๐บ๐ธ
TPI-Abuse
2026-06-28 05:29:42
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 140.235.171.135 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 140.235.171.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 01:29:38.579679 2026] [security2:error] [pid 7408:tid 7408] [client 140.235.171.135:36259] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||gamepart.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gamepart.com"] [uri "/home/tancedi1/gamepart.com"] [unique_id "akCxQjcZJauzhibkI4A2bQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-21 12:01:27
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 140.235.171.135 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210350) triggered by 140.235.171.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 21 08:01:19.135542 2026] [security2:error] [pid 20221:tid 20221] [client 140.235.171.135:52445] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||manaplas.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "manaplas.com"] [uri "/wp-login.php"] [unique_id "aednD-oQYPKFhnPQGAskpQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
voormedia
2026-04-04 00:26:18
(3 months ago)
Accessed trap at '/xmlrpc.php'
Web App Attack
๐ฉ๐ช
MusicLibrary
2026-04-02 20:01:47
(3 months ago)
Attempted access to non existent wordpress urls
Bad Web Bot
๐ช๐ธ
el-brujo
2026-03-31 05:52:21
(3 months ago)
Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ...
show more
Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:141.0) Gecko/20100101 Firefox/141.0 Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-03-31T05:52:21Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐ฉ๐ช
MusicLibrary
2026-03-22 21:09:57
(3 months ago)
Attempted access to non existent wordpress urls
Bad Web Bot
Anonymous
2026-03-19 22:13:46
(3 months ago)
"POST /xmlrpc.php HTTP/1.1"
Hacking
Web App Attack
๐ญ๐บ
zolav8
2026-03-19 02:12:27
(3 months ago)
Website registration form spam (honeypot)
Web Spam
๐ช๐ธ
el-brujo
2026-03-17 05:17:03
(3 months ago)
Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Chrome/ ...
show more
Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Chrome/99.9 Safari/539.59 Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: GET Timestamp: 2026-03-17T05:17:03Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐ฎ๐ฉ
BPS-StatisticsIndonesia
2026-03-16 05:16:50
(3 months ago)
XML RPC Scan Activities: "2026-03-16T12:16:50.682+07:00" "/xmlrpc.php" "140.235.171.135" "Mozilla/5. ...
show more
XML RPC Scan Activities: "2026-03-16T12:16:50.682+07:00" "/xmlrpc.php" "140.235.171.135" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:141.0) Gecko/20100101 Firefox/141.0"
show less
Web App Attack
Brute-Force
๐ฎ๐ฉ
BPS-StatisticsIndonesia
2026-03-14 07:23:22
(3 months ago)
XML RPC Scan Activities: "2026-03-14T14:23:22.892+07:00" "/xmlrpc.php" "140.235.171.135" "AppleWebKi ...
show more
XML RPC Scan Activities: "2026-03-14T14:23:22.892+07:00" "/xmlrpc.php" "140.235.171.135" "AppleWebKit/538.38 (KHTML, like Gecko111)"
show less
Web App Attack
Brute-Force
๐ฉ๐ช
LRob
2026-03-05 16:15:13
(4 months ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
๐บ๐ธ
Penny Packer
2026-03-04 04:03:12
(4 months ago)
Fail2Ban apache-tripwires
Web App Attack
๐น๐ท
rtbh.com.tr
2025-10-31 20:09:40
(8 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
๐น๐ท
rtbh.com.tr
2025-10-31 00:09:38
(8 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force