๐ซ๐ท
SpaceHost-Server
2026-06-29 22:37:33
(15 minutes ago)
Brute-Force
Web App Attack
๐จ๐ฆ
polycoda
2026-06-29 19:30:45
(3 hours ago)
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based) - ๐ Directory Listings (Decay-Based) - ๐ Admin ...
show more
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based) - ๐ Directory Listings (Decay-Based) - ๐ Admin Panel Scanning (Decay-Based)
show less
Hacking
Bad Web Bot
Web App Attack
๐ฆ๐บ
QT
2026-06-29 15:47:23
(7 hours ago)
Website hack attempted at 2026-06-30 01:47:16 +1000
Web App Attack
๐ซ๐ท
sthoyer.de
2026-06-29 15:44:29
(7 hours ago)
20.48.63.209 - - [29/Jun/2026:17:44:26 +0200] "GET /adminfuns.php HTTP/1.1" 302 495 "-" "Mozilla/5.0 ...
show more
20.48.63.209 - - [29/Jun/2026:17:44:26 +0200] "GET /adminfuns.php HTTP/1.1" 302 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
20.48.63.209 - - [29/Jun/2026:17:44:27 +0200] "GET /file.php HTTP/1.1" 302 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
20.48.63.209 - - [29/Jun/2026:17:44:27 +0200] "GET /admin.php HTTP/1.1" 302 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐ฌ๐ท
setupgr
2026-06-29 15:42:35
(7 hours ago)
(mod_security) mod_security (id:1000001) triggered by 20.48.63.209 (JP/Japan/Tokyo/Shibuya City/-/[A ...
show more
(mod_security) mod_security (id:1000001) triggered by 20.48.63.209 (JP/Japan/Tokyo/Shibuya City/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 1 in the last 86400 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: [Mon Jun 29 18:42:32.037988 2026] [security2:error] [pid 2347141:tid 2347291] [client 20.48.63.209:14137] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/about.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "103"] [id "1000001"] [msg "Bad file blocked: /about.php"] [severity "CRITICAL"] [tag "security"] [hostname "setworldup365.com"] [uri "/about.php"] [unique_id "akKSaHDTbhWsfxXOgZVQawAAAMg"]
show less
Port Scan
๐บ๐ธ
ipblock.com
2026-06-29 15:40:00
(7 hours ago)
IPBlock protected site ID [4055-d][s=03].
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
mashamal
2026-06-29 15:35:30
(7 hours ago)
Vulnerability Probe
...
Web App Attack
๐บ๐ธ
helios.live
2026-06-29 15:32:32
(7 hours ago)
2026/06/29 15:32:30 [error] 2442338#2442338: *229656 FastCGI sent in stderr: "Primary script unknown ...
show more
2026/06/29 15:32:30 [error] 2442338#2442338: *229656 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 20.48.63.209, server: kocerroxy.com, request: "GET /adminfuns.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php/php8.4-fpm-betakocerroxycom.sock:", host: "kocerroxy.com"
20.48.63.209 - - [29/Jun/2026:15:32:30 +0000] "GET /adminfuns.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
2026/06/29 15:32:31 [error] 2442338#2442338: *229656 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 20.48.63.209, server: kocerroxy.com, request: "GET /file.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php/php8.4-fpm-betakocerroxycom.sock:", host: "kocerroxy.com"
20.48.63.209 - - [29/Jun/2026:15:32:31 +0000] "GET /file.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (K
...
show less
Web App Attack
๐ณ๐ฟ
Antinson
2026-06-29 15:15:45
(7 hours ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐ฆ๐บ
QT
2026-06-29 15:15:32
(7 hours ago)
Website hack attempted at 2026-06-30 01:15:31 +1000
Web App Attack
๐ฉ๐ช
Viveronese
2026-06-29 15:12:22
(7 hours ago)
HTTP vulnerability scanning
Web App Attack
๐ฎ๐ช
Jim Keir
2026-06-29 15:05:46
(7 hours ago)
2026-06-29 15:05:45 20.48.63.209 File scanning, blocking 20.48.63.209 for 5 minutes
Web App Attack
Anonymous
2026-06-29 15:03:13
(7 hours ago)
Automatically blocked after 19 security events. Observed repeated web application attack probes. Sou ...
show more
Automatically blocked after 19 security events. Observed repeated web application attack probes. Source: Cloudflare security controls.
show less
Hacking
Web App Attack
Anonymous
2026-06-29 14:45:53
(8 hours ago)
Automated Report: Fail2Ban block triggered by nginx-botsearch jail.
Brute-Force
SSH
๐ฉ๐ช
MBombeck
2026-06-29 14:43:43
(8 hours ago)
Fail2Ban/traefik-botsearch on apps-01: banned after 5 failures
Web App Attack