๐บ๐ธ
TPI-Abuse
2026-07-14 19:50:26
(53 minutes ago)
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 15:50:09.936205 2026] [security2:error] [pid 2271:tid 2271] [client 45.41.106.135:12945] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.41.106.135 (+1 hits since last alert)|wsffjatc.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "wsffjatc.org"] [uri "/xmlrpc.php"] [unique_id "alaS8TetJJa15AHQhXrONgAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Greg Poulson
2026-07-14 08:23:03
(12 hours ago)
Our website was hit by this DDOS at a rate of 9 in 5 minutes.
DDoS Attack
Web Spam
Brute-Force
๐จ๐ฆ
Dunham Support
2026-07-14 06:18:54
(14 hours ago)
(wordpress) Failed wordpress login from 45.41.106.135 (MM/Myanmar/-)
Brute-Force
๐ซ๐ท
dynamix
2026-07-14 05:47:05
(14 hours ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
IndigoRidge
2026-07-14 01:49:44
(18 hours ago)
45.41.106.135 - - [13/Jul/2026:21:47:35 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5701 "-" "WordPress.c ...
show more
45.41.106.135 - - [13/Jul/2026:21:47:35 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5701 "-" "WordPress.com; https://wordpress.com"
45.41.106.135 - - [13/Jul/2026:21:48:28 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5701 "-" "WordPress.com; https://wordpress.com"
45.41.106.135 - - [13/Jul/2026:21:48:39 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5701 "-" "WordPress.com; https://wordpress.com"
45.41.106.135 - - [13/Jul/2026:21:49:01 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5701 "-" "WordPress.com; https://wordpress.com"
45.41.106.135 - - [13/Jul/2026:21:49:43 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5701 "-" "WordPress.com; https://wordpress.com"
...
show less
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-13 23:20:17
(21 hours ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-13 23:15:52
(21 hours ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-07-13 14:29:44
(1 day ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
Anonymous
2026-07-13 13:27:21
(1 day ago)
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 11:26:06
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 07:25:52.767259 2026] [security2:error] [pid 7211:tid 7211] [client 45.41.106.135:39636] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.41.106.135 (+1 hits since last alert)|comobarbershop.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "comobarbershop.com"] [uri "/xmlrpc.php"] [unique_id "alTLQAWrfYmSHC0wvUJJ8wAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 07:51:37
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 03:51:26.095246 2026] [security2:error] [pid 18845:tid 18845] [client 45.41.106.135:65154] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.41.106.135 (+1 hits since last alert)|savingspools.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "savingspools.com"] [uri "/xmlrpc.php"] [unique_id "alSY_rME1hRmrIipP7syCAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 05:07:39
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 01:07:25.506636 2026] [security2:error] [pid 9038:tid 9038] [client 45.41.106.135:49348] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.41.106.135 (+1 hits since last alert)|rimaine.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "rimaine.org"] [uri "/xmlrpc.php"] [unique_id "alRyjTt2IANslaXALnIccgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-13 04:25:31
(1 day ago)
[redacted] 45.41.106.135 - - [13/Jul/2026:06:24:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "J ...
show more
[redacted] 45.41.106.135 - - [13/Jul/2026:06:24:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com"
[redacted] 45.41.106.135 - - [13/Jul/2026:06:24:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com"
[redacted] 45.41.106.135 - - [13/Jul/2026:06:24:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com"
[redacted] 45.41.106.135 - - [13/Jul/2026:06:24:57 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "WordPress.com; https://wordpress.com"
[redacted] 45.41.106.135 - - [13/Jul/2026:06:25:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com"
[redacted] 45.41.106.135 - - [13/Jul/2026:06:25:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)"
[redacted] 45.41.106.135 - - [13/Jul/2026:06:25:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com (Jetpack 13.0;
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 02:38:15
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 22:37:00.040396 2026] [security2:error] [pid 14939:tid 14939] [client 45.41.106.135:53564] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.41.106.135 (+1 hits since last alert)|hookedupfishing.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hookedupfishing.net"] [uri "/xmlrpc.php"] [unique_id "alRPTPT0olN34zbWHe41IgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 02:01:36
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.41.106.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 22:01:23.061760 2026] [security2:error] [pid 28747:tid 28747] [client 45.41.106.135:21565] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.41.106.135 (+1 hits since last alert)|rajabarber.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "rajabarber.com"] [uri "/xmlrpc.php"] [unique_id "alRG8_IwQj4TT8e_MfPAEwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack