๐บ๐ธ
TPI-Abuse
2026-07-07 17:16:00
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 13:15:54.125297 2026] [security2:error] [pid 20333:tid 20338] [client 41.59.45.204:53584] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.59.45.204 (+1 hits since last alert)|41bravo.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "41bravo.com"] [uri "/xmlrpc.php"] [unique_id "ak00SiEx3hH-ldpoMsx5-gAAAEI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
konseptit
2026-07-07 16:14:02
(2 days ago)
(wordpress) Failed wordpress login from 41.59.45.204 (TZ/Tanzania/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-07 13:42:53
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 09:42:47.730221 2026] [security2:error] [pid 27129:tid 27129] [client 41.59.45.204:51777] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.59.45.204 (+1 hits since last alert)|broneksuchanek.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "broneksuchanek.com"] [uri "/xmlrpc.php"] [unique_id "ak0CV7wbUPTjwDci8idB3AAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 11:58:47
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 07:58:40.410767 2026] [security2:error] [pid 16248:tid 16271] [client 41.59.45.204:62986] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.59.45.204 (+1 hits since last alert)|captechinc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "captechinc.com"] [uri "/xmlrpc.php"] [unique_id "akzp8Ew3_AH02bXRdbneOQAAAFU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
neckaralb-admin.de
2026-07-07 11:45:21
(2 days ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 11:28:49
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 07:28:42.218618 2026] [security2:error] [pid 6051:tid 6051] [client 41.59.45.204:53547] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.59.45.204 (+1 hits since last alert)|riser-astrology.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "riser-astrology.com"] [uri "/xmlrpc.php"] [unique_id "akzi6uDoLzWjrMlmm6IJXAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
masterguru
2026-07-07 08:58:26
(2 days ago)
(xmlrpc) Failed xmlrpc access from 41.59.45.204 (TZ/Tanzania/-): 5 in the last 3600 secs (0-122)
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-07 08:57:49
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 04:57:46.981104 2026] [security2:error] [pid 12182:tid 12182] [client 41.59.45.204:62487] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.59.45.204 (+1 hits since last alert)|stlouisdave.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "stlouisdave.com"] [uri "/xmlrpc.php"] [unique_id "aky_ilxrlnwUyUcS9q9FwwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 08:03:17
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 04:03:12.494238 2026] [security2:error] [pid 20325:tid 20325] [client 41.59.45.204:62389] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.59.45.204 (+1 hits since last alert)|boaredraven.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "boaredraven.com"] [uri "/xmlrpc.php"] [unique_id "akyywJE1mYeRHTFOG-NgwgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
clapper
2026-07-07 05:58:37
(2 days ago)
(mod_security) mod_security (id:350202) triggered by 41.59.45.204 (TZ/Tanzania/-): 5 in the last 600 ...
show more
(mod_security) mod_security (id:350202) triggered by 41.59.45.204 (TZ/Tanzania/-): 5 in the last 600 secs; ID: rub
show less
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-07 05:29:00
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 01:28:55.334270 2026] [security2:error] [pid 27623:tid 27623] [client 41.59.45.204:61197] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.59.45.204 (+1 hits since last alert)|lysedzija.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lysedzija.com"] [uri "/xmlrpc.php"] [unique_id "akyOl98rVdazcU-wr6w9pwAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
bittiguru.fi
2026-07-07 04:40:10
(2 days ago)
41.59.45.204 - [07/Jul/2026:07:40:00 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack by Word ...
show more
41.59.45.204 - [07/Jul/2026:07:40:00 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack by WordPress.com" "-"
41.59.45.204 - [07/Jul/2026:07:40:10 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "WordPress.com; https://wordpress.com" "-"
...
show less
Hacking
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 04:32:12
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 00:32:08.547634 2026] [security2:error] [pid 9929:tid 9947] [client 41.59.45.204:61133] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.59.45.204 (+1 hits since last alert)|kettlehill.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kettlehill.com"] [uri "/xmlrpc.php"] [unique_id "akyBSHd_rlEgcEFMbXepQQAAAFA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
bittiguru.fi
2026-07-07 04:24:57
(2 days ago)
41.59.45.204 - [07/Jul/2026:07:24:48 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack/13.0; W ...
show more
41.59.45.204 - [07/Jul/2026:07:24:48 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack/13.0; WordPress/6.2; http://site42894835.com" "-"
41.59.45.204 - [07/Jul/2026:07:24:57 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack/12.5; WordPress/6.2; http://site44003852.com" "-"
...
show less
Hacking
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 02:51:47
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:240335) triggered by 41.59.45.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 22:51:39.779252 2026] [security2:error] [pid 9775:tid 9775] [client 41.59.45.204:58943] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 41.59.45.204 (+1 hits since last alert)|cienmalos.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cienmalos.com"] [uri "/xmlrpc.php"] [unique_id "akxpu9aJHM1OEpOee8Lq-gAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack