๐ซ๐ท
Kenshin869
2026-07-06 18:09:01
(1 day ago)
Wordpress unauthorized access attempt
Brute-Force
Anonymous
2026-07-02 22:35:02
(5 days ago)
Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1
Hacking
Web App Attack
๐ซ๐ท
dynamix
2026-06-29 21:34:29
(1 week ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฉ๐ช
rh24
2026-06-29 20:31:52
(1 week ago)
(wordpress) Failed wordpress login from 82.79.141.139 (RO/Romania/-): (CF_ENABLE)
Brute-Force
Anonymous
2026-06-28 21:16:54
(1 week ago)
[server.tmg.gr] httpd-xmlrpc-post: sites=eumedline.com; logs=/var/log/httpd/domains/eumedline.com.lo ...
show more
[server.tmg.gr] httpd-xmlrpc-post: sites=eumedline.com; logs=/var/log/httpd/domains/eumedline.com.log; samples=/xmlrpc.php
show less
Brute-Force
Web App Attack
Anonymous
2026-06-28 21:09:58
(1 week ago)
[redacted] 82.79.141.139 - - [28/Jun/2026:23:09:14 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "J ...
show more
[redacted] 82.79.141.139 - - [28/Jun/2026:23:09:14 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.4)"
[redacted] 82.79.141.139 - - [28/Jun/2026:23:09:25 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.0; WordPress/6.2; http://site21221103.com"
[redacted] 82.79.141.139 - - [28/Jun/2026:23:09:35 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com"
[redacted] 82.79.141.139 - - [28/Jun/2026:23:09:46 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.3; http://site82440376.com"
[redacted] 82.79.141.139 - - [28/Jun/2026:23:09:56 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com"
...
show less
Hacking
Web App Attack
๐ซ๐ท
masterguru
2026-06-26 12:36:37
(1 week ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
๐ซ๐ท
SpaceHost-Server
2026-06-25 16:52:17
(1 week ago)
82.79.141.139 - - [25/Jun/2026:18:51:55 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6398 "-" "Jetpack/12. ...
show more
82.79.141.139 - - [25/Jun/2026:18:51:55 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6398 "-" "Jetpack/12.5; WordPress/6.4; http://site15596349.com"
82.79.141.139 - - [25/Jun/2026:18:52:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6398 "-" "Jetpack/12.1; WordPress/6.2; http://site17664511.com"
82.79.141.139 - - [25/Jun/2026:18:52:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6398 "-" "Jetpack/12.1; WordPress/6.2; http://site70890718.com"
show less
Hacking
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-06-25 16:36:54
(1 week ago)
82.79.141.139 - - [25/Jun/2026:18:36:34 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6398 "-" "WordPress.c ...
show more
82.79.141.139 - - [25/Jun/2026:18:36:34 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6398 "-" "WordPress.com; https://wordpress.com"
82.79.141.139 - - [25/Jun/2026:18:36:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6398 "-" "Jetpack/12.5; WordPress/6.3; http://site56622964.com"
82.79.141.139 - - [25/Jun/2026:18:36:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 6398 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)"
show less
Hacking
Web App Attack
๐ณ๐ฑ
ConsulHosting
2026-06-22 09:10:05
(2 weeks ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 22:05:09
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 82.79.141.139 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 82.79.141.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 18:05:02.190584 2026] [security2:error] [pid 3422:tid 3422] [client 82.79.141.139:59831] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 82.79.141.139 (+1 hits since last alert)|abeltours.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "abeltours.com"] [uri "/xmlrpc.php"] [unique_id "ajW9Djf52dYSGz6_zMRuxQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
rh24
2026-06-18 20:06:01
(2 weeks ago)
(wordpress) Failed wordpress login from 82.79.141.139 (RO/Romania/-): (CF_ENABLE)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-17 16:04:37
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 82.79.141.139 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 82.79.141.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 12:04:33.572104 2026] [security2:error] [pid 30003:tid 30003] [client 82.79.141.139:53703] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 82.79.141.139 (+1 hits since last alert)|difusionens.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "difusionens.org"] [uri "/xmlrpc.php"] [unique_id "ajLFkfLvuyEvRfjjwQf7JAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-17 15:36:30
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 82.79.141.139 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 82.79.141.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 11:36:25.372113 2026] [security2:error] [pid 17933:tid 17933] [client 82.79.141.139:63412] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 82.79.141.139 (+1 hits since last alert)|dianamead.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "dianamead.com"] [uri "/xmlrpc.php"] [unique_id "ajK--UxhnujdhP_LO54gBAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack