Topic: Pengguna CMS Wordpress Hati-Hati Dengan DDoS

Pendahuluan
================================
Saya mempunyai domain Pancaran-Kasih.org, domain ini saat ini hanya digunakan untuk menampilkan demo penawaran jasa webdesign dengan menggunakan Wordpress (paket penawaran kursus webdesign untuk pemula).
Domain ini disimpan di server saya (dedicated server).
Baru-baru ini domain ini diserang oleh banyak IP dengan menggunakan jenis serangan DDoS. Saat ini server masih aman dan masih stabil.

Apabila anda pengguna web CMS Wordpress, HATI-HATI dengan modus serangan baru.

Apa sih itu XML-RPC?
================================
WordPress uses an XML-RPC interface. WordPress has its own implementation for WordPress-specific functionality in an API called the WordPress API. This should be used when possible, and your client should use the API variants beginning with the wp prefix.
WordPress also supports the Blogger API, metaWeblog API, Movable Type API, and the Pingback API.
With WordPress XML-RPC support, you can post to your WordPress blog using many popular Weblog Clients. The XML-RPC system can be extended by WordPress Plugins to modify its behavior.

http://codex.wordpress.org/XML-RPC_Support


70.75.246.xx - - [26/Nov/2014:09:42:48 +0700] "GET /xmlrpc.php HTTP/1.1" 200 241 "-" "Mozilla/5.0 (Windows NT 5.1; en-US; rv:1.9.1.3) Gecko/20100101 Firefox/8.0"
70.75.246.xx - - [26/Nov/2014:09:42:50 +0700] "GET /wp-login.php HTTP/1.1" 200 1958 "-" "Mozilla/5.0 (Windows NT 5.1; en-US; rv:1.9.1.3) Gecko/20100101 Firefox/8.0"
85.100.117.xyz - - [26/Nov/2014:10:39:23 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
85.100.117.xyz - - [26/Nov/2014:10:39:24 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
79.181.14.xx - - [26/Nov/2014:10:39:46 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
79.181.14.xx - - [26/Nov/2014:10:39:47 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
186.64.146.xyz - - [26/Nov/2014:10:39:57 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
186.64.146.xyz - - [26/Nov/2014:10:40:00 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
60.51.101.xx - - [26/Nov/2014:10:40:01 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
60.51.101.xx - - [26/Nov/2014:10:40:01 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
115.132.162.xx - - [26/Nov/2014:10:40:05 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
115.132.162.xx - - [26/Nov/2014:10:40:06 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
14.32.120.xx - - [26/Nov/2014:10:40:26 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
14.32.120.xx - - [26/Nov/2014:10:40:27 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
209.236.22.xx - - [26/Nov/2014:10:40:43 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
209.236.22.xx - - [26/Nov/2014:10:40:46 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
175.144.189.xyz - - [26/Nov/2014:10:40:58 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
175.144.189.xyz - - [26/Nov/2014:10:40:59 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
94.4.28.xyz - - [26/Nov/2014:10:41:23 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
94.4.28.xyz - - [26/Nov/2014:10:41:24 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
36.75.109.xx - - [26/Nov/2014:10:41:52 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
36.75.109.xx - - [26/Nov/2014:10:41:53 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
186.64.146.xyz - - [26/Nov/2014:10:42:20 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
186.64.146.xyz - - [26/Nov/2014:10:42:22 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
59.152.99.x - - [26/Nov/2014:10:42:23 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
59.152.99.x - - [26/Nov/2014:10:42:25 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
36.81.90.xyz - - [26/Nov/2014:10:42:28 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
36.81.90.xyz - - [26/Nov/2014:10:42:29 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
115.79.56.xyz - - [26/Nov/2014:10:42:35 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
115.79.56.xyz - - [26/Nov/2014:10:42:37 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
171.96.177.xx - - [26/Nov/2014:10:42:44 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
93.55.185.xyz - - [26/Nov/2014:10:42:44 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
171.96.177.xx - - [26/Nov/2014:10:42:46 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
93.55.185.xyz - - [26/Nov/2014:10:42:46 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
79.178.148.xx - - [26/Nov/2014:10:42:57 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
79.178.148.xx - - [26/Nov/2014:10:42:58 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
175.144.189.xyz - - [26/Nov/2014:10:43:17 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
175.144.189.xyz - - [26/Nov/2014:10:43:17 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
14.32.120.xx - - [26/Nov/2014:10:43:23 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
14.32.120.xx - - [26/Nov/2014:10:43:24 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
36.83.126.xyz - - [26/Nov/2014:10:43:36 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
36.83.126.xyz - - [26/Nov/2014:10:43:40 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
77.126.21.xx - - [26/Nov/2014:10:43:47 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
77.126.21.xx - - [26/Nov/2014:10:43:56 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
41.69.41.xx - - [26/Nov/2014:10:44:18 +0700] "POST /xmlrpc.php HTTP/1.1" 301 450 "-" "-"
46.107.214.xyz - - [26/Nov/2014:10:44:19 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
46.107.214.xyz - - [26/Nov/2014:10:44:21 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
186.67.51.xx - - [26/Nov/2014:10:44:22 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
41.69.41.xx - - [26/Nov/2014:10:44:22 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13929 "-" "-"
187.113.217.xyz - - [26/Nov/2014:10:44:23 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
186.67.51.xx - - [26/Nov/2014:10:44:24 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
187.113.217.xyz - - [26/Nov/2014:10:44:27 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
76.31.178.xyz - - [26/Nov/2014:10:44:40 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
76.31.178.xyz - - [26/Nov/2014:10:44:41 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
5.145.45.xyz - - [26/Nov/2014:10:44:50 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
79.177.157.xx - - [26/Nov/2014:10:44:52 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
79.177.157.xx - - [26/Nov/2014:10:44:53 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
58.169.201.xx - - [26/Nov/2014:10:44:54 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
58.169.201.xx - - [26/Nov/2014:10:44:59 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
115.79.56.xyz - - [26/Nov/2014:10:45:00 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
31.192.10.xx - - [26/Nov/2014:10:45:01 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
115.79.56.xyz - - [26/Nov/2014:10:45:01 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
31.192.10.xx - - [26/Nov/2014:10:45:02 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
5.145.45.xyz - - [26/Nov/2014:10:45:03 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
61.214.204.xyz - - [26/Nov/2014:10:45:06 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
41.69.41.xx - - [26/Nov/2014:10:45:23 +0700] "POST /xmlrpc.php HTTP/1.1" 301 450 "-" "-"
61.214.204.xyz - - [26/Nov/2014:10:45:28 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
61.214.204.xyz - - [26/Nov/2014:10:45:38 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
202.94.83.xyz - - [26/Nov/2014:10:45:54 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
202.94.83.xyz - - [26/Nov/2014:10:45:56 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
190.80.49.xx - - [26/Nov/2014:10:45:59 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
60.51.101.xx - - [26/Nov/2014:10:46:02 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
60.51.101.xx - - [26/Nov/2014:10:46:03 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
190.80.49.xx - - [26/Nov/2014:10:46:03 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
14.32.120.xx - - [26/Nov/2014:10:46:14 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
79.181.14.xx - - [26/Nov/2014:10:46:15 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
14.32.120.xx - - [26/Nov/2014:10:46:15 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
79.181.14.xx - - [26/Nov/2014:10:46:16 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
66.234.47.xyz - - [26/Nov/2014:10:46:34 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
66.234.47.xyz - - [26/Nov/2014:10:46:35 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
86.108.120.xyz - - [26/Nov/2014:10:46:37 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
86.108.120.xyz - - [26/Nov/2014:10:46:38 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
201.220.124.xx - - [26/Nov/2014:10:47:07 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
85.250.93.xx - - [26/Nov/2014:10:47:14 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
93.55.185.xyz - - [26/Nov/2014:10:47:20 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
93.55.185.xyz - - [26/Nov/2014:10:47:21 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
94.4.28.xyz - - [26/Nov/2014:10:47:22 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
94.4.28.xyz - - [26/Nov/2014:10:47:23 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
85.250.93.xx - - [26/Nov/2014:10:47:23 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
201.220.124.xx - - [26/Nov/2014:10:47:29 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
197.248.120.xyz - - [26/Nov/2014:10:47:47 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
197.248.120.xyz - - [26/Nov/2014:10:47:48 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
41.63.3.xx - - [26/Nov/2014:10:48:08 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
41.63.3.xx - - [26/Nov/2014:10:48:09 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
221.167.91.xx - - [26/Nov/2014:10:48:10 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
221.167.91.xx - - [26/Nov/2014:10:48:11 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
186.82.183.xyz - - [26/Nov/2014:10:48:27 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
186.82.183.xyz - - [26/Nov/2014:10:48:29 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
176.78.86.xyz - - [26/Nov/2014:10:48:29 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
119.92.185.xyz - - [26/Nov/2014:10:48:30 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
176.78.86.xyz - - [26/Nov/2014:10:48:30 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
119.92.185.xyz - - [26/Nov/2014:10:48:30 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
36.83.126.xyz - - [26/Nov/2014:10:48:40 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
36.83.126.xyz - - [26/Nov/2014:10:48:41 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
189.103.25.xyz - - [26/Nov/2014:10:48:45 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
115.134.147.xyz - - [26/Nov/2014:10:48:51 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
115.134.147.xyz - - [26/Nov/2014:10:48:51 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
58.169.201.xx - - [26/Nov/2014:10:49:12 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
58.169.201.xx - - [26/Nov/2014:10:49:13 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
112.198.36.x - - [26/Nov/2014:10:49:14 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
112.198.36.x - - [26/Nov/2014:10:49:15 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
208.126.107.xyz - - [26/Nov/2014:10:49:17 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
179.197.255.xyz - - [26/Nov/2014:10:49:18 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
208.126.107.xyz - - [26/Nov/2014:10:49:18 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
179.197.255.xyz - - [26/Nov/2014:10:49:20 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
93.55.185.xyz - - [26/Nov/2014:10:49:21 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
93.55.185.xyz - - [26/Nov/2014:10:49:22 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
186.64.146.xyz - - [26/Nov/2014:10:49:30 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
186.64.146.xyz - - [26/Nov/2014:10:49:31 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
175.195.40.xyz - - [26/Nov/2014:10:49:39 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
175.195.40.xyz - - [26/Nov/2014:10:49:40 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
79.178.148.xx - - [26/Nov/2014:10:50:09 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
109.160.186.x - - [26/Nov/2014:10:50:10 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
