๐ฉ๐ช
konseptit
2026-07-10 18:03:11
(3 days ago)
(wordpress) Failed wordpress login from 213.164.120.23 (LT/Lithuania/-)
Brute-Force
๐ซ๐ท
dynamix
2026-07-10 14:45:12
(3 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ธ๐ช
vaia.cloud
2026-07-10 14:42:02
(3 days ago)
trying wp-login.php/xmlrpc.php 33 times in 1 minutes
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-10 10:08:00
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 213.164.120.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 213.164.120.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 06:07:53.673008 2026] [security2:error] [pid 25046:tid 25046] [client 213.164.120.23:58479] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 213.164.120.23 (+1 hits since last alert)|ontimelogistiks.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ontimelogistiks.com"] [uri "/xmlrpc.php"] [unique_id "alDEeZoiAhD8Y_PtgipScQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
QT
2026-07-09 11:31:04
(4 days ago)
Unauthorised WordPress admin login attempted at 2026-07-09 21:31:03 +1000
Web App Attack
๐ซ๐ท
masterguru
2026-07-09 10:31:43
(5 days ago)
(xmlrpc) Apache: Failed xmlrpc access from 213.164.120.23 (LT/Lithuania/-): 10 in the last 3600 secs ...
show more
(xmlrpc) Apache: Failed xmlrpc access from 213.164.120.23 (LT/Lithuania/-): 10 in the last 3600 secs (0-201)
show less
Hacking
๐จ๐ญ
4server
2026-07-06 08:46:41
(1 week ago)
[MonJul0610:46:35.4355692026][security2:error][pid2714208:tid2714299][client213.164.120.23:0]ModSecu ...
show more
[MonJul0610:46:35.4355692026][security2:error][pid2714208:tid2714299][client213.164.120.23:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"368\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"support-ticino.ch\"][uri\"/xmlrpc.php\"][unique_id\"aktra1UU2RacGJsztD6zxwAAAYU\"]
show less
Hacking
Web App Attack
Anonymous
2026-07-06 07:56:21
(1 week ago)
Attac
Brute-Force
๐ซ๐ท
dynamix
2026-07-05 18:45:47
(1 week ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ซ๐ท
dynamix
2026-07-04 17:19:53
(1 week ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 16:52:00
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 213.164.120.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 213.164.120.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 12:51:54.190114 2026] [security2:error] [pid 10068:tid 10068] [client 213.164.120.23:62188] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 213.164.120.23 (+1 hits since last alert)|kiinlog.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kiinlog.com"] [uri "/xmlrpc.php"] [unique_id "akk6Kmu3GNzqFIQ8hCZC_AAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 16:23:08
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 213.164.120.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 213.164.120.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 12:23:00.636973 2026] [security2:error] [pid 31174:tid 31174] [client 213.164.120.23:65236] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 213.164.120.23 (+1 hits since last alert)|iconflgc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "iconflgc.com"] [uri "/xmlrpc.php"] [unique_id "akkzZGtuy-vIrjUbg2PF3AAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 10:43:50
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 213.164.120.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 213.164.120.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 06:43:46.833801 2026] [security2:error] [pid 15981:tid 15981] [client 213.164.120.23:60114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 213.164.120.23 (+1 hits since last alert)|geckoturner.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "geckoturner.com"] [uri "/xmlrpc.php"] [unique_id "akjj4qM6MrH6R4NLnN2iSQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-04 10:16:48
(1 week ago)
Bad Web Bot
Web App Attack
Anonymous
2026-07-04 07:32:13
(1 week ago)
Attac
Brute-Force