๐ซ๐ท
masterguru
2026-07-07 03:52:37
(19 hours ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
Anonymous
2026-07-06 04:04:37
(1 day ago)
(wordpress) Failed wordpress login from 49.47.199.175 (IN/India/-)
Brute-Force
๐ซ๐ท
SpaceHost-Server
2026-07-04 22:33:28
(3 days ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 09:40:57
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 05:40:44.816191 2026] [security2:error] [pid 26409:tid 26409] [client 49.47.199.175:59095] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.47.199.175 (+1 hits since last alert)|hotelkona.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hotelkona.com"] [uri "/xmlrpc.php"] [unique_id "akjVHJRh3gAXEyQZBRa9JwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
ConsulHosting
2026-07-04 09:25:53
(3 days ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 08:40:38
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 04:40:24.820894 2026] [security2:error] [pid 11881:tid 11881] [client 49.47.199.175:56236] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.47.199.175 (+1 hits since last alert)|ontimelogistiks.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ontimelogistiks.com"] [uri "/xmlrpc.php"] [unique_id "akjG-DbYbfnzE8Qa3gkYlAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
WeekendWeb
2026-07-04 06:49:45
(3 days ago)
Wordpress Vunerability attack
Web App Attack
Anonymous
2026-07-04 05:31:05
(3 days ago)
Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1
Hacking
Web App Attack
๐ซ๐ท
applemooz
2026-07-04 04:05:18
(3 days ago)
WordPress XMLRPC Brute Force Attacks
...
Brute-Force
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-07-03 22:32:17
(4 days ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 04:01:14
(5 days ago)
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:01:04.574859 2026] [security2:error] [pid 18417:tid 18417] [client 49.47.199.175:56369] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.47.199.175 (+1 hits since last alert)|ultratecnologia.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ultratecnologia.com"] [uri "/xmlrpc.php"] [unique_id "akXigLHpNVXM3X_Yi2szrAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 11:24:36
(6 days ago)
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 07:24:22.620833 2026] [security2:error] [pid 7539:tid 7560] [client 49.47.199.175:52096] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.47.199.175 (+1 hits since last alert)|pwihatah.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pwihatah.com"] [uri "/xmlrpc.php"] [unique_id "akT45onBUD1iUqAKMmfNwgAAANI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-01 09:17:18
(6 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 05:05:19
(6 days ago)
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 01:05:09.988559 2026] [security2:error] [pid 29901:tid 29901] [client 49.47.199.175:63977] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.47.199.175 (+1 hits since last alert)|casadelsolmexico.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "casadelsolmexico.net"] [uri "/xmlrpc.php"] [unique_id "akSgBU4Mm1Ld2GJNhK-ebwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 06:23:04
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 49.47.199.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 02:22:52.245565 2026] [security2:error] [pid 669:tid 669] [client 49.47.199.175:54673] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 49.47.199.175 (+1 hits since last alert)|robinsnestingplace.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "robinsnestingplace.net"] [uri "/xmlrpc.php"] [unique_id "akNgvHfrJaBz-BmLz6vPjwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack