๐บ๐ธ
threatintelligence_bvc
2026-07-09 06:54:46
(1 week ago)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-30 22:29:26
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 45.250.252.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 45.250.252.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 18:29:09.990028 2026] [security2:error] [pid 11873:tid 11873] [client 45.250.252.179:51842] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.250.252.179 (+1 hits since last alert)|thesalonx.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "thesalonx.com"] [uri "/xmlrpc.php"] [unique_id "akRDNaSR4HgQW0TbNYKp1wAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 14:08:55
(1 month ago)
(mod_security) mod_security (id:240335) triggered by 45.250.252.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 45.250.252.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 10:08:37.646879 2026] [security2:error] [pid 24272:tid 24272] [client 45.250.252.179:59021] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.250.252.179 (+1 hits since last alert)|thesalonx.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "thesalonx.com"] [uri "/xmlrpc.php"] [unique_id "aiwS5ZvMhbOjldug6sv1UgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
sshtmp
2026-05-19 15:19:20
(1 month ago)
[AbuseIPDB auto-report]
Attack: WordPress XML-RPC brute-force
Hits: 288 | First: 2026-05-17T23:49:24 ...
show more
[AbuseIPDB auto-report]
Attack: WordPress XML-RPC brute-force
Hits: 288 | First: 2026-05-17T23:49:24+02:00 | Last: 2026-05-19T17:19:20+02:00
Samples: POST /xmlrpc.php [200]
show less
Brute-Force
Web App Attack
๐ฎ๐น
[email protected]
2026-04-29 21:28:10
(2 months ago)
[Wed Apr 29 23:28:10.487607 2026] [authz_core:error] [pid 4152699:tid 4152790] [client 45.250.252.17 ...
show more
[Wed Apr 29 23:28:10.487607 2026] [authz_core:error] [pid 4152699:tid 4152790] [client 45.250.252.179:60732] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/xmlrpc.php
...
show less
Brute-Force
Web App Attack
๐ฎ๐น
[email protected]
2026-04-22 12:52:41
(2 months ago)
[Wed Apr 22 14:52:41.069963 2026] [authz_core:error] [pid 1610954:tid 1611005] [client 45.250.252.17 ...
show more
[Wed Apr 22 14:52:41.069963 2026] [authz_core:error] [pid 1610954:tid 1611005] [client 45.250.252.179:57482] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/xmlrpc.php
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-13 00:33:36
(5 months ago)
(mod_security) mod_security (id:240335) triggered by 45.250.252.179 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 45.250.252.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 19:33:23.332908 2026] [security2:error] [pid 28213:tid 28213] [client 45.250.252.179:49324] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 45.250.252.179 (+1 hits since last alert)|www.goddesskink.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.goddesskink.com"] [uri "/new/xmlrpc.php"] [unique_id "aY5xUxTxZSRtSoV9F21kHwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
10dencehispahard SL
2025-12-31 19:00:03
(6 months ago)
Unauthorized login attempts [ wordpress-xmlrpc]
Brute-Force
Web App Attack
๐จ๐ฟ
lp
2025-09-18 06:22:53
(9 months ago)
Email account brute force: 8 attempts were recorded from 45.250.252.179
2025-09-18T07:40:03+02:00 wa ...
show more
Email account brute force: 8 attempts were recorded from 45.250.252.179
2025-09-18T07:40:03+02:00 warning: unknown[45.250.252.179]: SASL PLAIN authentication failed: authentication failure, [email protected]
2025-09-18T07:40:03+02:00 warning: unknown[45.250.252.179]: SASL PLAIN authentication failed: authentication failure, [email protected]
2025-09-18T07:40:03+02:00 warning: unknown[45.250.252.179]: SASL LOGIN authentication failed: authentication failure, [email protected]
2025-09-18T07:40:03+02:00 warning: unknown[45.250.252.179]: SASL LOGIN authentication failed: authentication failure, [email protected]
2025-09-18T07:40:09+02:00 warning: unknown[45.250.252.179]: SASL PLAIN authentication failed: authentication failure, [email protected]
2025-09-18T07:40:09+02:00 warning: unknown[45.250.252.179]: SASL PLAIN authentication failed: auth
show less
Brute-Force
๐ณ๐ฑ
taivas.nl
2025-02-21 06:30:07
(1 year ago)
Spam_report
Email Spam
๐ธ๐ฐ
GOVCERT
2025-02-20 21:33:45
(1 year ago)
Sweep Scan
Port Scan
๐ณ๐ฑ
Study Bitcoin ๐ค
2025-02-20 14:18:24
(1 year ago)
Port probe to tcp/25 (smtp)
[srv129]
Email Spam
Port Scan
๐ต๐ฑ
TheWojtek
2025-02-20 02:28:21
(1 year ago)
Feb 20 03:28:20 hq postfix/smtpd[93196]: NOQUEUE: reject: RCPT from unknown[45.250.252.179]: 554 5.7 ...
show more
Feb 20 03:28:20 hq postfix/smtpd[93196]: NOQUEUE: reject: RCPT from unknown[45.250.252.179]: 554 5.7.1 <[email protected] >: Relay access denied; from=<[email protected] > to=<[email protected] > proto=ESMTP helo=<WIN-CLJ1B0GQ6JP>
...
show less
Email Spam
๐บ๐ธ
Cyber Crusader
2025-02-19 19:16:48
(1 year ago)
Many Attempts to Connect to and Access Firewall
Port Scan
Hacking
Brute-Force
๐บ๐ธ
Cyber Crusader
2025-02-19 19:16:48
(1 year ago)
Many Attempts to Connect to and Access Firewall
Port Scan
Hacking
Brute-Force