๐ณ๐ฟ
Tripwire
2026-07-09 12:19:17
(11 hours ago)
Probing for Wordpress - /xmlrpc.php
Brute-Force
Web App Attack
๐ฌ๐ง
consul.to
2026-07-09 10:41:27
(13 hours ago)
Web attack/malicious scanning detected
Web App Attack
๐ซ๐ท
dynamix
2026-07-09 08:15:46
(15 hours ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฉ๐ช
ksol-hostmaster
2026-07-08 11:27:49
(1 day ago)
2026/07/08 13:27:48 [error] 84047#145510: *826268 access forbidden by rule, client: 196.119.99.167, ...
show more
2026/07/08 13:27:48 [error] 84047#145510: *826268 access forbidden by rule, client: 196.119.99.167, server: revolutionbim.com, request: "POST /xmlrpc.php HTTP/1.1", host: "revolutionbim.com"
...
show less
Web Spam
๐บ๐ธ
TPI-Abuse
2026-07-08 08:33:20
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 196.119.99.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 196.119.99.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 04:33:16.040358 2026] [security2:error] [pid 27270:tid 27270] [client 196.119.99.167:53728] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||lajoze.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lajoze.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ak4LTJ8riKAZBbXvgGyQgAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-07-08 07:56:50
(1 day ago)
Web attack/malicious scanning detected
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-07-07 19:18:48
(2 days ago)
Known malicious PHP file or CMS probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 12:16:24
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 196.119.99.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 196.119.99.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 08:16:16.455131 2026] [security2:error] [pid 25356:tid 25356] [client 196.119.99.167:63360] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||goldcountrygermanamericanclub.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "goldcountrygermanamericanclub.org"] [uri "/wp-json/wp/v2/users"] [unique_id "akzuEEln1FFPgIMdwPS-pgAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 08:18:10
(2 days ago)
(mod_security) mod_security (id:225170) triggered by 196.119.99.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 196.119.99.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 04:18:05.970218 2026] [security2:error] [pid 20391:tid 20391] [client 196.119.99.167:52368] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||allfloridamedia.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "allfloridamedia.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aky2PeAg1Xph3s8T4PO6SQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-06 17:44:02
(3 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ณ๐ฑ
exxos
2025-08-17 23:03:01
(10 months ago)
HTTP1.x attacks
DDoS Attack