๐บ๐ธ
ph
2026-07-02 05:38:41
(13 seconds ago)
Bad web bot attempting to run wp-content on non-WP site
Hacking
Bad Web Bot
Web App Attack
๐ฆ๐บ
aranguren.org
2026-07-02 05:08:26
(30 minutes ago)
20.196.198.65 - - [02/Jul/2026:15:08:25 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ...
show more
20.196.198.65 - - [02/Jul/2026:15:08:25 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 995 "-" "-"
20.196.198.65 - - [02/Jul/2026:15:08:25 +1000] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 16 "-" "-"
20.196.198.65 - - [02/Jul/2026:15:08:25 +1000] "GET /222.php HTTP/1.1" 404 16 "-" "-"
20.196.198.65 - - [02/Jul/2026:15:08:25 +1000] "GET /alfa.php HTTP/1.1" 404 16 "-" "-"
20.196.198.65 - - [02/Jul/2026:15:08:25 +1000] "GET /ioxi-o.php HTTP/1.1" 404 16 "-" "-"
20.196.198.65 - - [02/Jul/2026:15:08:25 +1000] "GET /aa.php HTTP/1.1" 404 16 "-" "-"
...
show less
Bad Web Bot
๐จ๐ญ
blinx
2026-07-02 04:12:20
(1 hour ago)
Suspicious activity detected by Modsecurity
Web Spam
Port Scan
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-07-02 04:05:40
(1 hour ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐บ๐ธ
Starburst SysOp Team
2026-07-02 03:43:42
(1 hour ago)
Restricted File Access Attempt. Matched phrase "wp-config-" at REQUEST_FILENAME. (930130-mnz6-1)
Hacking
Web App Attack
๐ฌ๐ง
relianoid.com
2026-07-02 03:39:10
(1 hour ago)
404 Errors Abuse detected by Relianoid OSS Load Balancer - relianoid.com
Web App Attack
๐ซ๐ท
Catalin Negru
2026-07-02 03:34:52
(2 hours ago)
Recidive ban by fail2ban on server.blackbit.ro
Brute-Force
๐ฆ๐น
vikal
2026-07-02 03:17:54
(2 hours ago)
20.196.198.65 - - [02/Jul/2026:05:17:53 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ...
show more
20.196.198.65 - - [02/Jul/2026:05:17:53 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 162 "-" "-"
...
show less
Brute-Force
SSH
๐ธ๐ช
SkyDancer
2026-07-02 03:02:56
(2 hours ago)
Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by Sk ...
show more
Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by SkyDancer Ai. EXT-SYS-Vx
show less
Hacking
Brute-Force
SSH
๐บ๐ธ
conrad10781
2026-07-02 02:57:05
(2 hours ago)
nginx-cgi-bin
Web App Attack
๐ซ๐ท
phoenix1jl96
2026-07-02 02:32:33
(3 hours ago)
2026/07/02 04:32:01 [error] 382532#382532: *56940 "/home/user-data/www/default/cgi-bin/index.html" i ...
show more
2026/07/02 04:32:01 [error] 382532#382532: *56940 "/home/user-data/www/default/cgi-bin/index.html" is not found (2: No such file or directory), client: 20.196.198.65, server: box.ledemon.us, request: "GET /cgi-bin/ HTTP/1.1", host: "box.ledemon.us"
2026/07/02 04:32:12 [error] 382532#382532: *56940 open() "/home/user-data/www/default/wp-login.php" failed (2: No such file or directory), client: 20.196.198.65, server: box.ledemon.us, request: "GET /wp-login.php HTTP/1.1", host: "box.ledemon.us"
...
show less
DNS Compromise
DNS Poisoning
DDoS Attack
Ping of Death
Web Spam
Email Spam
Blog Spam
Port Scan
Hacking
Brute-Force
Bad Web Bot
SSH
Web App Attack
Anonymous
2026-07-02 02:31:26
(3 hours ago)
20.196.198.65 - - [02/Jul/2026:04:31:14 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ...
show more
20.196.198.65 - - [02/Jul/2026:04:31:14 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:14 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:15 +0200] "GET /222.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:16 +0200] "GET /alfa.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:16 +0200] "GET /ioxi-o.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:17 +0200] "GET /aa.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:18 +0200] "GET /wp-mail.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:18 +0200] "GET /bolt.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:19 +0200] "GET /bthil.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:19 +0200] "GET /x.php HTTP/1.1" 404 196 "-" "-"
20.196.198.65 - - [02/Jul/2026:04:31:20 +0200] "GET /aaa.ph
...
show less
Web App Attack
๐บ๐ธ
WellSpring
2026-07-02 01:45:17
(3 hours ago)
Automated probe detected by Ody Sentinel / WellSpr.ing. Type: wordpress_content. Path: /wp-content/p ...
show more
Automated probe detected by Ody Sentinel / WellSpr.ing. Type: wordpress_content. Path: /wp-content/plugins/hellopress/wp_filemanager.php. Auto-blocked after threshold exceeded. Dossier: https://wellspr.ing/dossier/sentinel-20-196-198-65
show less
Web App Attack
๐ซ๐ท
EDSL
2026-07-02 01:08:47
(4 hours ago)
[mail.edsl.fr] Blocked by SysWarden Firewall (Web Attack)
Web App Attack
Hacking
Port Scan
๐ฉ๐ช
Marc
2026-07-02 01:01:50
(4 hours ago)
20.196.198.65 - - [02/Jul/2026:02:53:41 +0200] "GET /wp-login.php HTTP/1.1" 200 10725 "-" "-" 20.196 ...
show more
20.196.198.65 - - [02/Jul/2026:02:53:41 +0200] "GET /wp-login.php HTTP/1.1" 200 10725 "-" "-" 20.196.198.65 - - [02/Jul/2026:02:54:49 +0200] "GET /wp-login.php?registration=disabled HTTP/1.1" 200 10927 "-" "-" 20.196.198.65 - - [02/Jul/2026:02:54:55 +0200] "GET /wp-login.php?registration=disabled HTTP/1.1" 200 10927 "-" "-" 20.196.198.65 - - [02/Jul/2026:02:57:33 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Falsarnsberg.de%2Fwp-admin%2Fabout.php&reauth=1 HTTP/1.1" 200 15525 "-" "-" 20.196.198.65 - - [02/Jul/2026:03:01:48 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Falsarnsberg.de%2Fwp-admin%2Fnetwork%2Fadmin.php&reauth=1 HTTP/1.1" 200 15541 "-" "-"
show less
Brute-Force
Web App Attack