๐ฆ๐บ
paulshipley.com.au
2026-07-13 00:50:11
(3 hours ago)
[Mon Jul 13 10:50:10.345751 2026] [security2:error] [pid 46952] [client 196.247.225.211:56543] [clie ...
show more
[Mon Jul 13 10:50:10.345751 2026] [security2:error] [pid 46952] [client 196.247.225.211:56543] [client 196.247.225.211] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/xmlrpc.php"] [unique_id "alQ2QphvW58ayqLBhp24DwAAAAQ"], referer: https://levellapromotions.com.au/the-gist-of-gifts-promotional-products-ideas-that-will-surely-work/
...
show less
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-13 00:04:47
(3 hours ago)
Try to access /xmlrpc.php
Web App Attack
๐ฉ๐ช
LRob
2026-07-12 13:13:13
(14 hours ago)
CrowdSec: lrob/wp-xmlrpc-bf | req: ["/xmlrpc.php"] | UA: ["PHP/6.3.75"]
Brute-Force
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-11 22:25:52
(1 day ago)
[Sun Jul 12 08:25:51.698340 2026] [security2:error] [pid 841378] [client 196.247.225.211:58721] [cli ...
show more
[Sun Jul 12 08:25:51.698340 2026] [security2:error] [pid 841378] [client 196.247.225.211:58721] [client 196.247.225.211] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/xmlrpc.php"] [unique_id "alLC72Xf_bT3aC_PMQ0u8QAAAAg"], referer: https://levellapromotions.com.au/the-gist-of-gifts-promotional-products-ideas-that-will-surely-work/
...
show less
Web App Attack
๐ฉ๐ช
Lino Project
2026-07-11 17:38:58
(1 day ago)
196.247.225.211 - - [11/Jul/2026:19:38:57 +0200] "POST /xmlrpc.php HTTP/1.1" 403 5442 "https://bioma ...
show more
196.247.225.211 - - [11/Jul/2026:19:38:57 +0200] "POST /xmlrpc.php HTTP/1.1" 403 5442 "https://biomakeup.it/" "PHP/6.3.47"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-11 16:22:39
(1 day ago)
[Sun Jul 12 02:22:38.303426 2026] [security2:error] [pid 808679] [client 196.247.225.211:33649] [cli ...
show more
[Sun Jul 12 02:22:38.303426 2026] [security2:error] [pid 808679] [client 196.247.225.211:33649] [client 196.247.225.211] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/xmlrpc.php"] [unique_id "alJtzu1IpCFyaKr7OFVWqgAAAAw"], referer: https://levellapromotions.com.au/the-gist-of-gifts-promotional-products-ideas-that-will-surely-work/
...
show less
Web App Attack
๐ฉ๐ช
paissangroup
2026-07-11 13:09:00
(1 day ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
Mundo Bueno
2026-07-11 02:00:44
(2 days ago)
[ISILIA Protection v2.1] Tentative d'accรจs: /xmlrpc.php | Pays: SE | UA: PHP/7.2.30
Hacking
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-11 01:09:31
(2 days ago)
[Sat Jul 11 11:09:30.694532 2026] [security2:error] [pid 725259] [client 196.247.225.211:60928] [cli ...
show more
[Sat Jul 11 11:09:30.694532 2026] [security2:error] [pid 725259] [client 196.247.225.211:60928] [client 196.247.225.211] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/xmlrpc.php"] [unique_id "alGXyntJ_mY-slTbc3fCdQAAAAg"], referer: https://levellapromotions.com.au/the-gist-of-gifts-promotional-products-ideas-that-will-surely-work/
...
show less
Web App Attack
๐ณ๐ฑ
Roderic
2026-07-09 11:43:09
(3 days ago)
(apache-scanners) Failed apache-scanners trigger with match [redacted])
Port Scan
๐ฆ๐บ
paulshipley.com.au
2026-07-09 00:49:46
(4 days ago)
[Thu Jul 09 10:49:45.881630 2026] [security2:error] [pid 459474] [client 196.247.225.211:43533] [cli ...
show more
[Thu Jul 09 10:49:45.881630 2026] [security2:error] [pid 459474] [client 196.247.225.211:43533] [client 196.247.225.211] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/xmlrpc.php"] [unique_id "ak7wKTiIkg-k8gXanKtuwwAAAAI"], referer: https://levellapromotions.com.au/the-gist-of-gifts-promotional-products-ideas-that-will-surely-work/
...
show less
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-08 05:40:38
(4 days ago)
Try to access /xmlrpc.php
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-07 18:53:31
(5 days ago)
[Wed Jul 08 04:53:30.884400 2026] [security2:error] [pid 281868] [client 196.247.225.211:56734] [cli ...
show more
[Wed Jul 08 04:53:30.884400 2026] [security2:error] [pid 281868] [client 196.247.225.211:56734] [client 196.247.225.211] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/xmlrpc.php"] [unique_id "ak1LKqiMcu_dTyzQx5HrcwAAAAc"], referer: https://levellapromotions.com.au/the-gist-of-gifts-promotional-products-ideas-that-will-surely-work/
...
show less
Web App Attack