79.178.148.xx - - [26/Nov/2014:10:50:10 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
109.160.186.x - - [26/Nov/2014:10:50:12 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
188.26.238.xyz - - [26/Nov/2014:10:50:26 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
188.26.238.xyz - - [26/Nov/2014:10:50:27 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
65.124.232.xyz - - [26/Nov/2014:10:50:35 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
65.124.232.xyz - - [26/Nov/2014:10:50:36 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
77.125.99.xx - - [26/Nov/2014:10:50:45 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
89.134.175.xyz - - [26/Nov/2014:10:50:47 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
89.134.175.xyz - - [26/Nov/2014:10:50:48 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
77.125.99.xx - - [26/Nov/2014:10:50:49 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
58.169.201.xx - - [26/Nov/2014:10:51:09 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
58.169.201.xx - - [26/Nov/2014:10:51:10 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
115.134.147.xyz - - [26/Nov/2014:10:51:20 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
115.134.147.xyz - - [26/Nov/2014:10:51:20 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
93.55.185.xyz - - [26/Nov/2014:10:51:26 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
93.55.185.xyz - - [26/Nov/2014:10:51:28 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
186.64.146.xyz - - [26/Nov/2014:10:51:36 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
171.96.177.xx - - [26/Nov/2014:10:51:37 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
186.64.146.xyz - - [26/Nov/2014:10:51:37 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
171.96.177.xx - - [26/Nov/2014:10:51:38 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
178.222.121.xx - - [26/Nov/2014:10:51:40 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
176.78.86.xyz - - [26/Nov/2014:10:51:42 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
176.78.86.xyz - - [26/Nov/2014:10:51:43 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
201.190.37.xx - - [26/Nov/2014:10:52:00 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
79.177.157.xx - - [26/Nov/2014:10:52:04 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
79.177.157.xx - - [26/Nov/2014:10:52:05 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
201.190.37.xx - - [26/Nov/2014:10:52:13 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
78.108.169.xx - - [26/Nov/2014:10:52:14 +0700] "POST /xmlrpc.php HTTP/1.1" 301 450 "-" "-"
61.214.204.xyz - - [26/Nov/2014:10:52:15 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
61.214.204.xyz - - [26/Nov/2014:10:52:15 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
71.164.231.xx - - [26/Nov/2014:10:52:22 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
71.164.231.xx - - [26/Nov/2014:10:52:22 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
78.108.169.xx - - [26/Nov/2014:10:52:23 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13929 "-" "-"
77.197.236.xx - - [26/Nov/2014:10:52:24 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
77.197.236.xx - - [26/Nov/2014:10:52:30 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
79.181.14.xx - - [26/Nov/2014:10:52:33 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
79.181.14.xx - - [26/Nov/2014:10:52:34 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
14.32.120.xx - - [26/Nov/2014:10:52:38 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
14.32.120.xx - - [26/Nov/2014:10:52:39 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
194.224.254.xyz - - [26/Nov/2014:10:52:40 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
194.224.254.xyz - - [26/Nov/2014:10:52:41 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
186.7.197.xyz - - [26/Nov/2014:10:52:43 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
201.127.163.xyz - - [26/Nov/2014:10:52:45 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
186.7.197.xyz - - [26/Nov/2014:10:52:45 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
201.127.163.xyz - - [26/Nov/2014:10:52:46 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
115.66.222.xx - - [26/Nov/2014:10:52:49 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
94.4.28.xyz - - [26/Nov/2014:10:52:49 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
94.4.28.xx - - [26/Nov/2014:10:52:49 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
115.66.222.xx - - [26/Nov/2014:10:52:51 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
36.83.126.xyz - - [26/Nov/2014:10:53:06 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
36.83.126.xyz - - [26/Nov/2014:10:53:08 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
59.152.99.x - - [26/Nov/2014:10:53:08 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
59.152.99.x - - [26/Nov/2014:10:53:10 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
222.124.215.xx - - [26/Nov/2014:10:53:21 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
222.124.215.xx - - [26/Nov/2014:10:53:21 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
115.79.56.xyz - - [26/Nov/2014:10:53:33 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
115.79.56.xyz - - [26/Nov/2014:10:53:34 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
186.67.51.xx - - [26/Nov/2014:10:53:38 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
186.67.51.xx - - [26/Nov/2014:10:53:39 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
115.134.147.xyz - - [26/Nov/2014:10:53:52 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
115.134.147.xyz - - [26/Nov/2014:10:53:52 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
46.107.214.xyz - - [26/Nov/2014:10:54:03 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
46.107.214.xyz - - [26/Nov/2014:10:54:04 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
115.143.25.xyz - - [26/Nov/2014:10:54:08 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
115.143.25.xx - - [26/Nov/2014:10:54:09 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
85.100.117.xyz - - [26/Nov/2014:10:54:26 +0700] "POST /xmlrpc.php HTTP/1.1" 301 413 "-" "-"
85.100.117.xyz - - [26/Nov/2014:10:54:27 +0700] "POST /xmlrpc.php HTTP/1.1" 404 13892 "-" "-"
--------------------------------- 500+ lagi ----------------------------------------------

