๐บ๐ธ
IndigoRidge
2026-07-12 08:12:27
(2 days ago)
180.252.16.142 - - [12/Jul/2026:04:10:50 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5539 "-" "WordPress. ...
show more
180.252.16.142 - - [12/Jul/2026:04:10:50 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5539 "-" "WordPress.com; https://wordpress.com"
180.252.16.142 - - [12/Jul/2026:04:11:12 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5539 "-" "WordPress.com; https://wordpress.com"
180.252.16.142 - - [12/Jul/2026:04:12:05 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5539 "-" "WordPress.com; https://wordpress.com"
180.252.16.142 - - [12/Jul/2026:04:12:16 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5539 "-" "WordPress.com; https://wordpress.com"
180.252.16.142 - - [12/Jul/2026:04:12:26 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5539 "-" "WordPress.com; https://wordpress.com"
...
show less
Web App Attack
๐ฆ๐บ
screwlooseit.com.au
2026-07-12 06:09:49
(2 days ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
ID/Indonesia/-
Web App Attack
๐ซ๐ท
dynamix
2026-07-12 04:06:43
(2 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฆ๐บ
clapper
2026-07-11 02:09:12
(3 days ago)
(mod_security) mod_security (id:350202) triggered by 180.252.16.142 (ID/Indonesia/-): 5 in the last ...
show more
(mod_security) mod_security (id:350202) triggered by 180.252.16.142 (ID/Indonesia/-): 5 in the last 600 secs; ID: rub
show less
Brute-Force
Bad Web Bot
Anonymous
2026-07-10 19:41:46
(4 days ago)
[redacted] 180.252.16.142 - - [10/Jul/2026:21:41:03 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" " ...
show more
[redacted] 180.252.16.142 - - [10/Jul/2026:21:41:03 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.2)"
[redacted] 180.252.16.142 - - [10/Jul/2026:21:41:13 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.2)"
[redacted] 180.252.16.142 - - [10/Jul/2026:21:41:24 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)"
[redacted] 180.252.16.142 - - [10/Jul/2026:21:41:34 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.2; http://site11515525.com"
[redacted] 180.252.16.142 - - [10/Jul/2026:21:41:45 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com"
...
show less
Hacking
Web App Attack
Anonymous
2026-07-10 17:39:00
(4 days ago)
180.252.16.142 - - [10/Jul/2026:19:38:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "WordPress.c ...
show more
180.252.16.142 - - [10/Jul/2026:19:38:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "WordPress.com; https://wordpress.com"
180.252.16.142 - - [10/Jul/2026:19:38:27 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "WordPress.com; https://wordpress.com"
180.252.16.142 - - [10/Jul/2026:19:38:38 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com"
180.252.16.142 - - [10/Jul/2026:19:38:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "WordPress.com; https://wordpress.com"
180.252.16.142 - - [10/Jul/2026:19:38:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com"
...
show less
Brute-Force
Web App Attack
๐ฉ๐ช
konseptit
2026-07-10 13:54:10
(4 days ago)
(wordpress) Failed wordpress login from 180.252.16.142 (ID/Indonesia/-)
Brute-Force
๐ฆ๐บ
screwlooseit.com.au
2026-07-09 15:38:26
(5 days ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
ID/Indonesia/-
Web App Attack
Anonymous
2026-07-08 17:35:58
(6 days ago)
(wordpress) Failed wordpress login from 180.252.16.142 (ID/Indonesia/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-08 08:41:06
(6 days ago)
(mod_security) mod_security (id:240335) triggered by 180.252.16.142 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 180.252.16.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 04:41:01.207602 2026] [security2:error] [pid 3038:tid 3038] [client 180.252.16.142:22297] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 180.252.16.142 (+1 hits since last alert)|braintechsoftwaresolutions.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "braintechsoftwaresolutions.com"] [uri "/xmlrpc.php"] [unique_id "ak4NHdrGrg8aUgG6D0qSlwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WeekendWeb
2026-07-08 03:51:40
(6 days ago)
Wordpress Vunerability attack
Web App Attack
๐ฉ๐ช
rh24
2026-07-08 02:19:58
(6 days ago)
(wordpress) Failed wordpress login from 180.252.16.142 (ID/Indonesia/-): (CF_ENABLE)
Brute-Force
๐ฒ๐น
Malta
2026-07-07 11:43:07
(1 week ago)
180.252.16.142 - - [07/Jul/2026:13:43:07 +0200] "POST /xmlrpc.php HTTP/1.1" "Jetpack by WordPress.co ...
show more
180.252.16.142 - - [07/Jul/2026:13:43:07 +0200] "POST /xmlrpc.php HTTP/1.1" "Jetpack by WordPress.com"
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 05:58:26
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 180.252.16.142 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 180.252.16.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 01:58:21.074840 2026] [security2:error] [pid 24267:tid 24267] [client 180.252.16.142:58603] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 180.252.16.142 (+1 hits since last alert)|greenmountainfeeds.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "greenmountainfeeds.com"] [uri "/xmlrpc.php"] [unique_id "akyVfQM035OobzYzFoclnQAAACI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-06 11:20:32
(1 week ago)
Multiple WAF Violations
Brute-Force
Web App Attack