el-brujo - AbuseIPDB User Profile

User el-brujo , the webmaster of elhacker.net, joined AbuseIPDB in January 2021 and has reported 2,450,831 IP addresses.

Standing (weight) is good.

ACTIVE USER WEBMASTER SUPPORTER

IP	Date	Comment	Categories
213.209.143.206	4 seconds ago	05/24/2025-18:39:06.576037 213.209.143.206 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound ... show more05/24/2025-18:39:06.576037 213.209.143.206 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound group 57 show less	Hacking
196.188.236.13	1 minute ago	05/24/2025-18:37:57.910783 196.188.236.13 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	Hacking
119.147.202.193	2 minutes ago	05/24/2025-18:36:23.829612 119.147.202.193 Protocol: 6 ET SCAN NMAP -sS window 1024	Port Scan
185.243.5.55	3 minutes ago	05/24/2025-18:35:30.325145 185.243.5.55 Protocol: 17 ET SCAN Sipvicious User-Agent Detected (friendl ... show more05/24/2025-18:35:30.325145 185.243.5.55 Protocol: 17 ET SCAN Sipvicious User-Agent Detected (friendly-scanner) show less	Port Scan
213.209.143.55	7 minutes ago	05/24/2025-18:31:50.511545 213.209.143.55 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound g ... show more05/24/2025-18:31:50.511545 213.209.143.55 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound group 57 show less	Hacking
194.110.115.10	7 minutes ago	05/24/2025-18:31:36.498320 194.110.115.10 Protocol: 6 ET SCAN NMAP -sS window 1024	Port Scan
185.246.128.133	8 minutes ago	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "admin" at 2025-05-24T16:31:09Z	Brute-Force SSH
69.175.4.222	8 minutes ago	05/24/2025-18:31:05.454874 69.175.4.222 Protocol: 17 ET SCAN Sipvicious Scan	Port Scan
121.225.97.237	9 minutes ago	05/24/2025-18:29:50.876701 121.225.97.237 Protocol: 6 ET SCAN NMAP -sS window 1024	Port Scan
198.235.24.22	9 minutes ago	05/24/2025-18:29:35.586316 198.235.24.22 Protocol: 6 ET DROP Dshield Block Listed Source group 1	Hacking
80.64.18.102	9 minutes ago	05/24/2025-18:29:18.332517 80.64.18.102 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound gro ... show more05/24/2025-18:29:18.332517 80.64.18.102 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound group 8 show less	Hacking
106.14.144.233	10 minutes ago	05/24/2025-18:28:56.056880 106.14.144.233 Protocol: 6 ET SCAN Behavioral Unusually fast Terminal Ser ... show more05/24/2025-18:28:56.056880 106.14.144.233 Protocol: 6 ET SCAN Behavioral Unusually fast Terminal Server Traffic Potential Scan or Infection (Inbound) show less	Hacking
80.94.95.241	12 minutes ago	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "wei" at 2025-05-24T16:26:53Z	Brute-Force SSH
91.191.209.13	13 minutes ago	05/24/2025-18:26:00.062498 91.191.209.13 Protocol: 6 ET SCAN NMAP -sS window 1024	Port Scan
80.94.95.198	13 minutes ago	05/24/2025-18:25:18.829356 80.94.95.198 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound gro ... show more05/24/2025-18:25:18.829356 80.94.95.198 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound group 8 show less	Hacking
101.68.47.24	14 minutes ago	05/24/2025-18:24:50.638602 101.68.47.24 Protocol: 17 GPL TFTP Get	Hacking
193.105.134.95	14 minutes ago	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "Admin" at 2025-05-24T16:24:32Z	Brute-Force SSH
195.82.147.162	14 minutes ago	05/24/2025-18:24:19.377619 195.82.147.162 Protocol: 6 ET SCAN Behavioral Unusually fast Terminal Ser ... show more05/24/2025-18:24:19.377619 195.82.147.162 Protocol: 6 ET SCAN Behavioral Unusually fast Terminal Server Traffic Potential Scan or Infection (Inbound) show less	Hacking
197.184.180.49	14 minutes ago	[Sat May 24 18:24:02.104680 2025] [proxy_fcgi:error] [pid 2846626:tid 2846814] [remote 197.184.180.4 ... show more[Sat May 24 18:24:02.104680 2025] [proxy_fcgi:error] [pid 2846626:tid 2846814] [remote 197.184.180.49:0] AH01071: Got error 'Primary script unknown\n' [Sat May 24 18:24:10.896794 2025] [proxy_fcgi:error] [pid 2854219:tid 2854224] [remote 197.184.180.49:0] AH01071: Got error 'Primary script unknown\n' ... show less	Hacking Web App Attack
119.45.143.159	15 minutes ago	05/24/2025-18:23:48.018252 119.45.143.159 Protocol: 6 ET SCAN Potential SSH Scan	Port Scan
64.227.110.161	15 minutes ago	05/24/2025-18:23:15.266431 64.227.110.161 Protocol: 6 ET SCAN Suspicious inbound to PostgreSQL port ... show more05/24/2025-18:23:15.266431 64.227.110.161 Protocol: 6 ET SCAN Suspicious inbound to PostgreSQL port 5432 show less	Hacking
87.236.176.93	16 minutes ago	05/24/2025-18:23:07.604420 87.236.176.93 Protocol: 6 ET SCAN Suspicious inbound to PostgreSQL port 5 ... show more05/24/2025-18:23:07.604420 87.236.176.93 Protocol: 6 ET SCAN Suspicious inbound to PostgreSQL port 5432 show less	Hacking
167.94.145.64	16 minutes ago	05/24/2025-18:23:06.533269 167.94.145.64 Protocol: 6 ET SCAN Potential SSH Scan	Port Scan
167.94.146.59	16 minutes ago	05/24/2025-18:23:06.364515 167.94.146.59 Protocol: 6 ET SCAN Potential SSH Scan	Port Scan
167.94.146.25	16 minutes ago	05/24/2025-18:23:06.032725 167.94.146.25 Protocol: 6 ET SCAN Potential SSH Scan	Port Scan