๐ฎ๐ฉ
hermawan
2026-07-03 14:27:34
(1 hour ago)
07/03/2026-21:27:30.788936 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Conn ...
show more
07/03/2026-21:27:30.788936 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Connection Attempt [**] [Classification: Potential Corporate Privacy Violation] [Priority: 1] {TCP} 103.166.159.167:51053 -> 103.166.156.58:445
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-07-01 11:58:56
(2 days ago)
07/01/2026-18:58:56.360901 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Conn ...
show more
07/01/2026-18:58:56.360901 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Connection Attempt [**] [Classification: Potential Corporate Privacy Violation] [Priority: 1] {TCP} 103.166.159.167:53355 -> 103.166.156.58:445
...
show less
Email Spam
Hacking
๐ฆ๐บ
MAGIC
2026-07-01 05:04:44
(2 days ago)
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฎ๐ฉ
hermawan
2026-06-30 13:07:28
(3 days ago)
06/30/2026-20:07:27.859637 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Conn ...
show more
06/30/2026-20:07:27.859637 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Connection Attempt [**] [Classification: Potential Corporate Privacy Violation] [Priority: 1] {TCP} 103.166.159.167:55290 -> 103.166.156.58:445
...
show less
Email Spam
Hacking
๐ธ๐ฌ
securejdprop
2026-06-28 20:54:10
(4 days ago)
This IP was detected by CrowdSec triggering custom/vpatch-block-old-chrome. WAF block: custom/vpatch ...
show more
This IP was detected by CrowdSec triggering custom/vpatch-block-old-chrome. WAF block: custom/vpatch-block-old-chrome from 103.166.159.167 (172.20.0.4)
show less
Hacking
๐จ๐ญ
backslash
2026-06-28 08:48:03
(5 days ago)
block ruleset DA4A07AEE48B136A3922182BE8AA8BFBC1840803
Bad Web Bot
๐ต๐ฑ
sefinek.net
2026-06-23 18:37:10
(1 week ago)
Triggered Cloudflare WAF (firewallCustom) from ID.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (G ...
show more
Triggered Cloudflare WAF (firewallCustom) from ID.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (GET) | Endpoint: /booru/artist/%E7%99%BE%E5%B1%B1%E7%99%BE | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.81 Safari/537.36 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฉ๐ช
Vegascosmetics
2026-06-23 18:24:32
(1 week ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security
DDoS Attack
Hacking
Exploited Host
๐ฎ๐ฉ
hermawan
2026-06-23 12:17:35
(1 week ago)
06/23/2026-19:17:30.968734 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Conn ...
show more
06/23/2026-19:17:30.968734 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Connection Attempt [**] [Classification: Potential Corporate Privacy Violation] [Priority: 1] {TCP} 103.166.159.167:49186 -> 103.166.156.58:445
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-21 05:30:09
(1 week ago)
06/21/2026-12:30:08.154508 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Conn ...
show more
06/21/2026-12:30:08.154508 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Connection Attempt [**] [Classification: Potential Corporate Privacy Violation] [Priority: 1] {TCP} 103.166.159.167:58758 -> 103.166.156.58:445
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-12 12:49:36
(3 weeks ago)
06/12/2026-19:49:32.726947 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Conn ...
show more
06/12/2026-19:49:32.726947 [Drop] [**] [1:920705:1] Suricata dibuat Gemini Inbound SMB/NetBIOS Connection Attempt [**] [Classification: Potential Corporate Privacy Violation] [Priority: 1] {TCP} 103.166.159.167:52510 -> 103.166.156.58:445
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-11 13:13:22
(3 weeks ago)
[Thu Jun 11 20:13:17.635641 2026] [security2:error] [pid 1719476:tid 139768613562048] [client 103.16 ...
show more
[Thu Jun 11 20:13:17.635641 2026] [security2:error] [pid 1719476:tid 139768613562048] [client 103.166.159.167:53758] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "AndroidHttpClient" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "254"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: AndroidHttpClient found within REQUEST_HEADERS:User-Agent: AndroidHttpClient (Linux; U; Android 15; id_ID; 23129RN51X; Build/AP3A.240905.015.A2; Cronet/144.0.7500.8) request_line = GET /images/Klimatologi/Infografis/Infografis-Iklim/Klimat_Story/2026/06_Juni_2026/Apa_itu_Bediding-600.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Infografis/Infografis-Iklim/Klimat_Story/2026/06_Juni_2026/Apa_itu_Bediding-600.jpg"] [unique_id "aiq0baMC27s3RvwcQnqGewAABQA"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1719477] [0uecH/qU
...
show less
Email Spam
Hacking
๐ฌ๐ง
PeravixGroup
2026-06-08 13:46:06
(3 weeks ago)
Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ...
show more
Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud
show less
Hacking
Exploited Host
๐ฌ๐ง
PeravixGroup
2026-06-07 13:29:25
(3 weeks ago)
Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ...
show more
Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud
show less
Hacking
Exploited Host
๐ฆ๐บ
MAGIC
2026-06-06 01:32:57
(3 weeks ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot