|
๐ซ๐ท
dynamix
|
|
WordPress XMLRPC Brute Force Attack
|
Brute-Force
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:240335) triggered by 150.129.28.57 (57-28-129-150.dnainfotel.com): 1 ...
show more
(mod_security) mod_security (id:240335) triggered by 150.129.28.57 (57-28-129-150.dnainfotel.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 01:56:49.467218 2026] [security2:error] [pid 3479:tid 3479] [client 150.129.28.57:51498] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 150.129.28.57 (+1 hits since last alert)|frogdesignmexico.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "frogdesignmexico.com"] [uri "/xmlrpc.php"] [unique_id "akX9ocUR65U7EIV-pOr_SQAAAAE"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
integrantservices.com
|
|
(wordpress) Failed wordpress login from 150.129.28.57 (IN/India/57-28-129-150.dnainfotel.com)
|
Brute-Force
|
|
|
๐ณ๐ฑ
BlueWire Hosting
|
|
Wordpress brute force attempt
|
Brute-Force
Web App Attack
|
|
|
๐ซ๐ท
masterguru
|
|
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
|
Hacking
|
|
|
๐ณ๐ฑ
ipoac.nl
|
|
2026-07-01T07:39:02.411476+02:00 ipoac.nl wordpress(-)-: XML-RPC authentication failure for-from 150 ...
show more
2026-07-01T07:39:02.411476+02:00 ipoac.nl wordpress(-)-: XML-RPC authentication failure for-from 150.129.28.57
show less
|
Web App Attack
|
|
|
๐ฉ๐ช
rh24
|
|
(xmlrpc_405) XMLRPC-Bot 405 150.129.28.57 (IN/India/57-28-129-150.dnainfotel.com)
|
Hacking
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:240335) triggered by 150.129.28.57 (57-28-129-150.dnainfotel.com): 1 ...
show more
(mod_security) mod_security (id:240335) triggered by 150.129.28.57 (57-28-129-150.dnainfotel.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 01:11:21.315761 2026] [security2:error] [pid 4700:tid 4700] [client 150.129.28.57:52027] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 150.129.28.57 (+1 hits since last alert)|swcbsa.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "swcbsa.org"] [uri "/xmlrpc.php"] [unique_id "akSheZPzgzchw5iFJ2-2XQAAAA0"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:240335) triggered by 150.129.28.57 (57-28-129-150.dnainfotel.com): 1 ...
show more
(mod_security) mod_security (id:240335) triggered by 150.129.28.57 (57-28-129-150.dnainfotel.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 00:53:28.378827 2026] [security2:error] [pid 29696:tid 29696] [client 150.129.28.57:61235] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 150.129.28.57 (+1 hits since last alert)|verdeprofundo.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "verdeprofundo.net"] [uri "/xmlrpc.php"] [unique_id "akSdSN4eKSJsufEz2sa7fwAAAAA"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|