๐ซ๐ท
masterguru
2026-07-08 13:07:07
(2 days ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking
๐ธ๐ช
konseptit
2026-07-08 04:26:56
(2 days ago)
(wordpress) Failed wordpress login from 94.57.98.17 (AE/United Arab Emirates/-)
Brute-Force
๐ฌ๐ง
andypiper
2026-07-08 01:02:31
(2 days ago)
CrowdSec ban for AbuseIPDB Top List
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 00:22:33
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 20:22:26.026456 2026] [security2:error] [pid 26325:tid 26325] [client 94.57.98.17:54981] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 94.57.98.17 (+1 hits since last alert)|citizensforsanity.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "citizensforsanity.com"] [uri "/xmlrpc.php"] [unique_id "ak2YQvP88cuONNBgLfOn5AAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
rh24
2026-07-08 00:11:41
(3 days ago)
(wordpress) Failed wordpress login from 94.57.98.17 (AE/United Arab Emirates/-): (CF_ENABLE)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-07 19:48:03
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 15:47:59.408411 2026] [security2:error] [pid 728:tid 728] [client 94.57.98.17:62470] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 94.57.98.17 (+1 hits since last alert)|verdeprofundo.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "verdeprofundo.net"] [uri "/xmlrpc.php"] [unique_id "ak1X72I7s4Lk40pPVmoIcwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
YF
2026-07-07 19:01:03
(3 days ago)
xmlrpc.php Potential DDoS or brute force
DDoS Attack
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-07 17:01:50
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 13:01:42.686363 2026] [security2:error] [pid 17866:tid 17866] [client 94.57.98.17:58385] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 94.57.98.17 (+1 hits since last alert)|apexhumanoidrobots.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "apexhumanoidrobots.com"] [uri "/xmlrpc.php"] [unique_id "ak0w9mG0IzUn0vdwM0UddAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 15:09:29
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 11:09:21.949992 2026] [security2:error] [pid 2079:tid 2079] [client 94.57.98.17:49662] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 94.57.98.17 (+1 hits since last alert)|enriquejezik.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "enriquejezik.com"] [uri "/xmlrpc.php"] [unique_id "ak0WocviV0ByAVd1o2vjAgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-07 14:06:32
(3 days ago)
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-07 13:56:08
(3 days ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐ช๐ธ
alferez
2026-07-07 12:41:21
(3 days ago)
xmlrpc.php attack DOS
Hacking
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 11:22:46
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 07:22:41.861174 2026] [security2:error] [pid 22579:tid 22579] [client 94.57.98.17:62714] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 94.57.98.17 (+1 hits since last alert)|takeapawsboston.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "takeapawsboston.com"] [uri "/xmlrpc.php"] [unique_id "akzhgYa7dLqw-ssZs1TvLAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 09:51:04
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 94.57.98.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 05:50:58.650907 2026] [security2:error] [pid 14722:tid 14722] [client 94.57.98.17:62916] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 94.57.98.17 (+1 hits since last alert)|hawaiivacations.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hawaiivacations.com"] [uri "/xmlrpc.php"] [unique_id "akzMAkQsxmmtpnqGbO2F9wAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
LRob
2026-07-07 09:48:51
(3 days ago)
CrowdSec: crowdsecurity/http-bf-wordpress_bf_xmlrpc | req: ["/xmlrpc.php"] | UA: ["Jetpack by WordPr ...
show more
CrowdSec: crowdsecurity/http-bf-wordpress_bf_xmlrpc | req: ["/xmlrpc.php"] | UA: ["Jetpack by WordPress.com","Jetpack/13.0; WordPress/6.2; http://site83462401.com","WordPress.com; https://wordpress.com","Jetpack/12.5; WordPress/6.2
show less
Brute-Force
Web App Attack