๐ซ๐ท
masterguru
2026-07-13 20:42:40
(9 hours ago)
(xmlrpc) Apache: Failed xmlrpc access from 83.98.84.201 (IT/Italy/-): 10 in the last 3600 secs (0-20 ...
show more
(xmlrpc) Apache: Failed xmlrpc access from 83.98.84.201 (IT/Italy/-): 10 in the last 3600 secs (0-201)
show less
Hacking
Anonymous
2026-07-13 20:41:39
(9 hours ago)
[redacted] 83.98.84.201 - - [13/Jul/2026:22:40:56 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Wo ...
show more
[redacted] 83.98.84.201 - - [13/Jul/2026:22:40:56 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com"
[redacted] 83.98.84.201 - - [13/Jul/2026:22:41:06 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com"
[redacted] 83.98.84.201 - - [13/Jul/2026:22:41:17 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com"
[redacted] 83.98.84.201 - - [13/Jul/2026:22:41:27 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com"
[redacted] 83.98.84.201 - - [13/Jul/2026:22:41:38 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com"
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 13:52:24
(16 hours ago)
(mod_security) mod_security (id:240335) triggered by 83.98.84.201 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 83.98.84.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 09:52:17.116241 2026] [security2:error] [pid 30918:tid 30918] [client 83.98.84.201:39795] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 83.98.84.201 (+1 hits since last alert)|phoboschildren.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "phoboschildren.com"] [uri "/xmlrpc.php"] [unique_id "alTtkRHKLDyDQk5_NXs9UgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-13 13:49:52
(16 hours ago)
[redacted] 83.98.84.201 - - [13/Jul/2026:15:49:09 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Wo ...
show more
[redacted] 83.98.84.201 - - [13/Jul/2026:15:49:09 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com"
[redacted] 83.98.84.201 - - [13/Jul/2026:15:49:19 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com"
[redacted] 83.98.84.201 - - [13/Jul/2026:15:49:30 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com"
[redacted] 83.98.84.201 - - [13/Jul/2026:15:49:40 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)"
[redacted] 83.98.84.201 - - [13/Jul/2026:15:49:51 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.3)"
...
show less
Hacking
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-13 04:03:00
(1 day ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 02:53:28
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 83.98.84.201 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 83.98.84.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 22:53:23.286832 2026] [security2:error] [pid 29965:tid 29975] [client 83.98.84.201:40547] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 83.98.84.201 (+1 hits since last alert)|nabsci.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nabsci.com"] [uri "/xmlrpc.php"] [unique_id "alRTI7yfGGtgdy_bf6mtRgAAAUg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 21:46:32
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 83.98.84.201 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 83.98.84.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 17:46:27.057442 2026] [security2:error] [pid 11706:tid 11706] [client 83.98.84.201:41192] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 83.98.84.201 (+1 hits since last alert)|seskalee.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "seskalee.com"] [uri "/xmlrpc.php"] [unique_id "alQLMwABxQd3M7MWsgIdHQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-12 18:29:37
(1 day ago)
Bad Web Bot
Web App Attack
๐ณ๐ฑ
ConsulHosting
2026-07-12 16:42:08
(1 day ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
๐ฉ๐ช
rh24
2026-07-12 16:24:52
(1 day ago)
(xmlrpc_405) XMLRPC-Bot 405 83.98.84.201 (IT/Italy/-)
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-12 13:53:16
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 83.98.84.201 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 83.98.84.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 09:53:12.851388 2026] [security2:error] [pid 18308:tid 18308] [client 83.98.84.201:40722] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 83.98.84.201 (+1 hits since last alert)|major33.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "major33.com"] [uri "/xmlrpc.php"] [unique_id "alOcSMfkCWlWQ5ixYd4yDQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack