City: unknown
Region: unknown
Country: Thailand
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 119.42.122.239 | attack | srvr1: (mod_security) mod_security (id:942100) triggered by 119.42.122.239 (TH/-/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:03:52 [error] 482759#0: *840352 [client 119.42.122.239] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801143266.523321"] [ref ""], client: 119.42.122.239, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27+AND+++9747+%3D+0 HTTP/1.1" [redacted] |
2020-08-22 00:21:11 |
| 119.42.122.85 | attackspambots | Unauthorized IMAP connection attempt |
2020-06-10 19:09:26 |
| 119.42.122.151 | attack | Unauthorized connection attempt detected from IP address 119.42.122.151 to port 445 |
2019-12-23 15:08:49 |
| 119.42.122.196 | attackbots | 119.42.122.196 has been banned from MailServer for Abuse ... |
2019-10-12 20:16:45 |
| 119.42.122.244 | attackbots | 445/tcp [2019-06-27]1pkt |
2019-06-27 21:22:50 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.122.186
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2966
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;119.42.122.186. IN A
;; AUTHORITY SECTION:
. 539 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030900 1800 900 604800 86400
;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 14:35:45 CST 2022
;; MSG SIZE rcvd: 107Host 186.122.42.119.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 186.122.42.119.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 118.24.41.104 | attackbots | May 28 09:44:01 server sshd\[81356\]: Invalid user djhome from 118.24.41.104 May 28 09:44:01 server sshd\[81356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.41.104 May 28 09:44:03 server sshd\[81356\]: Failed password for invalid user djhome from 118.24.41.104 port 33991 ssh2 ... |
2019-07-17 10:36:54 |
| 118.24.125.75 | attackspambots | Apr 28 12:43:11 server sshd\[70261\]: Invalid user wf from 118.24.125.75 Apr 28 12:43:11 server sshd\[70261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.125.75 Apr 28 12:43:13 server sshd\[70261\]: Failed password for invalid user wf from 118.24.125.75 port 55282 ssh2 ... |
2019-07-17 10:47:57 |
| 118.193.80.106 | attackspam | May 5 01:12:57 server sshd\[101781\]: Invalid user ix from 118.193.80.106 May 5 01:12:57 server sshd\[101781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.80.106 May 5 01:13:00 server sshd\[101781\]: Failed password for invalid user ix from 118.193.80.106 port 50510 ssh2 ... |
2019-07-17 10:58:38 |
| 185.190.54.253 | attackspam | Automatic report - Port Scan Attack |
2019-07-17 10:28:52 |
| 83.94.206.60 | attackbotsspam | Jul 17 02:21:18 MK-Soft-VM6 sshd\[23010\]: Invalid user sql from 83.94.206.60 port 52298 Jul 17 02:21:18 MK-Soft-VM6 sshd\[23010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.94.206.60 Jul 17 02:21:21 MK-Soft-VM6 sshd\[23010\]: Failed password for invalid user sql from 83.94.206.60 port 52298 ssh2 ... |
2019-07-17 10:48:25 |
| 2.139.176.35 | attack | Jul 17 03:56:35 rpi sshd[8800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.176.35 Jul 17 03:56:37 rpi sshd[8800]: Failed password for invalid user scott from 2.139.176.35 port 3508 ssh2 |
2019-07-17 10:15:12 |
| 212.83.145.12 | attack | \[2019-07-16 21:34:48\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-16T21:34:48.034-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9000000011972592277524",SessionID="0x7f06f804c2c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.145.12/51269",ACLName="no_extension_match" \[2019-07-16 21:38:29\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-16T21:38:29.422-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="90000000011972592277524",SessionID="0x7f06f81021a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.145.12/49502",ACLName="no_extension_match" \[2019-07-16 21:42:06\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-16T21:42:06.619-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900000000011972592277524",SessionID="0x7f06f823f758",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.14 |
2019-07-17 10:56:11 |
| 118.24.221.190 | attackspam | Jun 12 19:56:03 server sshd\[27351\]: Invalid user kristie from 118.24.221.190 Jun 12 19:56:03 server sshd\[27351\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.221.190 Jun 12 19:56:05 server sshd\[27351\]: Failed password for invalid user kristie from 118.24.221.190 port 28324 ssh2 ... |
2019-07-17 10:41:21 |
| 85.93.145.134 | attackspam | Jul 16 22:06:43 vps200512 sshd\[18128\]: Invalid user admin from 85.93.145.134 Jul 16 22:06:43 vps200512 sshd\[18128\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.145.134 Jul 16 22:06:45 vps200512 sshd\[18128\]: Failed password for invalid user admin from 85.93.145.134 port 34806 ssh2 Jul 16 22:11:40 vps200512 sshd\[18241\]: Invalid user debian from 85.93.145.134 Jul 16 22:11:40 vps200512 sshd\[18241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.145.134 |
2019-07-17 10:25:38 |
| 118.24.33.38 | attackspam | Jun 18 22:56:54 server sshd\[202043\]: Invalid user git from 118.24.33.38 Jun 18 22:56:54 server sshd\[202043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.33.38 Jun 18 22:56:56 server sshd\[202043\]: Failed password for invalid user git from 118.24.33.38 port 53656 ssh2 ... |
2019-07-17 10:37:54 |
| 118.24.10.31 | attack | Apr 18 21:10:55 server sshd\[165483\]: Invalid user temp1 from 118.24.10.31 Apr 18 21:10:55 server sshd\[165483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.10.31 Apr 18 21:10:57 server sshd\[165483\]: Failed password for invalid user temp1 from 118.24.10.31 port 47862 ssh2 ... |
2019-07-17 10:54:40 |
| 118.24.30.97 | attackspam | Jun 24 19:48:59 server sshd\[114135\]: Invalid user ashok from 118.24.30.97 Jun 24 19:48:59 server sshd\[114135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.30.97 Jun 24 19:49:01 server sshd\[114135\]: Failed password for invalid user ashok from 118.24.30.97 port 52492 ssh2 ... |
2019-07-17 10:38:16 |
| 163.172.76.253 | attack | SIPVicious Scanner Detection |
2019-07-17 10:56:42 |
| 162.243.20.243 | attack | Jul 17 00:49:33 dev0-dcde-rnet sshd[18951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.20.243 Jul 17 00:49:35 dev0-dcde-rnet sshd[18951]: Failed password for invalid user rs from 162.243.20.243 port 50298 ssh2 Jul 17 00:57:50 dev0-dcde-rnet sshd[18955]: Failed password for root from 162.243.20.243 port 49780 ssh2 |
2019-07-17 10:34:57 |
| 118.24.83.1 | attack | May 22 14:53:56 server sshd\[94835\]: Invalid user matrix from 118.24.83.1 May 22 14:53:56 server sshd\[94835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.83.1 May 22 14:53:58 server sshd\[94835\]: Failed password for invalid user matrix from 118.24.83.1 port 52956 ssh2 ... |
2019-07-17 10:32:04 |