๐บ๐ธ
agenciahypelab.com.br
2026-07-05 11:54:53
(16 hours ago)
WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER
Brute-Force
SSH
๐ฉ๐ช
maxpower
2026-07-05 11:26:15
(16 hours ago)
(backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 64.89.162.167 (US/United States/-): 2 in the last 3 ...
show more
(backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 64.89.162.167 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 64.89.162.167 - - [05/Jul/2026:13:26:12 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 404 30282 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "64.89.162.167" host=abruzzotour.it
64.89.162.167 - - [05/Jul/2026:13:26:13 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/2.0" 404 7586 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "64.89.162.167" host=abruzzotour.it
show less
Port Scan
๐ฉ๐ช
Isha
2026-07-05 11:08:10
(16 hours ago)
Shield Guard: Blocklist: IP signalรฉe (blocklist_de) | Chemin suspect: /wp-plain.php | SQLi dans 'COO ...
show more
Shield Guard: Blocklist: IP signalรฉe (blocklist_de) | Chemin suspect: /wp-plain.php | SQLi dans 'COOKIE:ON'
show less
SQL Injection
๐ฉ๐ช
maxpower
2026-07-05 09:40:44
(18 hours ago)
(backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 64.89.162.167 (US/United States/-): 2 in the last 3 ...
show more
(backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 64.89.162.167 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 64.89.162.167 - - [05/Jul/2026:11:40:37 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/2.0" 404 9883 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "64.89.162.167" host=www.masterlabvideoproduzioni.it
64.89.162.167 - - [05/Jul/2026:11:40:38 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/2.0" 404 9883 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "64.89.162.167" host=www.masterlabvideoproduzioni.it
show less
Port Scan
๐ฒ๐พ
Rizzy
2026-07-05 08:41:03
(19 hours ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐ฉ๐ช
ramazan
2026-07-05 06:31:24
(21 hours ago)
Fail2Ban: nginx-4xx | Failures: 10 | Log: /bgvpabqq.php?Fox=d3wL7 /plugins/content/apismtp/apismtp.p ...
show more
Fail2Ban: nginx-4xx | Failures: 10 | Log: /bgvpabqq.php?Fox=d3wL7 /plugins/content/apismtp/apismtp.php?test=hello /wp-content/plugins/apikey/apikey.php.suspected?test=hello /wp-content/plugins/apikey/apikey.php?test=hello /wp-content/plugins/fix/up.php
show less
Web App Attack
Hacking
๐ฑ๐ป
garmtech.com
2026-07-05 06:06:05
(22 hours ago)
IM360 WAF: Interaction with fake plugin MV:/wp-content/plugins/apikey/apikey.php.suspected?test=hell ...
show more
IM360 WAF: Interaction with fake plugin MV:/wp-content/plugins/apikey/apikey.php.suspected?test=hello
show less
Web App Attack
๐ฑ๐ป
garmtech.com
2026-07-05 06:06:05
(22 hours ago)
IM360 WAF: Block .suspected files MV:/plugins/content/apismtp/apismtp.php.suspected
Web App Attack
๐ณ๐ฑ
Site.eu
2026-07-05 04:20:57
(23 hours ago)
Excessive multi-domain requests
Brute-Force
๐ฆ๐บ
gregoo23
2026-07-05 04:20:36
(23 hours ago)
64.89.162.167 - - [05/Jul/2026:14:20:35 +1000] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 4 ...
show more
64.89.162.167 - - [05/Jul/2026:14:20:35 +1000] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 404 70176 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
64.89.162.167 - - [05/Jul/2026:14:20:35 +1000] "GET /wp-content/plugins/apikey/apikey.php?test=hello HTTP/1.1" 404 70200 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
64.89.162.167 - - [05/Jul/2026:14:20:35 +1000] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 70178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
maxpower
2026-07-05 04:16:55
(23 hours ago)
(backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 64.89.162.167 (US/United States/-): 2 in the last 3 ...
show more
(backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 64.89.162.167 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 64.89.162.167 - - [05/Jul/2026:06:16:42 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 301 314 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "64.89.162.167" host=fisacabruzzomolise.com
64.89.162.167 - - [05/Jul/2026:06:16:47 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/2.0" 404 15930 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "64.89.162.167" host=fisacabruzzomolise.com
show less
Port Scan
๐บ๐ธ
antlac1
2026-07-05 03:13:42
(1 day ago)
crowdsecurity/http-bad-user-agent
Brute-Force
Web App Attack
๐ง๐ท
dominioz
2026-07-05 01:42:51
(1 day ago)
2026-07-05 01:42:04 POST /ALFA_DATA/alfacgiapi/perl.alfa - - 64.89.162.167 HTTP/1.1 Mozlila/5.0+(Lin ...
show more
2026-07-05 01:42:04 POST /ALFA_DATA/alfacgiapi/perl.alfa - - 64.89.162.167 HTTP/1.1 Mozlila/5.0+(Linux;+Android+7.0;+SM-G892A+Bulid/NRD90M;+wv)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Version/4.0+Chrome/60.0.3112.107+Moblie+Safari/537.36 www.google.com 404 1440
2026-07-05 01:42:04 GET /wp-content/themes/seotheme/db.php u - 64.89.162.167 HTTP/1.1 Mozlila/5.0+(Linux;+Android+7.0;+SM-G892A+Bulid/NRD90M;+wv)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Version/4.0+Chrome/60.0.3112.107+Moblie+Safari/537.36 www.google.com 404 1440
2026-07-05 01:42:04 POST /wp-plain.php - - 64.89.162.167 HTTP/1.1 Mozilla/5.0+(Linux;+Android+7.0;+SM-G892A+Bulid/NRD90M;+wv)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Version/4.0+Chrome/60.0.3112.107+Moblie+Safari/537.36 www.google.com 404 1440
2026-07-05 01:42:04 GET /wp-content/plugins/fix/up.php - - 64.89.162.167 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/85.0.4183.102+Safari/537.36 - 404 1440
...
show less
Web App Attack
Anonymous
2026-07-04 23:49:09
(1 day ago)
64.89.162.167 - - [05/Jul/2026:01:49:07 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 4 ...
show more
64.89.162.167 - - [05/Jul/2026:01:49:07 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 404 61108 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
64.89.162.167 - - [05/Jul/2026:01:49:08 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 404 60815 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
64.89.162.167 - - [05/Jul/2026:01:49:07 +0200] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 61108 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36"
64.89.162.167 - - [05/Jul/2026:01:49:08 +0200] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 60815 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Saf
...
show less
Brute-Force
Web App Attack
๐ฎ๐ฉ
zam
2026-07-04 22:51:57
(1 day ago)
64.89.162.167 - - [04/Jul/2026:22:51:55 +0000] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 8 ...
show more
64.89.162.167 - - [04/Jul/2026:22:51:55 +0000] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 81174
show less
Web App Attack