π«π·
Sklurk
2026-07-07 13:34:45
(7 hours ago)
Web App Attack
Web App Attack
πͺπΈ
masterguru
2026-07-07 05:13:11
(15 hours ago)
(xmlrpc) Failed xmlrpc access from 45.120.97.216 (BD/Bangladesh/-): 5 in the last 3600 secs (0-122)
Hacking
Anonymous
2026-07-06 11:07:45
(1 day ago)
[da.kdns.gr] httpd-xmlrpc-post: sites=www.oro24.gr; logs=/var/log/httpd/domains/oro24.gr.log; sample ...
show more
[da.kdns.gr] httpd-xmlrpc-post: sites=www.oro24.gr; logs=/var/log/httpd/domains/oro24.gr.log; samples=/xmlrpc.php
show less
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-05 06:29:29
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 02:29:22.466513 2026] [security2:error] [pid 24233:tid 24233] [client 45.120.97.216:50511] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.120.97.216 (+1 hits since last alert)|palumbodesigns.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "palumbodesigns.com"] [uri "/xmlrpc.php"] [unique_id "akn5wl_PaojphyNifV6bZwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
kosada.com
2026-07-03 11:12:28
(4 days ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
πͺπΈ
masterguru
2026-07-03 01:50:07
(4 days ago)
(xmlrpc) Failed xmlrpc access from 45.120.97.216 (BD/Bangladesh/-): 5 in the last 3600 secs (0-122)
Hacking
πΊπΈ
TPI-Abuse
2026-06-30 07:59:01
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 03:58:55.420971 2026] [security2:error] [pid 1784:tid 1784] [client 45.120.97.216:14367] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.120.97.216 (+1 hits since last alert)|deborahbein.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "deborahbein.com"] [uri "/xmlrpc.php"] [unique_id "akN3P7uaQfVp5iB4q7A2jgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π±π»
garmtech.com
2026-06-26 04:15:18
(1 week ago)
IM360 WAF: Rate limit exceeded for XMLRPC DoS (fault code)
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-24 21:40:25
(1 week ago)
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 17:40:20.685354 2026] [security2:error] [pid 23920:tid 23920] [client 45.120.97.216:50834] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.120.97.216 (+1 hits since last alert)|puckerbikini.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "puckerbikini.com"] [uri "/xmlrpc.php"] [unique_id "ajxOxHRy60Mw-fIXxT945AAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-23 16:18:03
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 12:17:58.299935 2026] [security2:error] [pid 14955:tid 15011] [client 45.120.97.216:58972] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.120.97.216 (+1 hits since last alert)|atlasrecordssearch.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "atlasrecordssearch.com"] [uri "/xmlrpc.php"] [unique_id "ajqxtirZVPNpR8jHYojSTgAAAME"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π¦
Dunham Support
2026-06-23 05:03:04
(2 weeks ago)
(wordpress) Failed wordpress login from 45.120.97.216 (BD/Bangladesh/-)
Brute-Force
πΊπΈ
TPI-Abuse
2026-06-22 13:13:05
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 09:12:58.079078 2026] [security2:error] [pid 11977:tid 11977] [client 45.120.97.216:59079] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.120.97.216 (+1 hits since last alert)|prayers4america.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "prayers4america.com"] [uri "/xmlrpc.php"] [unique_id "ajk02qE3Ej4DGVXF-O2NHwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
integrantservices.com
2026-06-19 18:36:42
(2 weeks ago)
(wordpress) Failed wordpress login from 45.120.97.216 (BD/Bangladesh/-)
Brute-Force
πΊπΈ
TPI-Abuse
2026-06-18 12:04:52
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 45.120.97.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 08:04:49.611479 2026] [security2:error] [pid 11242:tid 11246] [client 45.120.97.216:49727] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.120.97.216 (+1 hits since last alert)|gabegabel.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gabegabel.com"] [uri "/xmlrpc.php"] [unique_id "ajPe4VpX_bZqXxIXxVQSIwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
integrantservices.com
2026-06-18 08:38:54
(2 weeks ago)
(wordpress) Failed wordpress login from 45.120.97.216 (BD/Bangladesh/-)
Brute-Force