๐ฉ๐ช
ghostwarriors
2026-07-16 09:50:37
(22 hours ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-16 09:35:17
(22 hours ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
Anonymous
2026-07-15 10:15:24
(1 day ago)
[redacted] 188.53.223.160 - - [15/Jul/2026:12:14:41 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" " ...
show more
[redacted] 188.53.223.160 - - [15/Jul/2026:12:14:41 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com"
[redacted] 188.53.223.160 - - [15/Jul/2026:12:14:51 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com"
[redacted] 188.53.223.160 - - [15/Jul/2026:12:15:02 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com"
[redacted] 188.53.223.160 - - [15/Jul/2026:12:15:13 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com"
[redacted] 188.53.223.160 - - [15/Jul/2026:12:15:23 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack/13.0; WordPress/6.1; http://site35209257.com"
...
show less
Hacking
Web App Attack
๐ซ๐ท
tecnicorioja
2026-07-14 22:00:21
(2 days ago)
POST /xmlrpc.php [14/Jul/2026:23:36:08
Brute-Force
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-14 08:47:31
(2 days ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-07-13 17:00:54
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 188.53.223.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 188.53.223.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 13:00:48.536352 2026] [security2:error] [pid 3624154:tid 3624154] [client 188.53.223.160:1066] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 188.53.223.160 (+1 hits since last alert)|t9teamsportinggoods.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "t9teamsportinggoods.com"] [uri "/xmlrpc.php"] [unique_id "alUZwAaceUE12Mb8T6RUMAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-13 16:59:09
(3 days ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-13 14:32:40
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 188.53.223.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 188.53.223.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 10:32:35.273439 2026] [security2:error] [pid 7199:tid 7199] [client 188.53.223.160:47139] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 188.53.223.160 (+1 hits since last alert)|wwfstudio.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "wwfstudio.com"] [uri "/xmlrpc.php"] [unique_id "alT3A5jVadV83WrcWTvemwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-12 17:02:34
(4 days ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐ง๐ฌ
HighWay
2026-07-12 15:24:02
(4 days ago)
188.53.223.160 - - [12/Jul/2026:15:23:40 +0000] "POST /xmlrpc.php HTTP/1.1" 200 4664 "-" "WordPress. ...
show more
188.53.223.160 - - [12/Jul/2026:15:23:40 +0000] "POST /xmlrpc.php HTTP/1.1" 200 4664 "-" "WordPress.com; https://wordpress.com"
188.53.223.160 - - [12/Jul/2026:15:23:49 +0000] "POST /xmlrpc.php HTTP/1.1" 200 4664 "-" "Jetpack by WordPress.com"
188.53.223.160 - - [12/Jul/2026:15:24:00 +0000] "POST /xmlrpc.php HTTP/1.1" 200 4663 "-" "Jetpack/12.0; WordPress/6.3; http://site27742459.com"
...
show less
Port Scan
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-12 14:09:00
(4 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฉ๐ช
abdubhai
2026-07-12 09:20:47
(4 days ago)
188.53.223.160 - - [12/Jul/2026:
...
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-12 08:27:36
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 188.53.223.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 188.53.223.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 04:27:28.667222 2026] [security2:error] [pid 5777:tid 5777] [client 188.53.223.160:35657] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 188.53.223.160 (+1 hits since last alert)|citizensforsanity.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "citizensforsanity.com"] [uri "/xmlrpc.php"] [unique_id "alNP8M757oXzbSUuYRz1OAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
alferez
2026-07-11 18:41:16
(5 days ago)
xmlrpc.php attack DOS
Hacking
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 13:54:15
(5 days ago)
(mod_security) mod_security (id:240335) triggered by 188.53.223.160 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 188.53.223.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 09:54:11.313073 2026] [security2:error] [pid 22206:tid 22206] [client 188.53.223.160:64407] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 188.53.223.160 (+1 hits since last alert)|shannonraevocalstudio.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "shannonraevocalstudio.com"] [uri "/xmlrpc.php"] [unique_id "alJLAzezyBYlKE97-ndFAAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack