๐บ๐ธ
TPI-Abuse
2026-07-13 22:43:59
(13 hours ago)
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 18:43:54.601098 2026] [security2:error] [pid 3216:tid 3216] [client 129.45.78.39:26962] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 129.45.78.39 (+1 hits since last alert)|mikedeutsch.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mikedeutsch.com"] [uri "/xmlrpc.php"] [unique_id "alVqKnpOkJBy6hxd0fZkFQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Jason Howell
2026-07-13 18:33:56
(17 hours ago)
129.45.78.39 - - [13/Jul/2026:13:33:14 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4358 "-" "Jetpack/12.0 ...
show more
129.45.78.39 - - [13/Jul/2026:13:33:14 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4358 "-" "Jetpack/12.0; WordPress/6.3; http://site80505638.com"
129.45.78.39 - - [13/Jul/2026:13:33:24 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4360 "-" "WordPress.com; https://wordpress.com"
129.45.78.39 - - [13/Jul/2026:13:33:35 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4359 "-" "Jetpack/12.1; WordPress/6.2; http://site52293708.com"
129.45.78.39 - - [13/Jul/2026:13:33:45 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4359 "-" "Jetpack/12.0; WordPress/6.3; http://site96640266.com"
129.45.78.39 - - [13/Jul/2026:13:33:56 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4359 "-" "Jetpack/12.1; WordPress/6.4; http://site69703432.com"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 16:32:15
(19 hours ago)
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 12:32:08.843714 2026] [security2:error] [pid 15878:tid 15878] [client 129.45.78.39:12785] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 129.45.78.39 (+1 hits since last alert)|realdesigninterior.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "realdesigninterior.com"] [uri "/xmlrpc.php"] [unique_id "alUTCOSXy3y-5UR0EJwx6wAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 16:05:33
(20 hours ago)
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 12:05:27.867063 2026] [security2:error] [pid 12413:tid 12413] [client 129.45.78.39:23479] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 129.45.78.39 (+1 hits since last alert)|bosdkbook.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bosdkbook.com"] [uri "/xmlrpc.php"] [unique_id "alUMx6qvq2jFIca3lC1DtgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-13 14:59:41
(21 hours ago)
(wordpress) Failed wordpress login from 129.45.78.39 (DZ/Algeria/Algiers/Algiers/-/[redacted])
Brute-Force
Anonymous
2026-07-13 10:57:05
(1 day ago)
Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 08:39:08
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 04:39:02.268840 2026] [security2:error] [pid 29265:tid 29265] [client 129.45.78.39:55650] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 129.45.78.39 (+1 hits since last alert)|aandbnaturalfoods.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "aandbnaturalfoods.com"] [uri "/xmlrpc.php"] [unique_id "alSkJmVFVNVTpeR9Z9zOXgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 18:44:28
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 14:44:23.855524 2026] [security2:error] [pid 14912:tid 14912] [client 129.45.78.39:3406] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 129.45.78.39 (+1 hits since last alert)|studioyau.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "studioyau.com"] [uri "/xmlrpc.php"] [unique_id "alPgh_aQN_v2dqkAMDqsCAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-12 14:57:59
(1 day ago)
[redacted] 129.45.78.39 - - [12/Jul/2026:16:57:15 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Wo ...
show more
[redacted] 129.45.78.39 - - [12/Jul/2026:16:57:15 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com"
[redacted] 129.45.78.39 - - [12/Jul/2026:16:57:26 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.3; http://site60180904.com"
[redacted] 129.45.78.39 - - [12/Jul/2026:16:57:37 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.0; WordPress/6.2; http://site57271025.com"
[redacted] 129.45.78.39 - - [12/Jul/2026:16:57:47 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.2; http://site71978048.com"
[redacted] 129.45.78.39 - - [12/Jul/2026:16:57:58 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.3)"
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 14:34:52
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 129.45.78.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 10:34:47.733916 2026] [security2:error] [pid 32325:tid 32325] [client 129.45.78.39:32695] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 129.45.78.39 (+1 hits since last alert)|oakvillenaturopathicclinic.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "oakvillenaturopathicclinic.com"] [uri "/xmlrpc.php"] [unique_id "alOmB3muwKJe77oogP3nLgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
konseptit
2026-07-12 11:54:57
(2 days ago)
(wordpress) Failed wordpress login from 129.45.78.39 (DZ/Algeria/-)
Brute-Force
๐ซ๐ท
dynamix
2026-07-12 10:52:45
(2 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ณ๐ฑ
BlueWire Hosting
2026-07-12 10:48:53
(2 days ago)
Probing websites for vulnerabilities
Web App Attack