๐บ๐ธ
TPI-Abuse
2026-02-26 03:37:03
(4 months ago)
(mod_security) mod_security (id:240335) triggered by 128.1.179.153 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 128.1.179.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 22:36:59.273917 2026] [security2:error] [pid 16213:tid 16213] [client 128.1.179.153:61836] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 128.1.179.153 (+1 hits since last alert)|www.goddesskink.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.goddesskink.com"] [uri "/new/xmlrpc.php"] [unique_id "aZ-_21J8-ydXxKoP5mA5kgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
10dencehispahard SL
2026-02-26 01:00:05
(4 months ago)
Unauthorized login attempts [ wordpress-xmlrpc]
Brute-Force
Web App Attack
Anonymous
2025-10-15 03:52:01
(9 months ago)
BruteForce IMAP/POP3/SMTP
Brute-Force
๐ณ๐ฑ
maxxsense
2025-10-15 01:54:31
(9 months ago)
(smtpauth) Failed SMTP AUTH login from 128.1.179.153 (AR/Argentina/-)
Brute-Force
๐ฉ๐ช
akcurate.de
2025-10-14 23:38:02
(9 months ago)
Oct 15 01:37:56 mail3 postfix/submission/smtpd[117040]: warning: unknown[128.1.179.153]: SASL PLAIN ...
show more
Oct 15 01:37:56 mail3 postfix/submission/smtpd[117040]: warning: unknown[128.1.179.153]: SASL PLAIN authentication failed: authentication failure
Oct 15 01:37:57 mail3 postfix/submission/smtpd[117040]: warning: unknown[128.1.179.153]: SASL LOGIN authentication failed: authentication failure
Oct 15 01:38:01 mail3 postfix/submission/smtpd[117040]: warning: unknown[128.1.179.153]: SASL PLAIN authentication failed: authentication failure
...
show less
Email Spam
Spoofing
Brute-Force
๐จ๐ฟ
lp
2025-09-18 10:56:36
(9 months ago)
Email account brute force: 5 attempts were recorded from 128.1.179.153
2025-09-18T11:40:10+02:00 war ...
show more
Email account brute force: 5 attempts were recorded from 128.1.179.153
2025-09-18T11:40:10+02:00 warning: unknown[128.1.179.153]: SASL PLAIN authentication failed: authentication failure, [email protected]
2025-09-18T11:40:11+02:00 warning: unknown[128.1.179.153]: SASL LOGIN authentication failed: authentication failure, [email protected]
2025-09-18T11:40:14+02:00 warning: unknown[128.1.179.153]: SASL PLAIN authentication failed: authentication failure, [email protected]
2025-09-18T11:40:15+02:00 warning: unknown[128.1.179.153]: SASL LOGIN authentication failed: authentication failure, [email protected]
2025-09-18T11:41:12+02:00 warning: unknown[128.1.179.153]: SASL PLAIN authentication failed: authentication failure, [email protected]
show less
Brute-Force
๐บ๐ธ
hostseries
2025-09-18 10:34:51
(9 months ago)
Trigger: LF_DISTATTACK
Brute-Force
๐บ๐ธ
TPI-Abuse
2025-09-11 00:08:03
(10 months ago)
(mod_security) mod_security (id:240335) triggered by 128.1.179.153 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 128.1.179.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 10 20:07:58.549888 2025] [security2:error] [pid 8039:tid 8050] [client 128.1.179.153:52045] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 128.1.179.153 (+1 hits since last alert)|whatismetamodern.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "whatismetamodern.com"] [uri "/xmlrpc.php"] [unique_id "aMIS3vGT-tM-BD6-lmHT1wAAAUk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-09-10 23:52:11
(10 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ช๐ธ
masterguru
2025-09-10 23:32:26
(10 months ago)
WordPress: User enumeration. Pattern match "(author\\\\= (1000-123)
Web App Attack
๐ช๐ธ
masterguru
2025-09-10 22:57:55
(10 months ago)
BAD BOT - Detected and Blocked.. Matched phrase "python-requests" at REQUEST_HEADERS:User-Agent. (11 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "python-requests" at REQUEST_HEADERS:User-Agent. (1100000-122)
show less
Bad Web Bot
Anonymous
2025-08-28 11:17:08
(10 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ง๐ท
diego
2025-03-19 08:49:17
(1 year ago)
Events: TCP SYN Discovery or Flooding, Seen 3 times in the last 10800 seconds
DDoS Attack
๐จ๐ฟ
0x44
2025-03-19 05:22:53
(1 year ago)
19/Mar/2025 - Malicious Spam * Flood
Email Spam
Brute-Force
Anonymous
2025-03-19 03:30:52
(1 year ago)
Ports: 25,2525,110,143,993,995; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH