Anonymous
2026-07-13 14:52:52
(3 days ago)
39.45.139.73 - - [13/Jul/2026:16:52:42 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428
39.45.139.73 - - [ ...
show more
39.45.139.73 - - [13/Jul/2026:16:52:42 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428
39.45.139.73 - - [13/Jul/2026:16:52:51 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428
...
show less
Brute-Force
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-07-13 04:38:43
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 39.45.139.73 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 39.45.139.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 00:38:38.257934 2026] [security2:error] [pid 30533:tid 30533] [client 39.45.139.73:60545] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 39.45.139.73 (+1 hits since last alert)|4115thewestford.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "4115thewestford.com"] [uri "/xmlrpc.php"] [unique_id "alRrzp4iA_TS9zW2mDtAdQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-12 16:06:09
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 39.45.139.73 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 39.45.139.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 12:06:05.059074 2026] [security2:error] [pid 25908:tid 25908] [client 39.45.139.73:61871] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 39.45.139.73 (+1 hits since last alert)|renomarsh.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "renomarsh.com"] [uri "/xmlrpc.php"] [unique_id "alO7bV8g0AVydNwrkfk3SQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-12 15:28:48
(4 days ago)
Bad Web Bot
Web App Attack
π©πͺ
ghostwarriors
2026-07-11 11:50:31
(5 days ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-11 11:43:26
(5 days ago)
(mod_security) mod_security (id:240335) triggered by 39.45.139.73 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 39.45.139.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 07:43:22.422329 2026] [security2:error] [pid 6227:tid 6227] [client 39.45.139.73:64444] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 39.45.139.73 (+1 hits since last alert)|insidepublications.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "insidepublications.com"] [uri "/xmlrpc.php"] [unique_id "alIsWkRrKJSU6MEIcQ25NgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
WeekendWeb
2026-07-11 11:41:52
(5 days ago)
Wordpress Vunerability attack
Web App Attack
Anonymous
2026-07-11 11:41:38
(5 days ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
Anonymous
2026-07-11 05:01:03
(6 days ago)
(wordpress) Failed wordpress login from 39.45.139.73 (PK/Pakistan/-)
Brute-Force
π¨π
ALPHANET
2025-09-21 16:50:49
(9 months ago)
Botnet or web spider not respecting robots.txt
DDoS Attack
Exploited Host