Anonymous
2026-07-12 21:58:58
(2 days ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-content/plugins/fix/up.php
Web App Attack
๐ฌ๐ง
consul.to
2026-07-12 21:23:27
(2 days ago)
Web attack/malicious scanning detected
Web App Attack
๐ฉ๐ช
raph
2026-06-18 04:28:28
(3 weeks ago)
[Wordpress] crawler /wp-admin/*, /wp-content/*, etc.
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-17 22:51:25
(3 weeks ago)
212.30.33.116 - - [18/Jun/2026:01:50:57 +0300] "GET /wp-content/plugins/aatdgetgdg/main.php HTTP/1.1 ...
show more
212.30.33.116 - - [18/Jun/2026:01:50:57 +0300] "GET /wp-content/plugins/aatdgetgdg/main.php HTTP/1.1" 404 251 "-" "Go-http-client/1.1"
212.30.33.116 - - [18/Jun/2026:01:51:22 +0300] "GET /wp-content/plugins/linkpreview/index.php HTTP/1.1" 404 251 "-" "Go-http-client/1.1"
...
show less
Web App Attack
๐ซ๐ท
dynamix
2026-06-16 19:09:17
(4 weeks ago)
WordPress wp-login.php Brute Force Attack
Brute-Force
Web App Attack
๐ฌ๐ง
consul.to
2026-06-10 11:54:36
(1 month ago)
Web attack/malicious scanning detected
Web App Attack
๐ซ๐ท
Octopuce
2026-06-06 14:50:14
(1 month ago)
Aggressive web search of vulnerable pages: /wp-json/wp/v2/ /wp-content/uploads/2025/ /wp-content/upl ...
show more
Aggressive web search of vulnerable pages: /wp-json/wp/v2/ /wp-content/uploads/2025/ /wp-content/uploads/2026/ /wordpress/wp-admin/includes/wp- ...
show less
Web App Attack
๐ฆ๐บ
iBlockBadBots
2026-06-06 10:00:11
(1 month ago)
WAF blocked multiple times in 24h. Paths: /.trash7206/index.php; /storage/framework/views/core.php; ...
show more
WAF blocked multiple times in 24h. Paths: /.trash7206/index.php; /storage/framework/views/core.php; /wp-content/plugins/so-pinyin-slugs/inc/main_json.php; /wp-admin/dofault.php; /wp-includes/blocks/nextpage/index.php
show less
Bad Web Bot
Web App Attack
๐ฆ๐บ
aranguren.org
2026-06-04 06:57:37
(1 month ago)
212.30.33.116 - - [04/Jun/2026:16:57:34 +1000] "GET /js/bas.php HTTP/1.1" 404 984 "-" "Mozilla/5.0 ( ...
show more
212.30.33.116 - - [04/Jun/2026:16:57:34 +1000] "GET /js/bas.php HTTP/1.1" 404 984 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36"
212.30.33.116 - - [04/Jun/2026:16:57:35 +1000] "GET /.well-known/pki-validation/moon.php HTTP/1.1" 404 984 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0"
212.30.33.116 - - [04/Jun/2026:16:57:35 +1000] "GET /file.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
212.30.33.116 - - [04/Jun/2026:16:57:36 +1000] "GET /wp-includes/js/index.php HTTP/1.1" 404 984 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
212.30.33.116 - - [04/Jun/2026:16:57:36 +1000] "GET /wp-content/upgrade/item.php HTTP/1.1" 404 984 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko)
...
show less
Bad Web Bot
๐จ๐ฆ
Dolphi
2026-05-30 01:20:03
(1 month ago)
POST //xmlrpc.php
Brute-Force
Web App Attack
๐ซ๐ท
masterguru
2026-05-30 00:42:53
(1 month ago)
SQL Injection Attack Detected via libinjection. detected SQLi using libinjection with fingerprint 'n ...
show more
SQL Injection Attack Detected via libinjection. detected SQLi using libinjection with fingerprint 'n&1' (942100-195)
show less
SQL Injection
Anonymous
2026-05-28 03:11:53
(1 month ago)
212.30.33.116 - - [28/May/2026:05:11:51 +0200] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 404 1 ...
show more
212.30.33.116 - - [28/May/2026:05:11:51 +0200] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 404 124 "-" "Go-http-client/1.1"
212.30.33.116 - - [28/May/2026:05:11:51 +0200] "GET /wp-includes/sodium_compat/namespaced/Core/goods.php HTTP/1.1" 404 124 "-" "Go-http-client/1.1"
212.30.33.116 - - [28/May/2026:05:11:52 +0200] "GET /wp-includes/customize/wp-conflg.php?p= HTTP/1.1" 404 124 "-" "Go-http-client/1.1"
212.30.33.116 - - [28/May/2026:05:11:52 +0200] "GET /wp-content/themes/pwnd-themes/php5-litespeed.php HTTP/1.1" 404 124 "-" "Go-http-client/1.1"
212.30.33.116 - - [28/May/2026:05:11:53 +0200] "GET /wp-content/updraft/emptydir/index.php HTTP/1.1" 404 124 "-" "Go-http-client/1.1"
...
show less
Brute-Force
Web App Attack
๐ฟ๐ฆ
Tokolosh Hunters
2026-05-24 16:17:10
(1 month ago)
AutoBlockWindow-Known bad useragent query-2026-05-24 16:17:10
Bad Web Bot
๐ฆ๐บ
paulshipley.com.au
2026-05-24 13:21:52
(1 month ago)
[Sun May 24 23:21:51.019494 2026] [security2:error] [pid 1002139] [client 212.30.33.116:49859] [clie ...
show more
[Sun May 24 23:21:51.019494 2026] [security2:error] [pid 1002139] [client 212.30.33.116:49859] [client 212.30.33.116] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/modsecurity/crs/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "77"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.4"] [tag "anomaly-evaluation"] [hostname "stkildashule.org.au"] [uri "/wp-includes/assets/"] [unique_id "ahL7b0j19qlSSgEf51W0BgAAAAI"], referer: https://stkildashule.org.au/wp-includes/assets/index.php
...
show less
Web App Attack
Anonymous
2026-05-24 13:04:20
(1 month ago)
212.30.33.116 - - [24/May/2026:13:04:19 +0000] "GET /wp-content/themes/index.php HTTP/1.1" 404 381 " ...
show more
212.30.33.116 - - [24/May/2026:13:04:19 +0000] "GET /wp-content/themes/index.php HTTP/1.1" 404 381 "-" "Go-http-client/1.1"
...
show less
Bad Web Bot
Web App Attack