๐บ๐ธ
TPI-Abuse
2026-07-03 19:27:02
(59 minutes ago)
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 15:26:54.824052 2026] [security2:error] [pid 5726:tid 5726] [client 183.82.107.213:59861] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.107.213 (+1 hits since last alert)|aandbnaturalfoods.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "aandbnaturalfoods.com"] [uri "/xmlrpc.php"] [unique_id "akgM_prnxmWWnGWuw03rbAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
screwlooseit.com.au
2026-07-03 15:10:40
(5 hours ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
IN/India/183.82.107.213.actcorp.in
Web App Attack
๐ซ๐ท
dynamix
2026-07-03 10:14:59
(10 hours ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 07:46:16
(12 hours ago)
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 03:46:07.451422 2026] [security2:error] [pid 18145:tid 18145] [client 183.82.107.213:65387] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.107.213 (+1 hits since last alert)|acarsubscription.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "acarsubscription.com"] [uri "/xmlrpc.php"] [unique_id "akdovzFO4CXTvmyhdZ4ZhgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
alferez
2026-07-03 05:35:36
(14 hours ago)
Multiple WP Login Attack
Brute-Force
๐ช๐ธ
alferez
2026-07-03 05:11:20
(15 hours ago)
xmlrpc.php attack DOS
Hacking
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 06:05:17
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 02:05:09.085711 2026] [security2:error] [pid 9225:tid 9225] [client 183.82.107.213:52785] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.107.213 (+1 hits since last alert)|innovacionesnimba.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "innovacionesnimba.com"] [uri "/xmlrpc.php"] [unique_id "akSuFbxET2H64rRLoyAlqQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-30 07:51:13
(3 days ago)
Attac
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-29 07:14:19
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 03:14:14.166323 2026] [security2:error] [pid 18690:tid 18690] [client 183.82.107.213:53867] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.107.213 (+1 hits since last alert)|broneksuchanek.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "broneksuchanek.com"] [uri "/xmlrpc.php"] [unique_id "akIbRk5W5KmFYWaqux9MBgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 05:59:28
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 01:59:22.984064 2026] [security2:error] [pid 10649:tid 10649] [client 183.82.107.213:54179] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.107.213 (+1 hits since last alert)|nearfieldchrist.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nearfieldchrist.com"] [uri "/xmlrpc.php"] [unique_id "akIJutkSVrBLkcblIVAQhgAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-29 07:04:37
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 03:04:29.648369 2026] [security2:error] [pid 21393:tid 21393] [client 183.82.107.213:51409] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.107.213 (+1 hits since last alert)|imbrasacademic.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "imbrasacademic.com"] [uri "/xmlrpc.php"] [unique_id "ahk6fR6rafI2wdPB7BTQ3wAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-28 07:13:40
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 i ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.107.213 (183.82.107.213.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 03:13:34.947805 2026] [security2:error] [pid 22604:tid 22604] [client 183.82.107.213:56412] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.107.213 (+1 hits since last alert)|vintageamptubes.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "vintageamptubes.com"] [uri "/xmlrpc.php"] [unique_id "afBeHtps4l-TRuljh-JL9gAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-04-28 06:08:27
(2 months ago)
(wordpress) Failed wordpress login from 183.82.107.213 (IN/India/183.82.107.213.actcorp.in)
Brute-Force
๐ณ๐ฑ
Site.eu
2026-04-27 10:24:13
(2 months ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐บ๐ธ
NicoID
2026-04-25 05:58:04
(2 months ago)
183.82.107.213 - - [24/Apr/2026:23:58:02 -0600] "POST /xmlrpc.php HTTP/2.0" 200 329 "-" "Jetpack by ...
show more
183.82.107.213 - - [24/Apr/2026:23:58:02 -0600] "POST /xmlrpc.php HTTP/2.0" 200 329 "-" "Jetpack by WordPress.com"
...
show less
Brute-Force