๐ซ๐ฎ
Christopher Hughes
2026-07-16 22:18:25
(28 seconds ago)
[Thu Jul 16 23:08:18.366424 2026] [proxy_fcgi:error] [pid 1857213:tid 139826634544704] [client 20.15 ...
show more
[Thu Jul 16 23:08:18.366424 2026] [proxy_fcgi:error] [pid 1857213:tid 139826634544704] [client 20.151.7.119:18430] AH01071: Got error 'Primary script unknown'
[Thu Jul 16 23:18:23.898568 2026] [proxy_fcgi:error] [pid 1857213:tid 139826527454784] [client 20.151.7.119:18313] AH01071: Got error 'Primary script unknown'
[Thu Jul 16 23:18:24.396437 2026] [proxy_fcgi:error] [pid 1857213:tid 139826519062080] [client 20.151.7.119:18313] AH01071: Got error 'Primary script unknown'
[Thu Jul 16 23:18:24.511129 2026] [proxy_fcgi:error] [pid 1857213:tid 139824933627456] [client 20.151.7.119:18313] AH01071: Got error 'Primary script unknown'
[Thu Jul 16 23:18:24.656547 2026] [proxy_fcgi:error] [pid 1857213:tid 139826552632896] [client 20.151.7.119:18313] AH01071: Got error 'Primary script unknown'
...
show less
Web App Attack
๐ฟ๐ฆ
conure
2026-07-16 22:18:12
(41 seconds ago)
csagent: score 18.8: php 404 x5, 404 noise floor x5, webshell name x1; 1 domain(s) in 0s
Web App Attack
๐ฌ๐ง
blik2108
2026-07-16 22:17:31
(1 minute ago)
beta.sleepylizard.com:443 20.151.7.119 - - [16/Jul/2026:23:17:31 +0100] "GET /images/images/about.ph ...
show more
beta.sleepylizard.com:443 20.151.7.119 - - [16/Jul/2026:23:17:31 +0100] "GET /images/images/about.php HTTP/1.1" 200 697 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐บ๐ธ
masterguru
2026-07-16 22:16:14
(2 minutes ago)
Too much 404 requests in 1 hour. Operator GE matched 50 at IP:block_script. (4002-169)
Hacking
Web App Attack
๐ฎ๐น
mgarofano80
2026-07-16 22:10:58
(7 minutes ago)
Brute-Force
Web App Attack
๐จ๐ฆ
Anytech
2026-07-16 22:10:52
(8 minutes ago)
Blocked by Conn-Monitor: http-bad-user-agent
Web App Attack
Bad Web Bot
๐บ๐ธ
valornode
2026-07-16 22:10:36
(8 minutes ago)
Detected by CrowdSec on www.iambrayden.net-47d88224: CrowdSec: crowdsecurity/http-crawl-non_statics ...
show more
Detected by CrowdSec on www.iambrayden.net-47d88224: CrowdSec: crowdsecurity/http-crawl-non_statics | ASN: 8075 (MICROSOFT-CORP-MSN-AS-BLOCK) | Country: CA | Range: 20.150.0.0/15
show less
Brute-Force
SSH
๐ณ๐ฑ
homeshowdomain.nl
2026-07-16 22:06:14
(12 minutes ago)
Auto-ban: >3000 req/min op 2026-07-16
Web App Attack
SSH
Hacking
๐ฉ๐ช
maxpower
2026-07-16 22:03:07
(15 minutes ago)
(nginx_hardened) REGOLA 3 - Nginx Hardening Triggered 20.151.7.119 (CA/Canada/-): 3 in the last 3600 ...
show more
(nginx_hardened) REGOLA 3 - Nginx Hardening Triggered 20.151.7.119 (CA/Canada/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 20.151.7.119 - - [17/Jul/2026:00:03:06 +0200] "GET /wp-includes/js/index.php HTTP/1.1" 403 140 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "-" host=etag.it
2026/07/17 00:02:57 [error] 1510715#1510715: *313231 access forbidden by rule, client: 20.151.7.119, server: etag.it, request: "GET /wp-includes/index.php HTTP/1.1", host: "etag.it"
2026/07/17 00:02:59 [error] 1510715#1510715: *313231 access forbidden by rule, client: 20.151.7.119, server: etag.it, request: "GET /wp-includes/Text/about.php HTTP/1.1", host: "etag.it"
show less
Port Scan
Anonymous
2026-07-16 22:02:19
(16 minutes ago)
20.151.7.119 - - [17/Jul/2026:00:02:12 +0200] "GET /admin.php HTTP/1.1" 200 99 "-" "Mozilla/5.0 (Win ...
show more
20.151.7.119 - - [17/Jul/2026:00:02:12 +0200] "GET /admin.php HTTP/1.1" 200 99 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
20.151.7.119 - - [17/Jul/2026:00:02:13 +0200] "GET /wp-content/admin.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐ซ๐ท
tecnoacquisti.com
2026-07-16 21:59:23
(19 minutes ago)
PrestaShop Security Module: WordPress probe path detected
Web App Attack
๐ซ๐ฎ
Christopher Hughes
2026-07-16 21:58:16
(20 minutes ago)
[Thu Jul 16 22:58:14.818540 2026] [proxy_fcgi:error] [pid 1857214:tid 139825478891072] [client 20.15 ...
show more
[Thu Jul 16 22:58:14.818540 2026] [proxy_fcgi:error] [pid 1857214:tid 139825478891072] [client 20.151.7.119:18412] AH01071: Got error 'Primary script unknown'
[Thu Jul 16 22:58:14.933563 2026] [proxy_fcgi:error] [pid 1857214:tid 139825982191168] [client 20.151.7.119:18412] AH01071: Got error 'Primary script unknown'
[Thu Jul 16 22:58:15.203610 2026] [proxy_fcgi:error] [pid 1857214:tid 139825445320256] [client 20.151.7.119:18412] AH01071: Got error 'Primary script unknown'
[Thu Jul 16 22:58:15.710517 2026] [proxy_fcgi:error] [pid 1857214:tid 139825436927552] [client 20.151.7.119:18412] AH01071: Got error 'Primary script unknown'
[Thu Jul 16 22:58:16.037746 2026] [proxy_fcgi:error] [pid 1857214:tid 139826519062080] [client 20.151.7.119:18412] AH01071: Got error 'Primary script unknown'
...
show less
Web App Attack
๐ฉ๐ช
MBombeck
2026-07-16 21:55:18
(23 minutes ago)
Fail2Ban/traefik-botsearch on apps-01: banned after 5 failures
Web App Attack
๐ฌ๐ท
setupgr
2026-07-16 21:53:57
(24 minutes ago)
(mod_security) mod_security (id:1000001) triggered by 20.151.7.119 (CA/Canada/Ontario/Toronto/-/[AS8 ...
show more
(mod_security) mod_security (id:1000001) triggered by 20.151.7.119 (CA/Canada/Ontario/Toronto/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 1 in the last 86400 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: [Fri Jul 17 00:53:52.111963 2026] [security2:error] [pid 499534:tid 499643] [client 20.151.7.119:58222] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/about.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "103"] [id "1000001"] [msg "Bad file blocked: /wp-includes/js/codemirror/about.php"] [severity "CRITICAL"] [tag "security"] [hostname "ions.gr"] [uri "/wp-includes/js/codemirror/about.php"] [unique_id "allS8EOosDIbylmF_hlQFgAAAQE"]
show less
Port Scan
๐ฉ๐ช
Mykola Spesivtsev
2026-07-16 21:53:30
(25 minutes ago)
HTTP Tarpit detected bot activity:TargetPort:80, Path:/wp-content/plugins/hellopress/wp_filemanager. ...
show more
HTTP Tarpit detected bot activity:TargetPort:80, Path:/wp-content/plugins/hellopress/wp_filemanager.php, Method:GET, UA:N/A
show less
Port Scan
Web App Attack
Bad Web Bot