Anonymous
2026-06-30 16:05:06
(1 day ago)
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ...
show more
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning, Webshell probing, Malicious User-Agent
show less
Bad Web Bot
Web App Attack
๐ธ๐ช
SkyDancer
2026-06-30 11:38:47
(1 day ago)
Multiple login attempts via RDP and/or SSH using wrong credentials. Attack automatically blocked by ...
show more
Multiple login attempts via RDP and/or SSH using wrong credentials. Attack automatically blocked by SkyDancer Ai via interface.
show less
Hacking
Brute-Force
SSH
๐ง๐ช
taivas.nl
2026-06-30 04:32:27
(1 day ago)
Many_bad_calls
Web App Attack
๐ญ๐บ
kranem
2026-06-29 21:00:08
(2 days ago)
Triggered Cloudflare WAF from HK.
Action taken: BLOCK
ASN: 8075 (Microsoft Corporation)
Protocol: HT ...
show more
Triggered Cloudflare WAF from HK.
Action taken: BLOCK
ASN: 8075 (Microsoft Corporation)
Protocol: HTTP/1.1 (GET method)
Endpoint: /up.php
Query: ?x=
Timestamp: 2026-06-29T19:04:46Z
User-Agent: empty
show less
Bad Web Bot
Anonymous
2026-06-29 19:35:09
(2 days ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐จ๐ฆ
polycoda
2026-06-29 19:30:34
(2 days ago)
AutoBlock: ๐ฏ Vulnerability Scanner (Non Decay-Based) - โ Excessive 40X Errors (Decay-Based)
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
xmission.com
2026-06-29 19:29:53
(2 days ago)
65.52.172.240 - - [29/Jun/2026:13:29:42 -0600] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ...
show more
65.52.172.240 - - [29/Jun/2026:13:29:42 -0600] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:42 -0600] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:43 -0600] "GET /txets.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:43 -0600] "GET /7logs.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:43 -0600] "GET /css/xp.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:45 -0600] "GET /chosen.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:46 -0600] "GET /pp.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:46 -0600] "GET /wp-includes/ID3/rk2.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:47 -0600] "GET /gfile.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:47 -0600] "GET /a2.php HTTP/1.1" 404 27 "-" "-"
65.52.172.240 - - [29/Jun/2026:13:29:48 -0600] "GET
...
show less
Web App Attack
๐ซ๐ท
bazter.pro
2026-06-29 19:27:02
(2 days ago)
Fail2Ban: plesk-scanner - 10 failures
Port Scan
Hacking
Brute-Force
Web App Attack
Anonymous
2026-06-29 19:25:45
(2 days ago)
(PERMBLOCK) 65.52.172.240 (HK/Hong Kong/-) has had more than 4 temp blocks in the last 86400 secs; P ...
show more
(PERMBLOCK) 65.52.172.240 (HK/Hong Kong/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-29 19:22:14
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 65.52.172.240 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.52.172.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 15:22:09.014111 2026] [security2:error] [pid 31439:tid 31439] [client 65.52.172.240:5331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ilanknapp.com"] [uri "/wp-config.php"] [unique_id "akLF4Sfvg0p6EOQOqSTt9AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
ArturShelby
2026-06-29 19:16:43
(2 days ago)
Critical file access: /license.txt
Web App Attack
Anonymous
2026-06-29 19:13:48
(2 days ago)
65.52.172.240 - - [29/Jun/2026:19:13:48 +0000] "GET /wp-content/admin.php HTTP/1.1" 404 153 "-" "-" ...
show more
65.52.172.240 - - [29/Jun/2026:19:13:48 +0000] "GET /wp-content/admin.php HTTP/1.1" 404 153 "-" "-" "-" "opt-out.schmittel-it.de"
...
show less
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
bescared
2026-06-29 19:13:13
(2 days ago)
F2B - Malicious activity detected. URL Probing. -151302cd-
Hacking
Bad Web Bot
Web App Attack
Anonymous
2026-06-29 19:13:05
(2 days ago)
[Mon Jun 29 20:46:37.986330 2026] [authz_core:error] [pid 44745:tid 44834] [client 65.52.172.240:531 ...
show more
[Mon Jun 29 20:46:37.986330 2026] [authz_core:error] [pid 44745:tid 44834] [client 65.52.172.240:5317] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/wp-conflg.php
[Mon Jun 29 21:13:04.572413 2026] [authz_core:error] [pid 44745:tid 44841] [client 65.52.172.240:5325] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/maint/admin.php
[Mon Jun 29 21:13:04.572413 2026] [authz_core:error] [pid 44745:tid 44841] [client 65.52.172.240:5325] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/maint/admin.php
...
show less
Brute-Force
Web App Attack
๐จ๐ฆ
polycoda
2026-06-29 19:08:19
(2 days ago)
๐ฅ VERY AGGRESSIVE SCANNER probed over 300 inexistent files and PHP scripts in less than an hour.
Hacking
Web App Attack