๐ณ๐ฑ
ConsulHosting
2026-07-11 19:24:50
(1 day ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
๐ซ๐ท
francoisunix
2026-07-11 19:07:31
(1 day ago)
41.90.141.48 - - [11/Jul/2026:19:06:47 +0000] "POST /xmlrpc.php HTTP/1.0" 401 415 "-" "WordPress.com ...
show more
41.90.141.48 - - [11/Jul/2026:19:06:47 +0000] "POST /xmlrpc.php HTTP/1.0" 401 415 "-" "WordPress.com; https://wordpress.com"
41.90.141.48 - - [11/Jul/2026:19:06:57 +0000] "POST /xmlrpc.php HTTP/1.0" 401 415 "-" "WordPress.com; https://wordpress.com"
41.90.141.48 - - [11/Jul/2026:19:07:08 +0000] "POST /xmlrpc.php HTTP/1.0" 401 415 "-" "Jetpack by WordPress.com"
41.90.141.48 - - [11/Jul/2026:19:07:18 +0000] "POST /xmlrpc.php HTTP/1.0" 401 415 "-" "Jetpack by WordPress.com"
41.90.141.48 - - [11/Jul/2026:19:07:29 +0000] "POST /xmlrpc.php HTTP/1.0" 401 415 "-" "Jetpack/13.0; WordPress/6.2; http://site99994614.com"
...
show less
Web App Attack
๐ณ๐ฑ
ipoac.nl
2026-07-11 18:05:35
(1 day ago)
2026-07-11T20:05:34.661813+02:00 ipoac.nl wordpress(-)-: XML-RPC authentication failure for-from 41. ...
show more
2026-07-11T20:05:34.661813+02:00 ipoac.nl wordpress(-)-: XML-RPC authentication failure for-from 41.90.141.48
show less
Web App Attack
Anonymous
2026-07-11 15:33:10
(1 day ago)
Bad Web Bot
Web App Attack
๐ฆ๐บ
clapper
2026-07-11 13:31:05
(1 day ago)
(mod_security) mod_security (id:350202) triggered by 41.90.141.48 (KE/Kenya/-): 5 in the last 600 se ...
show more
(mod_security) mod_security (id:350202) triggered by 41.90.141.48 (KE/Kenya/-): 5 in the last 600 secs; ID: rub
show less
Brute-Force
Bad Web Bot
๐ฒ๐พ
Rizzy
2026-07-11 08:23:14
(2 days ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 04:50:15
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.90.141.48 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.90.141.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 00:50:07.541973 2026] [security2:error] [pid 28510:tid 28510] [client 41.90.141.48:1787] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.90.141.48 (+1 hits since last alert)|terfgunclub.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "terfgunclub.com"] [uri "/xmlrpc.php"] [unique_id "alHLf2beSWLVgf99g4-swQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 03:47:09
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.90.141.48 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.90.141.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 23:47:06.245383 2026] [security2:error] [pid 20453:tid 20453] [client 41.90.141.48:2167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.90.141.48 (+1 hits since last alert)|seabreezeculvert.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "seabreezeculvert.com"] [uri "/xmlrpc.php"] [unique_id "alG8ujQuIru1PSeyVHH1WgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-11 01:22:31
(2 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
Anonymous
2026-07-11 00:51:03
(2 days ago)
Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1
Hacking
Web App Attack
๐ฎ๐น
Progetto1
2026-07-11 00:25:02
(2 days ago)
Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-10 14:03:54
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.90.141.48 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.90.141.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 10:03:47.464402 2026] [security2:error] [pid 21512:tid 21512] [client 41.90.141.48:4909] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.90.141.48 (+1 hits since last alert)|solucionesmercadeodigital.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "solucionesmercadeodigital.com"] [uri "/xmlrpc.php"] [unique_id "alD7w-fMj17AIehTUixZGAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
masterguru
2026-07-10 06:29:58
(3 days ago)
(xmlrpc) Failed xmlrpc access from 41.90.141.48 (KE/Kenya/-): 5 in the last 3600 secs (0-122)
Hacking
Anonymous
2026-07-10 05:52:14
(3 days ago)
Fail2ban filtered
...
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-10 03:16:22
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 41.90.141.48 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.90.141.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 23:16:17.417242 2026] [security2:error] [pid 25816:tid 25830] [client 41.90.141.48:3747] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.90.141.48 (+1 hits since last alert)|tnccivic.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "tnccivic.org"] [uri "/xmlrpc.php"] [unique_id "alBkAbm3AT6cuEUOqoinlAAAAMw"]
show less
Brute-Force
Bad Web Bot
Web App Attack