๐ซ๐ท
Duggy_Tuxy๐งฑ
2026-07-06 16:58:13
(1 hour ago)
[DS-BLKS-PROD01] Blocked by SysWarden Firewall (Database/Cache Attack)
Brute-Force
Port Scan
Hacking
๐ฏ๐ต
jay hung
2026-07-06 16:39:24
(1 hour ago)
2026-07-06T16:39:23.090811+00:00 quarktech kernel: [2000621.078041] [UFW BLOCK] IN=eth0 OUT= MAC=22: ...
show more
2026-07-06T16:39:23.090811+00:00 quarktech kernel: [2000621.078041] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=157.148.122.208 DST=172.237.20.248 LEN=60 TOS=0x00 PREC=0x00 TTL=38 ID=56549 DF PROTO=TCP SPT=64821 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
...
show less
Port Scan
๐ซ๐ฎ
iamxorum
2026-07-06 14:54:14
(3 hours ago)
2026-07-06T14:54:14.179068+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74 ...
show more
2026-07-06T14:54:14.179068+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74:7f:6e:37:e3:08:00 SRC=157.148.122.208 DST=46.62.222.43 LEN=60 TOS=0x00 PREC=0x00 TTL=40 ID=36220 DF PROTO=TCP SPT=22455 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
...
show less
Port Scan
๐จ๐ฆ
Arpan Sen
2026-07-06 07:36:15
(10 hours ago)
Network port/address scan: probed 1 distinct port(s) across 64 host(s); 100% of connections received ...
show more
Network port/address scan: probed 1 distinct port(s) across 64 host(s); 100% of connections received no service (SYN, no reply) -- passive network sensor.
show less
Port Scan
๐ซ๐ท
Entalpi.net
2026-07-06 05:24:45
(12 hours ago)
Tried to hit sensible closed port commonly used in attacks
Port Scan
Hacking
๐ฆ๐บ
PetePK
2026-07-05 17:29:05
(1 day ago)
Probed 1 time(s): TCP/6379
Port Scan
๐ฉ๐ช
SMi-Web
2026-07-05 17:17:39
(1 day ago)
Blocked by firewall on hugin [6379/tcp] | Rule: UFW | SPT: 9949 | TTL: 38 | LEN: 60 | TOS: 0x00 โข Re ...
show more
Blocked by firewall on hugin [6379/tcp] | Rule: UFW | SPT: 9949 | TTL: 38 | LEN: 60 | TOS: 0x00 โข Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐น๐ญ
Sawasdee
2026-07-05 14:57:08
(1 day ago)
Port Scan
...
Port Scan
๐จ๐ณ
pengpeng
2026-07-05 07:04:50
(1 day ago)
monitor: on VM-0-7-ubuntu | port: 6379 | ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter
Port Scan
๐จ๐ญ
cybsecaoccol
2026-07-04 20:30:55
(1 day ago)
multiple malicious connection attempts on tcp port 6379 - sch
DDoS Attack
Port Scan
Hacking
Brute-Force
Anonymous
2026-07-04 16:33:03
(2 days ago)
2026-07-04T17:33:02.047077+01:00 vps kernel: [44922918.355516] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ...
show more
2026-07-04T17:33:02.047077+01:00 vps kernel: [44922918.355516] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=157.148.122.208 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=37 ID=21545 DF PROTO=TCP SPT=61792 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0
...
show less
Port Scan
Brute-Force
๐ฌ๐ง
OptimusGO
2026-07-04 13:43:55
(2 days ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-07-04 14:43:55 UTC
Log evidence:
07/04/2026-14:43:54.445762 [**] [1:1000090:1] POLICY Unauthorized Management Port Access [**] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 157.148.122.208:61602 -> 185.127.18.66:6379
07/04/2026-14:43:54.445762 [**] [1:1000103:1] SECURITY Management Port Probe - CRITICAL [**] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 157.148.122.208:61602 -> 185.127.18.66:6379
show less
Port Scan
Brute-Force
๐จ๐ญ
Elysium Security
2026-07-03 19:36:56
(2 days ago)
Mass port scanning on a whole network
Port Scan
๐ฉ๐ช
heyzg
2026-07-03 19:36:44
(2 days ago)
HTTP Malware Staging (observed): 26 cmds, 2 HTTP, 14s; attempted remote file download & cron persist ...
show more
HTTP Malware Staging (observed): 26 cmds, 2 HTTP, 14s; attempted remote file download & cron persistence; payload: hxxp://34[.]70[.]205[.]211/plugins-dist/safehtml/lang/font/kworker, hxxp://38[.]150[.]0[.]118/dewfhuewr4r89/98hy67//kworker; external IP: 34[.]70[.]205[.]211, 38[.]150[.]0[.]118
show less
Hacking
Exploited Host
SSH
๐บ๐ธ
xmission.com
2026-07-03 16:16:18
(3 days ago)
Blocked by UFW (TCP on 6379)
Source port: 34826
TTL: 43
Packet length: 60
TOS: 0x08
This report (fo ...
show more
Blocked by UFW (TCP on 6379)
Source port: 34826
TTL: 43
Packet length: 60
TOS: 0x08
This report (for 157.148.122.208) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan