] [uri "/xmlrpc.php"] [unique_id "ajO4Hy2VzwpY5F1VOJwLvgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-18 05:12:18
(3 weeks ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
Anonymous
2026-04-23 18:08:36
(2 months ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐ฌ๐ง
S6
2024-03-16 03:55:37
(2 years ago)
Exim Dictionary Attack
DDoS Attack
Brute-Force
๐บ๐ธ
etu brutus
2024-03-16 01:37:01
(2 years ago)
106.213.85.7 has been banned for [Control Panel abuse]
...
Hacking
Brute-Force