🇫🇮
YF
2026-07-03 13:00:44
(1 hour ago)
xmlrpc.php Potential DDoS or brute force
DDoS Attack
Brute-Force
🇩🇪
abdubhai
2026-07-03 09:31:35
(5 hours ago)
179.53.144.135 - - [03/Jul/2026:
...
Brute-Force
🇺🇸
TPI-Abuse
2026-07-03 06:45:11
(7 hours ago)
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net. ...
show more
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net.do): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 02:45:04.855274 2026] [security2:error] [pid 12107:tid 12107] [client 179.53.144.135:53091] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.53.144.135 (+1 hits since last alert)|crystaljohns.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "crystaljohns.com"] [uri "/xmlrpc.php"] [unique_id "akdacPAyB8hKkugPQrSKCQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇺🇸
Dolphi
2026-07-03 06:20:04
(8 hours ago)
Excessive POST /xmlrpc.php requests
Brute-Force
Web App Attack
🇺🇸
TPI-Abuse
2026-07-03 03:30:53
(11 hours ago)
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net. ...
show more
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net.do): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 23:30:47.511635 2026] [security2:error] [pid 6792:tid 6792] [client 179.53.144.135:49979] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.53.144.135 (+1 hits since last alert)|theamarals.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "theamarals.com"] [uri "/xmlrpc.php"] [unique_id "akcs52fCXEa3PEtGotsrJAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇫🇷
masterguru
2026-07-03 00:53:58
(13 hours ago)
(xmlrpc) Apache: Failed xmlrpc access from 179.53.144.135 (DO/Dominican Republic/135.144.53.179.d.dy ...
show more
(xmlrpc) Apache: Failed xmlrpc access from 179.53.144.135 (DO/Dominican Republic/135.144.53.179.d.dyn.claro.net.do): 10 in the last 3600 secs (0-201)
show less
Hacking
🇺🇸
TPI-Abuse
2026-07-02 23:54:00
(14 hours ago)
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net. ...
show more
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net.do): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 19:53:56.516769 2026] [security2:error] [pid 19508:tid 19508] [client 179.53.144.135:51850] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.53.144.135 (+1 hits since last alert)|the-it-man.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "the-it-man.com"] [uri "/xmlrpc.php"] [unique_id "akb6FF5QSqj62QhlecYqAQAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇺🇸
TPI-Abuse
2026-07-02 23:24:24
(15 hours ago)
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net. ...
show more
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net.do): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 19:24:18.890207 2026] [security2:error] [pid 11361:tid 11361] [client 179.53.144.135:64464] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.53.144.135 (+1 hits since last alert)|concentricsteel.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "concentricsteel.com"] [uri "/xmlrpc.php"] [unique_id "akbzIgIbKeTtRRYXeaO9kwAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
🇺🇸
TPI-Abuse
2026-07-02 22:51:58
(15 hours ago)
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net. ...
show more
(mod_security) mod_security (id:240335) triggered by 179.53.144.135 (135.144.53.179.d.dyn.claro.net.do): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 18:51:54.669567 2026] [security2:error] [pid 2826:tid 2826] [client 179.53.144.135:57456] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.53.144.135 (+1 hits since last alert)|mahjongcouture.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mahjongcouture.com"] [uri "/xmlrpc.php"] [unique_id "akbrivqc_boYaHjPjNrrKwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack