๐ซ๐ท
dynamix
2026-07-03 12:27:27
(13 hours ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
Anonymous
2026-06-25 11:37:10
(1 week ago)
Attac
Brute-Force
Anonymous
2026-06-19 11:50:10
(2 weeks ago)
Attac
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-08 04:29:07
(3 weeks ago)
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in th ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 00:29:02.684701 2026] [security2:error] [pid 30418:tid 30418] [client 183.82.7.212:61461] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.7.212 (+1 hits since last alert)|gasoilliquidsdaily.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gasoilliquidsdaily.com"] [uri "/xmlrpc.php"] [unique_id "aiZFDkJH7Qa6Z3zUpT-vLQAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
maxxsense
2026-06-08 04:26:51
(3 weeks ago)
(wordpress) Failed wordpress login from 183.82.7.212 (IN/India/183.82.7.212.actcorp.in)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-05 12:51:27
(4 weeks ago)
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in th ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 08:51:22.616992 2026] [security2:error] [pid 12638:tid 12638] [client 183.82.7.212:62242] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.7.212 (+1 hits since last alert)|cienmalos.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cienmalos.com"] [uri "/xmlrpc.php"] [unique_id "aiLGShxcdMuDbJvLhA2mpgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 05:19:03
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in th ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 01:18:54.118108 2026] [security2:error] [pid 13844:tid 13844] [client 183.82.7.212:62535] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.7.212 (+1 hits since last alert)|citrineartstudio.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "citrineartstudio.com"] [uri "/xmlrpc.php"] [unique_id "ah5nvt6iqe3KpblAWAYrIwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-01 13:41:35
(1 month ago)
[ns41.kdns.gr] httpd-xmlrpc-post: sites=basoukeasmd.gr; logs=/var/log/httpd/domains/basoukeasmd.gr.l ...
show more
[ns41.kdns.gr] httpd-xmlrpc-post: sites=basoukeasmd.gr; logs=/var/log/httpd/domains/basoukeasmd.gr.log; samples=/xmlrpc.php
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-01 11:39:38
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in th ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 07:39:34.178258 2026] [security2:error] [pid 7096:tid 7170] [client 183.82.7.212:58925] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.7.212 (+1 hits since last alert)|hooknpatch.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hooknpatch.com"] [uri "/xmlrpc.php"] [unique_id "ah1vdj1Un6TF_TSgyDVhxQAAAEU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-06-01 10:37:17
(1 month ago)
(xmlrpc) Apache: Failed xmlrpc access from 183.82.7.212 (IN/India/183.82.7.212.actcorp.in): 10 in th ...
show more
(xmlrpc) Apache: Failed xmlrpc access from 183.82.7.212 (IN/India/183.82.7.212.actcorp.in): 10 in the last 3600 secs (0-201)
show less
Hacking
Anonymous
2026-06-01 06:46:17
(1 month ago)
Attac
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-01 06:19:10
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in th ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 02:19:02.853249 2026] [security2:error] [pid 16360:tid 16397] [client 183.82.7.212:59427] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.7.212 (+1 hits since last alert)|greaternorthmiamihistory.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "greaternorthmiamihistory.org"] [uri "/xmlrpc.php"] [unique_id "ah0kVsrjw2lSMc66wfNC6AAAAME"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-01 04:34:52
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in th ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 00:34:46.570535 2026] [security2:error] [pid 8441:tid 8441] [client 183.82.7.212:56372] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.7.212 (+1 hits since last alert)|bb103.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bb103.us"] [uri "/xmlrpc.php"] [unique_id "ah0L5qNLe15YPe9x8at9ggAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-30 14:26:29
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in th ...
show more
(mod_security) mod_security (id:240335) triggered by 183.82.7.212 (183.82.7.212.actcorp.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 10:26:22.559530 2026] [security2:error] [pid 24197:tid 24207] [client 183.82.7.212:61851] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 183.82.7.212 (+1 hits since last alert)|theyogicat.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "theyogicat.com"] [uri "/xmlrpc.php"] [unique_id "ahrzjnoEe7DoTYNnNDw8UQAAAEc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-30 13:55:17
(1 month ago)
Bad Web Bot
Web App Attack