Anonymous
2026-07-07 06:41:13
(2 days ago)
(wordpress) Failed wordpress login from 150.129.168.13 (IN/India/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-07 06:12:21
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 02:12:13.779389 2026] [security2:error] [pid 28196:tid 28196] [client 150.129.168.13:44175] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 150.129.168.13 (+1 hits since last alert)|lakependoreillemobility.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lakependoreillemobility.com"] [uri "/xmlrpc.php"] [unique_id "akyYvZZgrtgh3RwBzXw78wAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-07 02:28:15
(2 days ago)
Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 06:13:28
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 02:13:20.861191 2026] [security2:error] [pid 10615:tid 10615] [client 150.129.168.13:43839] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 150.129.168.13 (+1 hits since last alert)|londongroup.info|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "londongroup.info"] [uri "/xmlrpc.php"] [unique_id "aktHgMTgLmwhMYcEdhj9XgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-06 05:56:12
(3 days ago)
(PERMBLOCK) 150.129.168.13 (IN/India/-) has had more than 4 temp blocks
Hacking
๐บ๐ธ
Mundo Bueno
2026-07-06 05:09:32
(3 days ago)
[ISILIA Protection v2.1] Tentative d'accรจs: /xmlrpc.php | Pays: IN | UA: Mozilla/5.0 (Linux; Android ...
show more
[ISILIA Protection v2.1] Tentative d'accรจs: /xmlrpc.php | Pays: IN | UA: Mozilla/5.0 (Linux; Android 10; x86) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/87.0.0.0 Safari/
show less
Hacking
Web App Attack
๐ซ๐ท
LRob
2026-07-06 03:15:38
(3 days ago)
CrowdSec: crowdsecurity/http-bf-wordpress_bf_xmlrpc | req: ["/xmlrpc.php"] | UA: ["Jetpack by WordPr ...
show more
CrowdSec: crowdsecurity/http-bf-wordpress_bf_xmlrpc | req: ["/xmlrpc.php"] | UA: ["Jetpack by WordPress.com","Jetpack/12.0; WordPress/6.2; http://site13127784.com","Jetpack/12.1; WordPress/6.1; http://site27340553.com"]
show less
Brute-Force
Web App Attack
๐ฉ๐ช
F242
2026-07-06 03:15:00
(3 days ago)
Wordpress Login or XMLRPC abuse
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 23:13:39
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 19:13:33.870577 2026] [security2:error] [pid 13661:tid 13661] [client 150.129.168.13:43852] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 150.129.168.13 (+1 hits since last alert)|bigholegolf.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bigholegolf.com"] [uri "/xmlrpc.php"] [unique_id "akrlHRZTZUBv_cA866VJ0QAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-05 08:29:08
(4 days ago)
(wordpress) Failed wordpress login from 150.129.168.13 (IN/India/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-05 06:16:00
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 02:15:54.683017 2026] [security2:error] [pid 983:tid 983] [client 150.129.168.13:43642] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 150.129.168.13 (+1 hits since last alert)|thereisaplaceonearth.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "thereisaplaceonearth.com"] [uri "/xmlrpc.php"] [unique_id "akn2mip_Y6tosNRucQTEPAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-05 05:04:15
(4 days ago)
[ns31.kdns.gr] httpd-xmlrpc-post: sites=www.esperohotel.gr; logs=/var/log/httpd/domains/esperohotel. ...
show more
[ns31.kdns.gr] httpd-xmlrpc-post: sites=www.esperohotel.gr; logs=/var/log/httpd/domains/esperohotel.gr.log; samples=/xmlrpc.php
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 04:01:54
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 150.129.168.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 00:01:49.057136 2026] [security2:error] [pid 16776:tid 16776] [client 150.129.168.13:44045] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 150.129.168.13 (+1 hits since last alert)|varnadorefamily.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "varnadorefamily.com"] [uri "/xmlrpc.php"] [unique_id "aknXLfQBOwvvBvE3dBNw9QAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
masterguru
2026-07-05 03:00:32
(4 days ago)
(xmlrpc) Failed xmlrpc access from 150.129.168.13 (IN/India/-): 5 in the last 3600 secs (0-122)
Hacking
๐ฉ๐ช
konseptit
2026-07-05 01:57:00
(4 days ago)
(wordpress) Failed wordpress login from 150.129.168.13 (IN/India/-)
Brute-Force