๐บ๐ธ
TPI-Abuse
2026-07-10 07:08:41
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 03:08:35.220743 2026] [security2:error] [pid 6226:tid 6226] [client 182.2.165.152:62791] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 182.2.165.152 (+1 hits since last alert)|univey.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "univey.com"] [uri "/xmlrpc.php"] [unique_id "alCacw1K_qNyQulr5nPKBwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-10 03:42:10
(3 days ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-10 02:12:12
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 22:12:05.505357 2026] [security2:error] [pid 23501:tid 23529] [client 182.2.165.152:61091] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 182.2.165.152 (+1 hits since last alert)|pilargarciamanzanares.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pilargarciamanzanares.com"] [uri "/xmlrpc.php"] [unique_id "alBU9R06-gIVwq6xUrIH_wAAAIU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-09 09:59:31
(3 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 07:59:28
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 03:59:24.052398 2026] [security2:error] [pid 16176:tid 16176] [client 182.2.165.152:56780] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 182.2.165.152 (+1 hits since last alert)|shhcenter.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "shhcenter.com"] [uri "/xmlrpc.php"] [unique_id "ak9U3HM5YE3w5n8iteU9nQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ญ๐บ
bcsaba
2026-05-26 09:20:48
(1 month ago)
Repeated request on blocked xmlrpc.php.
182.2.165.152 - - [26/May/2026:11:20:46 +0200] "POST /xmlrpc ...
show more
Repeated request on blocked xmlrpc.php.
182.2.165.152 - - [26/May/2026:11:20:46 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Jetpack by WordPress.com"
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-26 06:52:54
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 02:52:48.753749 2026] [security2:error] [pid 32575:tid 32575] [client 182.2.165.152:60566] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 182.2.165.152 (+1 hits since last alert)|midwayisland.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "midwayisland.com"] [uri "/xmlrpc.php"] [unique_id "ahVDQPZdbgnoJYWS4LKtxwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-26 02:47:11
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 182.2.165.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 22:47:03.739844 2026] [security2:error] [pid 9000:tid 9000] [client 182.2.165.152:49804] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 182.2.165.152 (+1 hits since last alert)|thepercussionworks.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "thepercussionworks.com"] [uri "/xmlrpc.php"] [unique_id "ahUJp9Kya0rHRFcY-X3A-QAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-26 01:43:10
(1 month ago)
Attac
Brute-Force
๐ฉ๐ช
grassau.com
2026-05-26 01:42:22
(1 month ago)
(wordpress) Failed wordpress login from 182.2.165.152 (ID/Indonesia/Jakarta/North Jakarta/-)
Brute-Force
Anonymous
2025-05-10 18:05:57
(1 year ago)
Malicious activity detected
Hacking
Web App Attack
Anonymous
2025-04-18 06:30:20
(1 year ago)
SMTP Bruteforce
Brute-Force