๐จ๐ฆ
DRI
2026-07-19 12:39:32
(1 hour ago)
Web attack/Malicious activity detected
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-18 17:12:28
(21 hours ago)
Try to access /xmlrpc.php
Web App Attack
๐ฉ๐ช
kjaerulff
2026-03-21 20:09:38
(3 months ago)
Failed Wordpress login using wp-login.php
Web App Attack
Anonymous
2026-03-13 17:39:10
(4 months ago)
Forum/form spam
Web Spam
๐ฉ๐ช
LRob
2026-01-31 19:51:12
(5 months ago)
Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail
Bad Web Bot
Web App Attack
Anonymous
2026-01-31 17:00:20
(5 months ago)
Forum/form spam
Web Spam
๐บ๐ธ
TPI-Abuse
2026-01-23 02:24:44
(5 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.81.19 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.81.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 21:24:38.823118 2026] [security2:error] [pid 807207:tid 807207] [client 193.202.81.19:59537] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||eduempowermentsolutions.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "eduempowermentsolutions.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXLb5m0PJzKRVBbTT_q3JwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-01-23 01:22:41
(5 months ago)
(mod_security) mod_security (id:225170) triggered by 193.202.81.19 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 193.202.81.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 20:22:11.763647 2026] [security2:error] [pid 4179172:tid 4179526] [client 193.202.81.19:10213] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||sallykimmel.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sallykimmel.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "aXLNQ3YHE-7sfTV4faDCUQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
myagent.site
2026-01-21 12:54:00
(5 months ago)
Blocking for trying to access an exploit file: /xmlrpc.php
Hacking
๐ฉ๐ช
big-cloud.nl
2026-01-21 09:54:04
(5 months ago)
Try to access /xmlrpc.php
Web App Attack
๐ฎ๐ฉ
BPS-StatisticsIndonesia
2026-01-08 16:29:37
(6 months ago)
XML RPC Scan Activities
Brute-Force
Web App Attack
๐ฎ๐ฉ
Burayot
2026-01-01 12:55:47
(6 months ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 193.202.81.19 (IL/Israel/-): 1 in t ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 193.202.81.19 (IL/Israel/-): 1 in the last 3600 secs
show less
Web App Attack
Anonymous
2025-11-01 14:12:28
(8 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2025-03-29 12:46:29
(1 year ago)
(mod_security) mod_security (id:211120) triggered by 193.202.81.19 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:211120) triggered by 193.202.81.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 29 08:46:22.034699 2025] [security2:error] [pid 17118:tid 17118] [client 193.202.81.19:34731] [client 193.202.81.19] ModSecurity: Access denied with code 403 (phase 2). Match of "endsWith /modules/paypal/express_checkout/payment.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "29"] [id "211120"] [rev "12"] [msg "COMODO WAF: Remote File Inclusion Attack||brandoncomputergeeks.com|F|2"] [data "Matched Data: http://adguard.digital/payload/index.php? found within REQUEST_FILENAME: /wp-content/plugins/all-in-one-seo-pack/classes/aiosp.class.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brandoncomputergeeks.com"] [uri "/wp-content/plugins/all-in-one-seo-pack/classes/aiosp.class.php"] [unique_id "Z-frnqFo1quHxWYUnQnCNAAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-03-19 14:00:59
(1 year ago)
(mod_security) mod_security (id:211120) triggered by 193.202.81.19 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:211120) triggered by 193.202.81.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 19 10:00:53.457459 2025] [security2:error] [pid 1791256:tid 1791256] [client 193.202.81.19:29275] [client 193.202.81.19] ModSecurity: Access denied with code 403 (phase 2). Match of "endsWith /modules/paypal/express_checkout/payment.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "29"] [id "211120"] [rev "11"] [msg "COMODO WAF: Remote File Inclusion Attack||assembliesofgodinsamoa.org|F|2"] [data "Matched Data: http://adguard.digital/payload/index.php? found within REQUEST_FILENAME: /wp-content/plugins/wp-super-cache/js/cache-loader.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "assembliesofgodinsamoa.org"] [uri "/wp-content/plugins/wp-super-cache/js/cache-loader.php"] [unique_id "Z9rOFUak8habqTqu_6JHnwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack