Anonymous
2026-07-15 06:44:01
(1 day ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-14 00:40:45
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 39.35.199.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 39.35.199.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 20:40:38.099494 2026] [security2:error] [pid 1880:tid 1880] [client 39.35.199.135:64078] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 39.35.199.135 (+1 hits since last alert)|kritaka.ai|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kritaka.ai"] [uri "/xmlrpc.php"] [unique_id "alWFhrqc-PXlLSrzl-Z9xgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-13 23:58:33
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 39.35.199.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 39.35.199.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 19:58:30.808176 2026] [security2:error] [pid 16453:tid 16453] [client 39.35.199.135:39917] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 39.35.199.135 (+1 hits since last alert)|kotelbarmitzvah.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kotelbarmitzvah.com"] [uri "/xmlrpc.php"] [unique_id "alV7piKJKemGE2I7kfxYeQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
screwlooseit.com.au
2026-07-13 23:54:41
(2 days ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
PK/Pakistan/-
Web App Attack
π©πͺ
ghostwarriors
2026-07-13 22:50:10
(3 days ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-13 22:34:40
(3 days ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
π§πͺ
cmbplf
2026-07-13 21:05:21
(3 days ago)
8.089 requests in 1 hour (6d15h59m)
Brute-Force
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-07-13 19:58:35
(3 days ago)
(mod_security) mod_security (id:240335) triggered by 39.35.199.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 39.35.199.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 15:58:30.903429 2026] [security2:error] [pid 17240:tid 17240] [client 39.35.199.135:56002] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 39.35.199.135 (+1 hits since last alert)|xhumanlikerobots.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "xhumanlikerobots.com"] [uri "/xmlrpc.php"] [unique_id "alVDZjKq3Af4cbTMFNuDhQAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
applemooz
2026-07-13 19:56:05
(3 days ago)
WordPress XMLRPC Brute Force Attacks
...
Brute-Force
Web App Attack
Anonymous
2026-07-13 19:55:03
(3 days ago)
39.35.199.135 - - [13/Jul/2026:21:54:51 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418
39.35.199.135 - - ...
show more
39.35.199.135 - - [13/Jul/2026:21:54:51 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418
39.35.199.135 - - [13/Jul/2026:21:55:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418
...
show less
Brute-Force
Bad Web Bot
π§πΎ
lns.bz
2026-07-13 19:53:51
(3 days ago)
Banned for trying to access xmlrpc [BY]
Web App Attack