๐บ๐ธ
Victor Lรณpez
2026-07-04 11:32:11
(3 days ago)
babystudio4d.com 112.134.154.200 - - [04/Jul/2026:06:31:51 -0500] "POST /xmlrpc.php HTTP/1.1" 200 41 ...
show more
babystudio4d.com 112.134.154.200 - - [04/Jul/2026:06:31:51 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "WordPress.com; https://wordpress.com"
babystudio4d.com 112.134.154.200 - - [04/Jul/2026:06:32:01 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Jetpack/13.0; WordPress/6.4; http://site75440705.com"
babystudio4d.com 112.134.154.200 - - [04/Jul/2026:06:32:11 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Jetpack/12.5; WordPress/6.1; http://site43417118.com"
...
show less
Hacking
Web App Attack
๐ฉ๐ช
F242
2026-07-04 10:00:41
(3 days ago)
Wordpress soft lock
Web App Attack
๐ฉ๐ช
Marc
2026-07-04 07:57:13
(3 days ago)
112.134.154.200 - - [04/Jul/2026:09:56:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3456 "-" "Jetpack/1 ...
show more
112.134.154.200 - - [04/Jul/2026:09:56:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3456 "-" "Jetpack/12.0; WordPress/6.4; http://site65231775.com" 112.134.154.200 - - [04/Jul/2026:09:57:00 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3455 "-" "Jetpack/12.5; WordPress/6.4; http://site78842696.com" 112.134.154.200 - - [04/Jul/2026:09:57:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3455 "-" "WordPress.com; https://wordpress.com"
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 05:16:29
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 112.134.154.200 (v4.dns.slt.lk): 1 in the last ...
show more
(mod_security) mod_security (id:240335) triggered by 112.134.154.200 (v4.dns.slt.lk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 01:16:24.411690 2026] [security2:error] [pid 25500:tid 25500] [client 112.134.154.200:52507] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 112.134.154.200 (+1 hits since last alert)|tenmenband.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "tenmenband.com"] [uri "/xmlrpc.php"] [unique_id "akiXKNK6BUFzr67kJbVzhAAAAGM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
rh24
2026-07-03 12:18:03
(4 days ago)
(xmlrpc_405) XMLRPC-Bot 405 112.134.154.200 (LK/Sri Lanka/v4.dns.slt.lk)
Hacking
๐ฒ๐พ
Rizzy
2026-07-03 09:44:15
(4 days ago)
Multiple WAF Violations
Brute-Force
Web App Attack
Anonymous
2026-07-03 07:44:14
(4 days ago)
Attac
Brute-Force
๐ซ๐ท
dynamix
2026-07-03 06:33:39
(4 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 12:18:42
(6 days ago)
(mod_security) mod_security (id:225170) triggered by 112.134.154.200 (v4.dns.slt.lk): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 112.134.154.200 (v4.dns.slt.lk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 08:18:34.772667 2026] [security2:error] [pid 32550:tid 32550] [client 112.134.154.200:52851] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||feministvoice.blog|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "feministvoice.blog"] [uri "/wp-json/wp/v2/users"] [unique_id "akUFmnDYVWURn620qtUVBgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
stinpriza
2026-07-01 12:14:53
(6 days ago)
Web App Attack
Web App Attack
Anonymous
2026-07-01 09:55:11
(6 days ago)
Attac
Brute-Force
๐ซ๐ท
masterguru
2026-07-01 09:53:43
(6 days ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
๐ซ๐ท
dynamix
2026-07-01 04:16:39
(1 week ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 10:44:43
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 112.134.154.200 (v4.dns.slt.lk): 1 in the last ...
show more
(mod_security) mod_security (id:240335) triggered by 112.134.154.200 (v4.dns.slt.lk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 06:44:36.424862 2026] [security2:error] [pid 4353:tid 4358] [client 112.134.154.200:53246] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 112.134.154.200 (+1 hits since last alert)|eceinal.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "eceinal.com"] [uri "/xmlrpc.php"] [unique_id "akOeFEqWrTlXb6hcIztXUgAAAEI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 08:03:31
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 112.134.154.200 (v4.dns.slt.lk): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 112.134.154.200 (v4.dns.slt.lk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 04:03:24.607850 2026] [security2:error] [pid 25105:tid 25111] [client 112.134.154.200:52107] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||browbrew.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "browbrew.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akN4TMA-FClF9eGdmZeSEQAAAEM"]
show less
Brute-Force
Bad Web Bot
Web App Attack