๐ณ๐ฑ
JCB
2026-07-16 08:21:00
(9 hours ago)
[Thu Jul 16 08:13:31 2026] [info] [client 52.253.111.48:7767] AH01382: Request header read timeout
Web App Attack
Hacking
๐ฉ๐ช
fleckenbase
2026-07-16 08:04:01
(9 hours ago)
apache-noscript
...
Brute-Force
Web App Attack
๐ณ๐ฑ
i-turnradio.nl
2026-07-16 07:42:16
(10 hours ago)
2026-07-16 @ 09:42:15 (CET) ~ Blocked for trying to access: /wp-content/plugins/hellopress/wp_filema ...
show more
2026-07-16 @ 09:42:15 (CET) ~ Blocked for trying to access: /wp-content/plugins/hellopress/wp_filemanager.php
show less
Web App Attack
๐ณ๐ฑ
thedreamer.nl
2026-07-16 07:38:20
(10 hours ago)
52.253.111.48 - - [16/Jul/2026:09:37:52 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ...
show more
52.253.111.48 - - [16/Jul/2026:09:37:52 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "JP" "Tokyo" "35.68930" "139.68990"
52.253.111.48 - - [16/Jul/2026:09:37:53 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "JP" "Tokyo" "35.68930" "139.68990"
52.253.111.48 - - [16/Jul/2026:09:37:53 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "JP" "Tokyo" "35.68930" "139.68990"
...
show less
Hacking
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Smish
2026-07-16 07:26:22
(10 hours ago)
HONEYPOT HIT --> Fail2ban time=1784186781 log=2026-07-16T08:26:21+01:00 ip=52.253.111.48 host=in09.b ...
show more
HONEYPOT HIT --> Fail2ban time=1784186781 log=2026-07-16T08:26:21+01:00 ip=52.253.111.48 host=in09.bya.ac method=GET uri="/wp-admin/index.php" status=404 ua="-" ref="-" rid=4e5317231bdbbdb412a4155e63a48f49
show less
Web App Attack
๐บ๐ธ
Operator873
2026-07-16 07:25:31
(10 hours ago)
2026/07/16 02:20:19 [error] 3312370#0: *1716924 access forbidden by rule, client: 52.253.111.48, ser ...
show more
2026/07/16 02:20:19 [error] 3312370#0: *1716924 access forbidden by rule, client: 52.253.111.48, server: [OBFUSCATED], request: "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1", host: "wildcard.n5txl.com"
2026/07/16 02:20:19 [error] 3312370#0: *1716924 access forbidden by rule, client: 52.253.111.48, server: [OBFUSCATED], request: "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1", host: "wildcard.n5txl.com"
2026/07/16 02:20:19 [error] 3312370#0: *1716924 access forbidden by rule, client: 52.253.111.48, server: [OBFUSCATED], request: "GET /this_is_a_new_hello_world.php HTTP/1.1", host: "wildcard.n5txl.com"
2026/07/16 02:20:19 [error] 3312370#0: *1716924 access forbidden by rule, client: 52.253.111.48, server: [OBFUSCATED], request: "GET /this_is_a_new_hello_world.php HTTP/1.1", host: "wildcard.n5txl.com"
2026/07/16 02:25:28 [error] 3312370#0: *1717089 access forbidden by rule, client: 52.253.111.48, server: [OBFUSCATED], request: "GET /x.php
...
show less
Brute-Force
Web App Attack
Anonymous
2026-07-16 07:20:39
(10 hours ago)
Shell.php command execution.
Hacking
๐ฉ๐ช
febrian.de
2026-07-16 07:17:39
(10 hours ago)
Malicious HTTP(S) probing detected by Fail2Ban
Web App Attack
Anonymous
2026-07-16 07:06:33
(10 hours ago)
"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"
Hacking
Web App Attack
Anonymous
2026-07-16 07:02:36
(10 hours ago)
[Thu Jul 16 09:02:35.352225 2026] [php:error] [pid 949491:tid 949491] [client 52.253.111.48:57541] s ...
show more
[Thu Jul 16 09:02:35.352225 2026] [php:error] [pid 949491:tid 949491] [client 52.253.111.48:57541] script '/var/www/html/this_is_a_new_hello_world.php' not found or unable to stat
[Thu Jul 16 09:02:35.579502 2026] [php:error] [pid 949491:tid 949491] [client 52.253.111.48:57541] script '/var/www/html/wp-der.php' not found or unable to stat
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
tuxiano
2026-07-16 07:01:30
(10 hours ago)
52.253.111.48 - - [16/Jul/2026:07:01:30 +0000] "GET /wp-signup.php HTTP/1.1" 404 4839 "-" "-" "-"
Bad Web Bot
Web App Attack
๐จ๐ฟ
plzenskypruvodce.cz
2026-07-16 06:55:23
(10 hours ago)
[Thu Jul 16 08:55:13.045237 2026] [authz_core:error] [pid 1527946:tid 1527991] [client 52.253.111.48 ...
show more
[Thu Jul 16 08:55:13.045237 2026] [authz_core:error] [pid 1527946:tid 1527991] [client 52.253.111.48:29844] AH01630: client denied by server configuration: /var/www/baletniskola-ok.cz/www/wp-content/languages/index.php
[Thu Jul 16 08:55:21.711805 2026] [authz_core:error] [pid 1527946:tid 1527978] [client 52.253.111.48:29849] AH01630: client denied by server configuration: /var/www/baletniskola-ok.cz/www/wp-content/themes/about.php
...
show less
Web App Attack
๐ณ๐ด
tmiland
2026-07-16 06:51:05
(10 hours ago)
(shell) SHELL shell.php Attack 52.253.111.48 (JP/Japan/-): 3 in the last 3600 secs; IP: 52.253.111.4 ...
show more
(shell) SHELL shell.php Attack 52.253.111.48 (JP/Japan/-): 3 in the last 3600 secs; IP: 52.253.111.48; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 52.253.111.48 - - [16/Jul/2026:08:50:15 +0200] "GET /shell.php HTTP/1.1" 301 162 "-" "-" 52.253.111.48 - - [16/Jul/2026:08:50:15 +0200] "GET /shell.php HTTP/1.1" 404 146 "-" "-" 52.253.111.48 - - [16/Jul/2026:08:51:02 +0200] "GET //shell.php HTTP/1.1" 301 162 "-" "-"
show less
Brute-Force
๐ฉ๐ช
IVski
2026-07-16 06:36:15
(11 hours ago)
IVski WAF | WordPress scanner detected - probing wp-content, xmlrpc or wp-login
Port Scan
Brute-Force
Web App Attack
๐ฉ๐ช
netclix.gr
2026-07-16 06:35:44
(11 hours ago)
(c5_web_scan) Custom5 Aggressive Web Scan 52.253.111.48 (JP/Japan/-): 3 in the last 4600 secs; Ports ...
show more
(c5_web_scan) Custom5 Aggressive Web Scan 52.253.111.48 (JP/Japan/-): 3 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: default:80 52.253.111.48 - - [16/Jul/2026:09:35:15 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 409 "-" "-"
default:80 52.253.111.48 - - [16/Jul/2026:09:35:15 +0300] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 409 "-" "-"
default:80 52.253.111.48 - - [16/Jul/2026:09:35:16 +0300] "GET /wp-der.php HTTP/1.1" 404 409 "-" "-"
show less
Port Scan