threatx
2024-11-27 22:58:38
(1 week ago)
Common blacklisted IPs across tenants
DDoS Attack
Bad Web Bot
Web App Attack
threatx
2024-11-26 08:22:06
(1 week ago)
Common blacklisted IPs across tenants
DDoS Attack
Bad Web Bot
Web App Attack
LRob.fr
2024-11-23 23:01:05
(2 weeks ago)
Repeated attacks detected by Fail2Ban in recidive jail
Hacking
rtbh.com.tr
2024-11-23 20:53:03
(2 weeks ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
rtbh.com.tr
2024-11-22 20:53:03
(2 weeks ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
URAN Publishing Service
2024-11-22 10:08:04
(2 weeks ago)
87.120.112.131 - - [22/Nov/2024:12:07:32 +0200] "GET /wp-content/themes/newsfeed-theme/bbh.php HTTP/ ... show more 87.120.112.131 - - [22/Nov/2024:12:07:32 +0200] "GET /wp-content/themes/newsfeed-theme/bbh.php HTTP/1.1" 404 251 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
87.120.112.131 - - [22/Nov/2024:12:07:47 +0200] "GET /wp-content/plugins/dwssffw/simple.php HTTP/1.1" 404 251 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
... show less
Web App Attack
MSZ
2024-11-22 09:48:03
(2 weeks ago)
Blocked by Fail2Ban (plesk-apache)
Hacking
Brute-Force
Web App Attack
Mr-Money
2024-11-22 03:26:33
(2 weeks ago)
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:04:26:18 +0100] "GET /wp-content/themes/new ... show more 2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:04:26:18 +0100] "GET /wp-content/themes/newsfeed-theme/bbh.php HTTP/1.1" 404 497 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:04:26:26 +0100] "GET /wp-content/plugins/dwssffw/simple.php HTTP/1.1" 404 497 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:04:26:32 +0100] "GET /wp-content/plugins/helloapx/wp-apxupx.php?apx=upx HTTP/1.1" 404 497 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
jasperedv.de
2024-11-22 02:38:04
(2 weeks ago)
Apache Login - Brutforcing
Brute-Force
Web App Attack
Mr-Money
2024-11-22 02:24:36
(2 weeks ago)
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:03:24:25 +0100] "GET /wp-content/themes/new ... show more 2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:03:24:25 +0100] "GET /wp-content/themes/newsfeed-theme/bbh.php HTTP/1.1" 404 504 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:03:24:30 +0100] "GET /wp-content/plugins/dwssffw/simple.php HTTP/1.1" 404 504 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:03:24:36 +0100] "GET /wp-content/plugins/helloapx/wp-apxupx.php?apx=upx HTTP/1.1" 404 504 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
Mr-Money
2024-11-22 01:17:19
(2 weeks ago)
87.120.112.131 - - [22/Nov/2024:02:17:05 +0100] "GET /wp-content/themes/newsfeed-theme/bbh.php HTTP/ ... show more 87.120.112.131 - - [22/Nov/2024:02:17:05 +0100] "GET /wp-content/themes/newsfeed-theme/bbh.php HTTP/1.1" 404 493 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:02:17:11 +0100] "GET /wp-content/plugins/dwssffw/simple.php HTTP/1.1" 404 493 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:02:17:18 +0100] "GET /wp-content/plugins/helloapx/wp-apxupx.php?apx=upx HTTP/1.1" 404 493 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
Mr-Money
2024-11-22 00:16:33
(2 weeks ago)
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:01:16:24 +0100] "GET /wp-content/themes/new ... show more 2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:01:16:24 +0100] "GET /wp-content/themes/newsfeed-theme/bbh.php HTTP/1.1" 404 495 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:01:16:26 +0100] "GET /wp-content/plugins/dwssffw/simple.php HTTP/1.1" 404 495 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:01:16:32 +0100] "GET /wp-content/plugins/helloapx/wp-apxupx.php?apx=upx HTTP/1.1" 404 495 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack
plzenskypruvodce.cz
2024-11-21 23:32:02
(2 weeks ago)
[Fri Nov 22 00:28:52.657507 2024] [authz_core:error] [pid 387604:tid 387656] [client 87.120.112.131: ... show more [Fri Nov 22 00:28:52.657507 2024] [authz_core:error] [pid 387604:tid 387656] [client 87.120.112.131:58355] AH01630: client denied by server configuration: /var/www/tzb-chmelarova.cz/www/wp-content/index.php
[Fri Nov 22 00:32:00.230227 2024] [authz_core:error] [pid 387604:tid 387642] [client 87.120.112.131:58376] AH01630: client denied by server configuration: /var/www/tzb-chmelarova.cz/www/wp-includes/ID3/index.php
... show less
Web App Attack
LRob.fr
2024-11-21 23:02:03
(2 weeks ago)
Repeated attacks detected by Fail2Ban in recidive jail
Hacking
Mr-Money
2024-11-21 23:00:54
(2 weeks ago)
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:00:00:41 +0100] "GET /wp-content/themes/new ... show more 2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:00:00:41 +0100] "GET /wp-content/themes/newsfeed-theme/bbh.php HTTP/1.1" 404 498 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:00:00:47 +0100] "GET /wp-content/plugins/dwssffw/simple.php HTTP/1.1" 404 498 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2/Nov/2024:06:51:01 +010087.120.112.131 - - [22/Nov/2024:00:00:54 +0100] "GET /wp-content/plugins/helloapx/wp-apxupx.php?apx=upx HTTP/1.1" 404 498 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
... show less
Hacking
SQL Injection
Bad Web Bot
Exploited Host
Web App Attack