City: North Bergen
Region: New Jersey
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.184.208.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3533
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;137.184.208.58. IN A
;; AUTHORITY SECTION:
. 490 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022101800 1800 900 604800 86400
;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 18 22:57:16 CST 2022
;; MSG SIZE rcvd: 107Host 58.208.184.137.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 58.208.184.137.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 162.142.125.50 | attack | [Sat Oct 03 17:47:25.195961 2020] [:error] [pid 10959:tid 140392171284224] [client 162.142.125.50:38322] [client 162.142.125.50] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "756"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "X3hWveXmh9WfvxChEP5EpgAAAGA"] ... |
2020-10-03 19:30:06 |
| 68.116.41.6 | attackbotsspam | 2020-10-03T17:35:41.563855hostname sshd[59542]: Failed password for invalid user xm from 68.116.41.6 port 52506 ssh2 ... |
2020-10-03 19:56:28 |
| 171.6.136.242 | attack | Oct 3 12:04:39 sso sshd[17629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.6.136.242 Oct 3 12:04:40 sso sshd[17629]: Failed password for invalid user admin from 171.6.136.242 port 42652 ssh2 ... |
2020-10-03 19:31:33 |
| 211.253.26.117 | attackspam | Oct 3 12:40:48 vps sshd[15931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.26.117 Oct 3 12:40:51 vps sshd[15931]: Failed password for invalid user Duck from 211.253.26.117 port 33548 ssh2 Oct 3 12:49:50 vps sshd[16349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.26.117 ... |
2020-10-03 19:41:22 |
| 184.154.139.19 | attackbots | (From 1) 1 |
2020-10-03 19:36:16 |
| 37.49.226.169 | attack | TCP ports : 465 / 587 |
2020-10-03 20:03:59 |
| 207.244.252.113 | attackspambots | (From annabelle@merchantpay.top) I have a quick question about working with your business. Like most business owners you just want to survive through to 2021. In order for that to happen you need to save every dollar possible right? This is an honest question, would you continue with the high credit card processing fees if there was another way? New laws are on your side. Test this newly released card processing model this October - just send a phone number and we'll call. $24.99/mo Flat Fee Credit Card Processing (Unlimited) 1) As a small business owner accepting credit/debit, recently passed State Laws are on your side. - Were you aware? New state regulations now in effect, the law was successfully passed in 46 states - effective since August 2019. Since that date you shouldn't be paying above 0.75% Credit Card Processing Fees. 2) You're legally able to demand this new option. Bottom Line: Your processor isn't telling you everything. Why are they hiding the lower fee options? We repre |
2020-10-03 20:02:21 |
| 165.21.103.192 | attackspambots | SSH login attempts. |
2020-10-03 19:27:09 |
| 45.80.175.4 | attackspam | spam |
2020-10-03 19:51:53 |
| 213.190.48.144 | attackspam | 1601670803 - 10/02/2020 22:33:23 Host: 213.190.48.144/213.190.48.144 Port: 445 TCP Blocked ... |
2020-10-03 20:04:17 |
| 180.76.150.238 | attack | (sshd) Failed SSH login from 180.76.150.238 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 3 06:56:49 server2 sshd[30093]: Invalid user vendas from 180.76.150.238 Oct 3 06:56:49 server2 sshd[30093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.150.238 Oct 3 06:56:51 server2 sshd[30093]: Failed password for invalid user vendas from 180.76.150.238 port 53560 ssh2 Oct 3 07:01:16 server2 sshd[2385]: Invalid user user from 180.76.150.238 Oct 3 07:01:16 server2 sshd[2385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.150.238 |
2020-10-03 19:29:33 |
| 128.199.88.188 | attackspam | Invalid user user2 from 128.199.88.188 port 58799 |
2020-10-03 20:02:56 |
| 202.73.24.188 | attackspambots | Oct 2 23:54:58 journals sshd\[77550\]: Invalid user internet from 202.73.24.188 Oct 2 23:54:58 journals sshd\[77550\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.73.24.188 Oct 2 23:55:00 journals sshd\[77550\]: Failed password for invalid user internet from 202.73.24.188 port 45884 ssh2 Oct 2 23:55:18 journals sshd\[77574\]: Invalid user ian from 202.73.24.188 Oct 2 23:55:18 journals sshd\[77574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.73.24.188 ... |
2020-10-03 19:33:34 |
| 218.104.225.140 | attack | Oct 3 13:41:48 server sshd[48698]: Failed password for invalid user torrent from 218.104.225.140 port 20099 ssh2 Oct 3 13:44:54 server sshd[49368]: Failed password for invalid user ventas from 218.104.225.140 port 1422 ssh2 Oct 3 13:46:40 server sshd[49765]: Failed password for invalid user al from 218.104.225.140 port 29937 ssh2 |
2020-10-03 19:59:28 |
| 212.129.16.53 | attackbotsspam | Invalid user mailman from 212.129.16.53 port 55374 |
2020-10-03 19:51:01 |