City: unknown
Region: unknown
Country: United States
Internet Service Provider: AT&T
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.214.98.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23067
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;12.214.98.241. IN A
;; AUTHORITY SECTION:
. 366 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022123000 1800 900 604800 86400
;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 30 18:33:54 CST 2022
;; MSG SIZE rcvd: 106Host 241.98.214.12.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 241.98.214.12.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 61.134.36.13 | attackspam | Attempts against Pop3/IMAP |
2019-07-11 23:26:02 |
| 167.99.161.15 | attack | Jul 11 17:59:57 mail sshd[6347]: Invalid user guest2 from 167.99.161.15 ... |
2019-07-12 00:16:16 |
| 101.20.252.53 | attackbotsspam | D-Link DSL-2750B Remote Command Execution Vulnerability |
2019-07-12 00:21:07 |
| 14.215.46.94 | attack | Jul 11 09:36:28 aat-srv002 sshd[7822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.215.46.94 Jul 11 09:36:30 aat-srv002 sshd[7822]: Failed password for invalid user rafael from 14.215.46.94 port 17734 ssh2 Jul 11 09:41:19 aat-srv002 sshd[7890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.215.46.94 Jul 11 09:41:21 aat-srv002 sshd[7890]: Failed password for invalid user dashboard from 14.215.46.94 port 26521 ssh2 ... |
2019-07-11 23:39:43 |
| 159.65.155.227 | attackbotsspam | Jun 7 05:00:36 server sshd\[13038\]: Invalid user musazain from 159.65.155.227 Jun 7 05:00:36 server sshd\[13038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.227 Jun 7 05:00:37 server sshd\[13038\]: Failed password for invalid user musazain from 159.65.155.227 port 33280 ssh2 ... |
2019-07-11 23:59:19 |
| 159.65.54.221 | attack | Jul 11 17:02:47 MK-Soft-Root1 sshd\[9615\]: Invalid user wwwdata from 159.65.54.221 port 33372 Jul 11 17:02:47 MK-Soft-Root1 sshd\[9615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.54.221 Jul 11 17:02:49 MK-Soft-Root1 sshd\[9615\]: Failed password for invalid user wwwdata from 159.65.54.221 port 33372 ssh2 ... |
2019-07-11 23:40:53 |
| 139.162.77.6 | attackspam | TCP 3389 (RDP) |
2019-07-11 23:16:41 |
| 159.89.12.81 | attack | May 4 22:19:55 server sshd\[97325\]: Invalid user uep from 159.89.12.81 May 4 22:19:55 server sshd\[97325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.12.81 May 4 22:19:57 server sshd\[97325\]: Failed password for invalid user uep from 159.89.12.81 port 37290 ssh2 ... |
2019-07-11 23:12:57 |
| 72.167.190.12 | attack | ame="SQL Injection" threatcategory=Injections paramname=g paramvalue="2 and 1>1" paramtype=URI user=public role=public severity.1=4 vhost.1="<any host>" path.1=/Accounts/Corrientes/Detail.aspx tmodule.1=Database rule.1=ATAORN refinecrc.1=705477647 define.1=<Vd> \t<Id>267</Id> \t<UriCount>1</UriCount> \t<Uri> \t\t<Name>/BancaEnLinea/ControlPanel/Accounts/Corrientes/SaldosDetail.aspx</Name> \t\t<ParametersCount>1</ParametersCount> \t\t<Parameters> \t\t\t<Parameter> \t\t\t\t<Name>g</Name> \t\t\t\t<RefineAllRules>0</RefineAllRules> \t\t\t\t<RE>0</RE> \t\t\t\t<RulesCount>1</RulesCount> \t\t\t\t<Rules> \t\t\t\t\t<Code>ATAORN</Code> \t\t\t\t</Rules> \t\t\t\t</Parameter>\t\t</Parameters> \t</Uri> </Vd> |
2019-07-11 23:56:30 |
| 159.65.144.233 | attackbots | Jul 10 08:44:05 mail sshd[1690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.144.233 user=root Jul 10 08:44:07 mail sshd[1690]: Failed password for root from 159.65.144.233 port 64908 ssh2 ... |
2019-07-12 00:10:13 |
| 103.244.64.37 | attackbots | 19/7/11@11:05:30: FAIL: Alarm-SSH address from=103.244.64.37 ... |
2019-07-11 23:45:18 |
| 84.16.67.77 | attackbots | Apache struts exploit attempt. |
2019-07-12 00:14:28 |
| 159.89.116.97 | attackspambots | Apr 20 05:43:23 server sshd\[212693\]: Invalid user token from 159.89.116.97 Apr 20 05:43:23 server sshd\[212693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.116.97 Apr 20 05:43:25 server sshd\[212693\]: Failed password for invalid user token from 159.89.116.97 port 48316 ssh2 ... |
2019-07-11 23:14:50 |
| 123.135.127.85 | attackbots | Port scan: Attack repeated for 24 hours |
2019-07-11 23:09:59 |
| 159.65.153.163 | attackbots | Jul 2 22:15:32 server sshd\[137990\]: Invalid user wpyan from 159.65.153.163 Jul 2 22:15:32 server sshd\[137990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.153.163 Jul 2 22:15:34 server sshd\[137990\]: Failed password for invalid user wpyan from 159.65.153.163 port 51754 ssh2 ... |
2019-07-12 00:00:58 |