========== X-ARF Style Summary ========== Date: 2025-12-14T13:48:35+01:00 Source: 94.156.117.9 Type of Abuse: Portscan/Malware/Intrusion Attempts Logs: 13:48:29.236154 rule 0/0(match): block in on vtnet0: 94.156.117.9.33798 > 91.190.98.23.23:…

> Direction IN > Internal 142.132.133.242 > Threshold Packets 200,000 packets/s > Sum 86,540,000 packets/300s (288,466 packets/s), 2,980 flows/300s (9 flows/s), 10.437 GByte/300s (284 MBit/s)…

> ############################################################################# > # Netscan detected from host 95.217.58.104 # > ############################################################################# > > > TIME (UTC) SRC SRC-PORT -> DST DST-PORT SIZE PROT >…

> Direction IN > Internal 142.132.133.242 > Threshold Packets 300,000 packets/s > Sum 133,995,000 packets/300s (446,650 packets/s), 793 flows/300s (2 flows/s), 58.187 GByte/300s (1,588 MBit/s)…

> ############################################################################# > # Netscan detected from host 91.99.94.205 # > ############################################################################# > > > TIME (UTC) SRC SRC-PORT -> DST DST-PORT SIZE PROT >…

> Direction IN > Internal 142.132.133.242 > Threshold Packets 200,000 packets/s > Sum 61,100,000 packets/300s (203,666 packets/s), 364 flows/300s (1 flows/s), 26.640 GByte/300s (727 MBit/s)…

We have detected that your server is using different MAC addresses from those allowed by your Robot account. (65.108.3.147) Allowed MACs: b4:2e:99:ca:5a:cc Unallowed MACs: bc:24:11:01:16:94…

> Direction IN > Internal 176.9.91.173 > Threshold Packets 200,000 packets/s > Sum 86,205,000 packets/300s (287,350 packets/s), 16,722 flows/300s (55 flows/s), 16.941 GByte/300s (462 MBit/s)…

> Direction IN > Internal 142.132.133.242 > Threshold Packets 200,000 packets/s > Sum 83,120,000 packets/300s (277,066 packets/s), 2,146 flows/300s (7 flows/s), 8.931 GByte/300s (243 MBit/s)…