๐ฎ๐ณ
evicky2002
2026-07-15 06:00:00
(40 minutes ago)
Confirmed malicious by STILWaters CTI platform (score=100, sources=1)
Hacking
Brute-Force
SSH
๐บ๐ธ
agenciahypelab.com.br
2026-07-15 05:44:23
(55 minutes ago)
WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER
Brute-Force
SSH
๐ง๐ช
taivas.nl
2026-07-15 04:32:32
(2 hours ago)
Many_bad_calls
Web App Attack
Anonymous
2026-07-15 04:29:45
(2 hours ago)
Automated report (2026-07-15T04:29:45+00:00). User agent cited by various attack tools, rootkits, ba ...
show more
Automated report (2026-07-15T04:29:45+00:00). User agent cited by various attack tools, rootkits, backdoors, webshells, and malware detected.
show less
Hacking
Bad Web Bot
Exploited Host
Web App Attack
๐ซ๐ท
Catalin Negru
2026-07-15 03:51:31
(2 hours ago)
Recidive ban by fail2ban on server.blackbit.ro
Brute-Force
๐ง๐ท
dominioz
2026-07-15 03:47:34
(2 hours ago)
2026-07-15 03:46:57 GET /wp-content/plugins/fix/up.php - - 64.89.163.68 HTTP/1.1 Mozilla/5.0+(Window ...
show more
2026-07-15 03:46:57 GET /wp-content/plugins/fix/up.php - - 64.89.163.68 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/85.0.4183.102+Safari/537.36 - 404 104995
2026-07-15 03:46:58 POST /wp-plain.php - - 64.89.163.68 HTTP/1.1 Mozilla/5.0+(Linux;+Android+7.0;+SM-G892A+Bulid/NRD90M;+wv)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Version/4.0+Chrome/60.0.3112.107+Moblie+Safari/537.36 www.google.com 404 104995
2026-07-15 03:46:58 POST /ALFA_DATA/alfacgiapi/perl.alfa - - 64.89.163.68 HTTP/1.1 Mozlila/5.0+(Linux;+Android+7.0;+SM-G892A+Bulid/NRD90M;+wv)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Version/4.0+Chrome/60.0.3112.107+Moblie+Safari/537.36 www.google.com 404 104995
2026-07-15 03:46:58 GET /wp-content/plugins/apikey/apikey.php test=hello - 64.89.163.68 HTTP/1.1 Mozlila/5.0+(Linux;+Android+7.0;+SM-G892A+Bulid/NRD90M;+wv)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Version/4.0+Chrome/60.0.3112.107+Moblie+Safari/537.36 - 404 104995
...
show less
Web App Attack
๐ซ๐ท
Tilellit.PRO
2026-07-15 03:16:22
(3 hours ago)
Malicious web traffic detected by CrowdSec
Hacking
๐ง๐ท
Peregrine
2026-07-15 03:12:08
(3 hours ago)
Fail2Ban ct101 Jail: tomcat-404 | Evidence: 64.89.163.68 104.23.239.89 - - [14/Jul/2026:12:24:50 -03 ...
show more
Fail2Ban ct101 Jail: tomcat-404 | Evidence: 64.89.163.68 104.23.239.89 - - [14/Jul/2026:12:24:50 -0300] "POST /wp-plain.php HTTP/1.1" 404 18193
64.89.163.68 172.70.240.177 - - [14/Jul/2026:12:24:50 -0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 404 18193
64.89.163.68 162.158.111.50 - - [14/Jul/2026:12:24:50 -0300] "GET /wp-content/plugins/apikey/apikey.php?test=hello HTTP/1.1" 404 18193
64.89.163.68 172.70.248.185 - - [14/Jul/2026:12:24:50 -0300] "POST /alfacgiapi/perl.alfa HTTP/1.1" 404 18193
64.89.163.68 172.69.151.196 - - [14/Jul/2026:12:24:50 -0300] "GET /animxknf.php?Fox=d3wL7 HTTP/1.1" 404 18193
show less
Bad Web Bot
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-15 02:30:03
(4 hours ago)
(y3) Failed access -byebye- from 64.89.163.68 (US/United States/-): (CF_ENABLE)
Hacking
Anonymous
2026-07-15 02:21:03
(4 hours ago)
Automatically blocked after 11 security events. Observed web-shell or malicious-file probes. Source: ...
