๐ฑ๐ป
garmtech.com
2026-07-04 18:23:30
(4 days ago)
IM360 WAF: Rate limit exceeded for XMLRPC DoS
Web App Attack
๐ฑ๐ป
garmtech.com
2026-07-04 18:18:13
(4 days ago)
IM360 WAF: Rate limit exceeded for XMLRPC DoS (fault code)
Web App Attack
๐ช๐ธ
masterguru
2026-07-04 16:42:08
(4 days ago)
(xmlrpc) Failed xmlrpc access from 81.17.27.82 (CH/Switzerland/hostedby.privatelayer.com): 5 in the ...
show more
(xmlrpc) Failed xmlrpc access from 81.17.27.82 (CH/Switzerland/hostedby.privatelayer.com): 5 in the last 3600 secs (0-122)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-04 13:38:27
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in t ...
show more
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 09:38:20.398616 2026] [security2:error] [pid 15286:tid 15286] [client 81.17.27.82:55577] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 81.17.27.82 (+1 hits since last alert)|swinjury.co|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "swinjury.co"] [uri "/xmlrpc.php"] [unique_id "akkMzPmSw2wB4zsJ52-rsgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 12:07:23
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in t ...
show more
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 08:07:15.122438 2026] [security2:error] [pid 3351:tid 3351] [client 81.17.27.82:61110] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 81.17.27.82 (+1 hits since last alert)|lakependoreillemobility.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lakependoreillemobility.com"] [uri "/xmlrpc.php"] [unique_id "akj3c8jby-Mdc5CxjR38nAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 11:34:33
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in t ...
show more
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 07:34:28.854646 2026] [security2:error] [pid 26510:tid 26510] [client 81.17.27.82:61776] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 81.17.27.82 (+1 hits since last alert)|citizensforsanity.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "citizensforsanity.com"] [uri "/xmlrpc.php"] [unique_id "akjvxAoOaIgMQ-vXNukV9gAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
applemooz
2026-07-04 10:20:38
(4 days ago)
WordPress XMLRPC Brute Force Attacks
...
Brute-Force
Web App Attack
Anonymous
2026-07-03 21:40:40
(5 days ago)
Attac
Brute-Force
๐ซ๐ฎ
YF
2026-07-03 20:01:16
(5 days ago)
xmlrpc.php Potential DDoS or brute force
DDoS Attack
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-03 19:38:42
(5 days ago)
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in t ...
show more
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 15:38:35.334986 2026] [security2:error] [pid 22649:tid 22649] [client 81.17.27.82:52468] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 81.17.27.82 (+1 hits since last alert)|nextlevelcharge.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nextlevelcharge.com"] [uri "/xmlrpc.php"] [unique_id "akgPuxsj_wXT0dQW1mz3AwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 17:38:54
(5 days ago)
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in t ...
show more
(mod_security) mod_security (id:240335) triggered by 81.17.27.82 (hostedby.privatelayer.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 13:38:49.404598 2026] [security2:error] [pid 2997:tid 2997] [client 81.17.27.82:53817] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 81.17.27.82 (+1 hits since last alert)|vzan.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "vzan.org"] [uri "/xmlrpc.php"] [unique_id "akfzqTwP5Wq0s1gLOMZLEgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-03 17:36:12
(5 days ago)
(wordpress) Failed wordpress login from 81.17.27.82 (CH/Switzerland/hostedby.privatelayer.com)
Brute-Force
๐ซ๐ท
matthieul.dev
2026-07-02 04:05:20
(6 days ago)
Blocked by os-abuseipdb; 6 hits, proto=tcp,udp, ports=1540
Port Scan
Brute-Force