Tidak beberapa lama, datang Pendobrak:

70.32.97.xyz - - [26/Nov/2014:13:25:44 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:45 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:46 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:47 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:47 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:48 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:49 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:50 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:51 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:51 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:53 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:53 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:54 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:55 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:56 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:56 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:57 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:58 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:25:59 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:00 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:00 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:01 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:02 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:03 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:04 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:05 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:05 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:06 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:07 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:08 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:08 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:09 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:10 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:11 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:12 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:12 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:13 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:14 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:15 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:16 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:16 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:17 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:18 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:19 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:20 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:20 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:21 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:22 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:23 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:23 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:24 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:25 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:26 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:26 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:27 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:28 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:29 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:29 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:30 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:31 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:32 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:33 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:33 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"
70.32.97.xyz - - [26/Nov/2014:13:26:34 +0700] "POST /wp-login.php HTTP/1.0" 302 403 "-" "-"

.... ngak ngefek, sorri yach :-) ....
==============================================================

Cara untuk memblokir jenis serangan seperti ini, yaitu dengan menuliskan filter berikut pada function.php.

add_filter ( 'xmlrpc_methods', function( $methods ) {
    unset( $methods['pingback.ping'] );
    return $methods;
} );

Fungsinya adalah:
- Menonaktifkan XMLRPC Wordpress saya.

Semoga bermanfaat.

Re: Pengguna CMS Wordpress Hati-Hati Dengan DDoS

wah terimakasih mas sudah berbagi, nice share ijin bookmark ya

Kamera CCTV dari Andalan Sekurindo saat ini mulai banyak digunakan berbagai perusahaan besar di Indonesia

Re: Pengguna CMS Wordpress Hati-Hati Dengan DDoS

memang hrs bagus hostingnya , juga update terbaru wpnya

Re: Pengguna CMS Wordpress Hati-Hati Dengan DDoS

sangat bermanfaat,, terimakasih..

Re: Pengguna CMS Wordpress Hati-Hati Dengan DDoS

Oke, terimakasih atas informasinya sangat bermanfaat berguna buat antisipasi