Threat LevelCRITICAL72/1001 rule type
4 incidents on record · active attack detected · active over 5 days · seen 23h ago
| PTR | N/A |
| Org / ASN | Xpeed |
| Country | 🇰🇷 South Korea |
| City | Gyeonggi-do, Gyeonggi-do |
| Timezone | Asia/Seoul |
Attack Analysis
Suricata IDS Alert
Suricata intrusion detection flagged this IP for malicious network behaviour — including port scanning, exploit attempts, botnet activity, or known attack signatures. The specific signature is shown in the report list below.
Reports (4)
| Date | Severity | Description |
|---|---|---|
| 12 Jun 2026 - 22:26 | medium | IDS: Suricata alert — Honeypot: probe to closed SSH port 22 |
| 12 Jun 2026 - 06:33 | medium | IDS: Suricata alert — ET COMPROMISED Known Compromised or Hostile Host Traffic group 1 |
| 7 Jun 2026 - 20:24 | medium | IDS: Suricata alert — Honeypot: probe to closed SSH port 22 |
| 7 Jun 2026 - 20:24 | high | IDS: Suricata alert |
EagleEye Intelligence