165.90.106.55
14 Nov 2024
Rule : SMTP
IP in black list
Email Spam
Port Scan
Spoofing
171.91.196.48
14 Nov 2024
Rule : SMTP
IP in black list
Email Spam
Port Scan
Spoofing
54.38.100.144
14 Nov 2024
Domain : pleskcontrolpanel
Rule : WEB
IP in black list
Port Scan
165.154.235.158
14 Nov 2024
Rule : SMTP
IP in black list
Email Spam
Port Scan
Spoofing
79.137.7.67
14 Nov 2024
Domain : pleskcontrolpanel
Rule : WEB
IP in black list
Port Scan
137.74.239.157
14 Nov 2024
Domain : pleskcontrolpanel
Rule : WEB
IP in black list
Port Scan
149.202.132.203
14 Nov 2024
Domain : pleskcontrolpanel
Rule : WEB
IP in black list
Port Scan
149.56.160.248
14 Nov 2024
Domain : vmbi.ch
Rule : config
2024-11-14 14:53:05 145.239.244.113 GET /.well-known/secu ... show more Domain : vmbi.ch
Rule : config
2024-11-14 14:53:05 145.239.244.113 GET /.well-known/security.txt - 443 - 149.56.160.248 HTTP/1.1 Mozilla/5.0 (compatible; Dataprovider.com) http://www.vmbi.ch/.well-known/security.txt www.vmbi.ch 404 0 2 12742 260 99 - - show less
Hacking
SQL Injection
165.154.254.81
14 Nov 2024
Domain : megamail.com.br
Rule : SMTP
11/14/24 15:46:21 1512 165.154.254.81 ***hidden- ... show more Domain : megamail.com.br
Rule : SMTP
11/14/24 15:46:21 1512 165.154.254.81 ***hidden-privacy*** ESMTP MailEnable Service, Version: 10.48-- ready at 11/14/24 15:46:21 90 0
11/14/24 15:46:21 1512 165.154.254.81 EHLO EHLO mail.vmbi.ch ***hidden-privacy*** [165.154.254.81], this server offers 5 extensions 225 19
11/14/24 15:46:21 1512 165.154.254.81 RSET RSET 250 Requested mail action okay, completed 43 6
11/14/24 15:46:21 1512 165.154.254.81 MAIL MAIL FROM:<[email protected] > 250 Requested mail action okay, completed 43 30
11/14/24 15:46:21 1512 165.154.254.81 RCPT RCPT TO:<[email protected] > 503 This mail server requires authentication when attempting to send to a non-local e-mail address. Please check your mail client settings or contact your administrator to verify that the domain or address is defined for this server. 235 34 show less
Email Spam
Port Scan
Spoofing
5.135.238.153
14 Nov 2024
Domain : pleskcontrolpanel
Rule : WEB
IP in black list
Port Scan
137.74.239.158
14 Nov 2024
Rule : POP
IP in black list
Port Scan
Spoofing
91.223.169.83
14 Nov 2024
Rule : POP
IP in black list
Port Scan
Spoofing
147.135.23.98
14 Nov 2024
Rule : POP
IP in black list
Port Scan
Spoofing
45.156.129.60
14 Nov 2024
Domain : pleskcontrolpanel
Rule : WEB
IP in black list
Port Scan
40.78.126.83
14 Nov 2024
Rule : DNS
40.78.126.83
DNS Compromise
52.237.249.200
14 Nov 2024
Domain : nbae.ch
Rule : pluginsphp
2024-11-14 13:17:25 145.239.244.113 GET /wp-content/p ... show more Domain : nbae.ch
Rule : pluginsphp
2024-11-14 13:17:25 145.239.244.113 GET /wp-content/plugins/simple/simple.php - 443 - 52.237.249.200 HTTP/1.1 - - www.nbae.ch 404 0 2 12742 73 281 - - show less
Web App Attack
104.40.73.123
14 Nov 2024
Rule : IMAP
IP in black list
Port Scan
Spoofing
196.28.226.125
14 Nov 2024
Rule : SMTP
IP in black list
Email Spam
Port Scan
Spoofing
183.178.121.11
14 Nov 2024
Rule : SMTP
IP in black list
Email Spam
Port Scan
Spoofing
125.91.33.23
14 Nov 2024
Rule : RDP
UserAccount : Administrator
S-1-0-0 - - 0x0 S-1-0-0 Administrator - 0x ... show more Rule : RDP
UserAccount : Administrator
S-1-0-0 - - 0x0 S-1-0-0 Administrator - 0xc000006d %#13 0xc000006a 3 NtLmSsp NTLM workstation - - 0 0x0 - 125.91.33.23 0 show less
Brute-Force
SSH
147.45.112.100
14 Nov 2024
Rule : RDP
UserAccount : Admin
S-1-0-0 - - 0x0 S-1-0-0 Admin BI-SERVER 0xc000006d ... show more Rule : RDP
UserAccount : Admin
S-1-0-0 - - 0x0 S-1-0-0 Admin BI-SERVER 0xc000006d %#13 0xc000006a 3 NtLmSsp NTLM WIN-HFAKTNVJB5C - - 0 0x0 - 147.45.112.100 0 show less
Brute-Force
SSH
188.68.47.250
14 Nov 2024
Domain : baechtold-informatik.ch
Rule : WEB
IP in black list
Port Scan
191.96.168.32
14 Nov 2024
Domain : sheini.ch
Rule : includephp
2024-11-14 11:48:28 145.239.244.113 GET /wp-include ... show more Domain : sheini.ch
Rule : includephp
2024-11-14 11:48:28 145.239.244.113 GET /wp-includes/ID3/license.txt - 443 - 191.96.168.32 HTTP/1.1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36 - sheini.ch 404 0 2 12749 338 144 - - show less
Port Scan
64.62.197.165
14 Nov 2024
Rule : SMTP
IP in black list
Email Spam
Port Scan
Spoofing
64.62.197.157
14 Nov 2024
Rule : SMTP
IP in black list
Email Spam
Port Scan
Spoofing