๐ณ๐ฑ
Site.eu
2026-07-12 22:59:48
(44 minutes ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐บ๐ธ
WeekendWeb
2026-07-12 21:57:36
(1 hour ago)
Wordpress Vunerability attack
Web App Attack
๐ช๐ธ
masterguru
2026-07-12 15:49:12
(7 hours ago)
(xmlrpc) Failed xmlrpc access from 5.30.36.5 (AE/United Arab Emirates/-): 5 in the last 3600 secs (0 ...
show more
(xmlrpc) Failed xmlrpc access from 5.30.36.5 (AE/United Arab Emirates/-): 5 in the last 3600 secs (0-122)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-12 12:27:51
(11 hours ago)
(mod_security) mod_security (id:240335) triggered by 5.30.36.5 (-): 1 in the last 300 secs; Ports: * ...
show more
(mod_security) mod_security (id:240335) triggered by 5.30.36.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 08:27:46.044666 2026] [security2:error] [pid 24885:tid 24885] [client 5.30.36.5:27169] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 5.30.36.5 (+1 hits since last alert)|billwegener.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "billwegener.net"] [uri "/xmlrpc.php"] [unique_id "alOIQqjPqTzQhD4Y_RBKTgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 11:56:31
(11 hours ago)
(mod_security) mod_security (id:240335) triggered by 5.30.36.5 (-): 1 in the last 300 secs; Ports: * ...
show more
(mod_security) mod_security (id:240335) triggered by 5.30.36.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 07:56:26.884642 2026] [security2:error] [pid 28468:tid 28468] [client 5.30.36.5:9349] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 5.30.36.5 (+1 hits since last alert)|ontimelogistiks.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ontimelogistiks.com"] [uri "/xmlrpc.php"] [unique_id "alOA6uQF_e7GCE1ITJKIRAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-12 08:47:38
(14 hours ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-11 14:20:15
(1 day ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-11 14:00:45
(1 day ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-11 11:16:29
(1 day ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
๐ฉ๐ช
netclix.gr
2026-07-11 10:14:30
(1 day ago)
(wordpress) Failed wordpress login from 5.30.36.5 (AE/United Arab Emirates/-): (CF_ENABLE)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-11 08:45:19
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 5.30.36.5 (-): 1 in the last 300 secs; Ports: * ...
show more
(mod_security) mod_security (id:240335) triggered by 5.30.36.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 04:45:15.638593 2026] [security2:error] [pid 24131:tid 24131] [client 5.30.36.5:63154] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 5.30.36.5 (+1 hits since last alert)|furbabieslivesmatter.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "furbabieslivesmatter.com"] [uri "/xmlrpc.php"] [unique_id "alICm-5f5I8aWZ1ImQK68AAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 07:21:56
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 5.30.36.5 (-): 1 in the last 300 secs; Ports: * ...
show more
(mod_security) mod_security (id:240335) triggered by 5.30.36.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 03:21:52.500971 2026] [security2:error] [pid 18096:tid 18096] [client 5.30.36.5:49261] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 5.30.36.5 (+1 hits since last alert)|swcbsa.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "swcbsa.org"] [uri "/xmlrpc.php"] [unique_id "alHvEBQaos8aMtzBigUaBgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-11 06:50:05
(1 day ago)
Fail2Ban WordPress login brute-force detected
Brute-Force
Web App Attack
๐ช๐ธ
masterguru
2026-07-10 21:51:05
(2 days ago)
(xmlrpc) Failed xmlrpc access from 5.30.36.5 (AE/United Arab Emirates/-): 5 in the last 3600 secs (0 ...
show more
(xmlrpc) Failed xmlrpc access from 5.30.36.5 (AE/United Arab Emirates/-): 5 in the last 3600 secs (0-122)
show less
Hacking
Anonymous
2026-07-10 18:49:02
(2 days ago)
Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1
Hacking
Web App Attack