Anonymous
2026-07-06 20:05:42
(14 hours ago)
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-06 17:14:24
(17 hours ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฉ๐ช
stinpriza
2026-07-06 13:54:30
(20 hours ago)
Web App Attack
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 13:19:55
(21 hours ago)
(mod_security) mod_security (id:240335) triggered by 138.0.150.164 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 138.0.150.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 09:19:48.913919 2026] [security2:error] [pid 6396:tid 6396] [client 138.0.150.164:42359] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 138.0.150.164 (+1 hits since last alert)|certifiedfarmersmarkets.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "certifiedfarmersmarkets.org"] [uri "/xmlrpc.php"] [unique_id "akurdO6u2YF_K4XbqtxozwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-06 13:02:08
(21 hours ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-06 12:17:51
(22 hours ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐บ๐ธ
anon333
2026-07-06 08:06:07
(1 day ago)
Invalid probes to web server T0406
Hacking
Exploited Host
๐ณ๐ฑ
debestelapp
2026-07-06 07:55:05
(1 day ago)
Web App Attack
๐ฉ๐ช
rh24
2026-07-06 07:40:51
(1 day ago)
(xmlrpc_405) XMLRPC-Bot 405 138.0.150.164 (BR/Brazil/-)
Hacking
๐บ๐ธ
anon333
2026-07-06 07:33:31
(1 day ago)
Hacker syslog review 1783323210
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-06 02:44:11
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 138.0.150.164 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 138.0.150.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 22:44:06.532791 2026] [security2:error] [pid 4124:tid 4124] [client 138.0.150.164:42310] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 138.0.150.164 (+1 hits since last alert)|websitesforauthors.design|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "websitesforauthors.design"] [uri "/xmlrpc.php"] [unique_id "aksWdv-cAtsRWkpwtC2riAAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 00:11:50
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 138.0.150.164 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 138.0.150.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 20:11:42.990855 2026] [security2:error] [pid 7751:tid 7803] [client 138.0.150.164:43050] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 138.0.150.164 (+1 hits since last alert)|amazinglips.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "amazinglips.com"] [uri "/xmlrpc.php"] [unique_id "akryvuKuh4Qhc-KbuiwI2AAAAY4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 23:08:09
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 138.0.150.164 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 138.0.150.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 19:08:01.805128 2026] [security2:error] [pid 2150:tid 2150] [client 138.0.150.164:42572] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 138.0.150.164 (+1 hits since last alert)|yerevanpress.am|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "yerevanpress.am"] [uri "/xmlrpc.php"] [unique_id "akrj0bCCUZFULjGSXxmN2QAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ช
konseptit
2026-07-05 00:10:46
(2 days ago)
(wordpress) Failed wordpress login from 138.0.150.164 (BR/Brazil/-)
Brute-Force
๐ช๐ธ
alferez
2026-07-04 18:36:21
(2 days ago)
xmlrpc.php attack DOS
Hacking
Exploited Host
Web App Attack