๐บ๐ธ
TPI-Abuse
2026-07-03 17:35:47
(2 hours ago)
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): ...
show more
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 13:35:40.522023 2026] [security2:error] [pid 30522:tid 30522] [client 179.9.163.153:65198] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.9.163.153 (+1 hits since last alert)|takeapawsboston.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "takeapawsboston.com"] [uri "/xmlrpc.php"] [unique_id "akfy7G29xXaYOOQIqfZ3EAAAADA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 16:02:45
(4 hours ago)
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): ...
show more
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 12:02:42.274531 2026] [security2:error] [pid 31695:tid 31695] [client 179.9.163.153:57022] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.9.163.153 (+1 hits since last alert)|my-spec.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "my-spec.com"] [uri "/xmlrpc.php"] [unique_id "akfdIkU9BwJvhaYzeUqUygAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 14:31:54
(6 hours ago)
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): ...
show more
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 10:31:47.583568 2026] [security2:error] [pid 21657:tid 21657] [client 179.9.163.153:62423] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.9.163.153 (+1 hits since last alert)|guarinofurnituredesigns.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "guarinofurnituredesigns.com"] [uri "/xmlrpc.php"] [unique_id "akfH04PkwBbNT9cPIX7AOgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-03 12:58:09
(7 hours ago)
(wordpress) Failed wordpress login from 179.9.163.153 (CL/Chile/179-9-163-153.baf.movistar.cl)
Brute-Force
Anonymous
2026-07-03 11:59:10
(8 hours ago)
Attac
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-03 09:59:16
(10 hours ago)
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): ...
show more
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 05:59:11.373028 2026] [security2:error] [pid 24098:tid 24098] [client 179.9.163.153:57643] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.9.163.153 (+1 hits since last alert)|marianozaro.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "marianozaro.com"] [uri "/xmlrpc.php"] [unique_id "akeH71YWq229MFM1JoGixAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-03 00:02:33
(20 hours ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-02 23:08:48
(21 hours ago)
Repeated wp-login/xmlrpc attempts
Brute-Force
SSH
๐ซ๐ฎ
YF
2026-07-02 23:00:33
(21 hours ago)
xmlrpc.php Potential DDoS or brute force
DDoS Attack
Brute-Force
๐ซ๐ท
SpaceHost-Server
2026-07-02 22:28:32
(22 hours ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 20:06:08
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): ...
show more
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 16:06:01.171559 2026] [security2:error] [pid 26098:tid 26098] [client 179.9.163.153:50647] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.9.163.153 (+1 hits since last alert)|nearfieldchrist.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nearfieldchrist.com"] [uri "/xmlrpc.php"] [unique_id "akbEqSenf0T9ZNIIg8l78AAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Marc
2026-07-02 06:18:50
(1 day ago)
179.9.163.153 - - [02/Jul/2026:08:18:27 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3244 "-" "Jetpack/13. ...
show more
179.9.163.153 - - [02/Jul/2026:08:18:27 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3244 "-" "Jetpack/13.0; WordPress/6.4; http://site10031835.com" 179.9.163.153 - - [02/Jul/2026:08:18:37 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3243 "-" "WordPress.com; https://wordpress.com" 179.9.163.153 - - [02/Jul/2026:08:18:48 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3245 "-" "Jetpack/12.0; WordPress/6.3; http://site90125192.com"
show less
Brute-Force
Web App Attack
๐ซ๐ท
dynamix
2026-07-02 06:18:47
(1 day ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 22:08:01
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): ...
show more
(mod_security) mod_security (id:240335) triggered by 179.9.163.153 (179-9-163-153.baf.movistar.cl): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 18:07:53.256176 2026] [security2:error] [pid 22604:tid 22624] [client 179.9.163.153:64799] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.9.163.153 (+1 hits since last alert)|howlerrock.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "howlerrock.com"] [uri "/xmlrpc.php"] [unique_id "akWPucp0KfxogUJ-5lsQEwAAARE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-01 19:29:42
(2 days ago)
(wordpress) Failed wordpress login from 179.9.163.153 (CL/Chile/179-9-163-153.baf.movistar.cl)
Brute-Force