show more
Automatically blocked after 11 security events. Observed web-shell or malicious-file probes. Source: Cloudflare security controls.
show less
Hacking
Web App Attack
๐ฌ๐ง
relianoid.com
2026-07-15 00:28:45
(6 hours ago)
404 Errors Abuse detected by Relianoid OSS Load Balancer - relianoid.com
Web App Attack
๐ณ๐ฑ
0xffffffff
2026-07-15 00:03:24
(6 hours ago)
[2026-07-15 03:03:22.272620] [authz_core:error] [pid 342007:tid 124364149622464] [client 64.89.163.6 ...
show more
[2026-07-15 03:03:22.272620] [authz_core:error] [pid 342007:tid 124364149622464] [client 64.89.163.68:0] AH01630: client denied by server configuration: /var/www/*/wp-content/plugins/fix , error_notes:wp:include-files , URI:'/wp-content/plugins/fix/up.php'
[2026-07-15 03:03:22.272880] [authz_core:error] [pid 342007:tid 124364141213376] [client 64.89.163.68:0] AH01630: client denied by server configuration: /var/www/*/wp-content/themes/seotheme, referer www.google.com , error_notes:wp:include-files , URI:'/wp-content/themes/seotheme/db.php?u'
[2026-07-15 03:03:22.277039] [authz_core:error] [pid 342007:tid 124364132804288] [client 64.89.163.68:0] AH01630: client denied by server configuration: /var/www/*/wp-plain.php, referer www.google.com , error_notes:missing-php , URI:'/wp-plain.php'
[2026-07-15 03:03:22.318266] [authz_core:error] [pid 342006:tid 124364048713408] [client 64.89.163.68:0] AH01630: client denied by server configuration: /var/www/*/ALFA_DATA, referer www.google.com , error_notes:alfa-shell , UR
show less
Web App Attack
Bad Web Bot
๐ฉ๐ช
maxpower
2026-07-14 23:33:00
(7 hours ago)
(backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 64.89.163.68 (US/United States/-): 1 in the last 36 ...
show more
(backdoor_scan) REGOLA 7 - Backdoor Scan Attempt 64.89.163.68 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 64.89.163.68 - - [15/Jul/2026:01:32:57 +0200] "GET /wp-content/themes/seotheme/db.php?u HTTP/2.0" 404 8479 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "64.89.163.68" host=ctpescara.it
show less
Port Scan
๐น๐ท
ycoskun41
2026-07-14 22:51:20
(7 hours ago)
fail2ban: plesk-modsecurity jail on genckocaeli.com
Web App Attack
๐ฉ๐ช
macrob
2026-07-14 22:32:28
(8 hours ago)
2026/07/14 22:32:26 [error] 3511272#3511272: *376744759 access forbidden by rule, client: 64.89.163. ...
show more
2026/07/14 22:32:26 [error] 3511272#3511272: *376744759 access forbidden by rule, client: 64.89.163.68, server: binixo.com.ar, request: "GET /wp-content/plugins/fix/up.php HTTP/2.0", host: "binixo.com.ar"
2026/07/14 22:32:26 [error] 3511272#3511272: *376744763 access forbidden by rule, client: 64.89.163.68, server: binixo.com.ar, request: "GET /wp-content/themes/seotheme/db.php?u HTTP/2.0", host: "binixo.com.ar", referrer: "www.google.com"
2026/07/14 22:32:26 [error] 3511272#3511272: *376744760 access forbidden by rule, client: 64.89.163.68, server: binixo.com.ar, request: "GET /wp-content/themes/seotheme/db.php?u HTTP/2.0", host: "binixo.com.ar", referrer: "www.google.com"
...
show less
Web App Attack