๐ฉ๐ช
netclix.gr
2026-07-01 02:46:32
(21 minutes ago)
(wordpress) Failed wordpress login from 41.39.55.99 (EG/Egypt/-): (CF_ENABLE)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-30 19:32:22
(7 hours ago)
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 15:32:16.227401 2026] [security2:error] [pid 16778:tid 16778] [client 41.39.55.99:53907] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.39.55.99 (+1 hits since last alert)|beirutbazar.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "beirutbazar.com"] [uri "/xmlrpc.php"] [unique_id "akQZwHyCuyY-F7VUhOP0KQAAADc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-30 19:07:16
(8 hours ago)
[ns3.backorder.gr] httpd-xmlrpc-post: sites=www.blazos.com; logs=/var/log/httpd/domains/blazos.com.l ...
show more
[ns3.backorder.gr] httpd-xmlrpc-post: sites=www.blazos.com; logs=/var/log/httpd/domains/blazos.com.log; samples=/xmlrpc.php
show less
Brute-Force
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-30 19:00:06
(8 hours ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐ช๐ธ
masterguru
2026-06-30 17:48:17
(9 hours ago)
(xmlrpc) Failed xmlrpc access from 41.39.55.99 (EG/Egypt/-): 5 in the last 3600 secs (0-122)
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-30 14:24:08
(12 hours ago)
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 10:24:04.459457 2026] [security2:error] [pid 12594:tid 12594] [client 41.39.55.99:62835] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.39.55.99 (+1 hits since last alert)|campnecon.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "campnecon.com"] [uri "/xmlrpc.php"] [unique_id "akPRhDzd4YG0VUZf0xfh9gAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 13:23:12
(13 hours ago)
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 09:23:04.626013 2026] [security2:error] [pid 4482:tid 4482] [client 41.39.55.99:61572] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.39.55.99 (+1 hits since last alert)|intrinsicdiscovery.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "intrinsicdiscovery.com"] [uri "/xmlrpc.php"] [unique_id "akPDOAUFAVYVrK99A6lXnwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 09:20:46
(17 hours ago)
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 05:20:41.225061 2026] [security2:error] [pid 13564:tid 13600] [client 41.39.55.99:53415] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.39.55.99 (+1 hits since last alert)|dbestcarting.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "dbestcarting.com"] [uri "/xmlrpc.php"] [unique_id "akOKaelg8Zx52j5y6fxMOAAAAQU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 04:33:08
(22 hours ago)
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:240335) triggered by 41.39.55.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 00:33:01.527214 2026] [security2:error] [pid 24877:tid 24877] [client 41.39.55.99:63652] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.39.55.99 (+1 hits since last alert)|timetemple.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "timetemple.org"] [uri "/xmlrpc.php"] [unique_id "akNG_ZTXEWzrOkazs1BitgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
bigwavedave
2026-06-30 04:31:46
(22 hours ago)
Wordpress Attack
Web App Attack
๐ฉ๐ช
konseptit
2026-06-30 02:59:42
(1 day ago)
(wordpress) Failed wordpress login from 41.39.55.99 (EG/Egypt/-)
Brute-Force
๐บ๐ธ
WeekendWeb
2026-06-29 22:52:50
(1 day ago)
Wordpress Vunerability attack
Web App Attack
๐ซ๐ฎ
bittiguru.fi
2026-06-29 20:03:02
(1 day ago)
41.39.55.99 - [29/Jun/2026:23:02:52 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack by WordP ...
show more
41.39.55.99 - [29/Jun/2026:23:02:52 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.3)" "-"
41.39.55.99 - [29/Jun/2026:23:03:02 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)" "-"
...
show less
Hacking
Brute-Force
Web App Attack
๐ซ๐ฎ
bittiguru.fi
2026-06-29 19:47:44
(1 day ago)
41.39.55.99 - [29/Jun/2026:22:47:34 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "WordPress.com; h ...
show more
41.39.55.99 - [29/Jun/2026:22:47:34 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "WordPress.com; https://wordpress.com" "-"
41.39.55.99 - [29/Jun/2026:22:47:44 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.4)" "-"
...
show less
Hacking
Brute-Force
Web App Attack
๐ซ๐ท
masterguru
2026-06-29 15:32:04
(1 day ago)
xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)
Hacking