139.162.193.126

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.193.126 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5026 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;139.162.193.126. IN A ;; AUTHORITY SECTION: . 595 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400 ;; Query time: 85 msec ;; SERVER: 183.60.83.19#53(183.60.83.19) ;; WHEN: Tue Feb 08 04:16:21 CST 2022 ;; MSG SIZE rcvd: 108

IP	Type	Details	Datetime
112.12.0.146	attackbots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-03-20 22:48:26
185.175.93.34	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 3389 proto: TCP cat: Misc Attack	2020-03-20 22:41:33
77.247.110.25	attackbots	ET SCAN Sipvicious Scan - port: 5060 proto: UDP cat: Attempted Information Leak	2020-03-20 22:20:27
219.153.72.78	attackspam	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-03-20 22:27:31
124.114.128.90	attackbotsspam	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-03-20 22:07:22
185.176.27.190	attackbotsspam	firewall-block, port(s): 41389/tcp	2020-03-20 22:38:39
129.211.62.131	attack	SSH/22 MH Probe, BF, Hack -	2020-03-20 22:06:37
185.209.0.92	attack	ET DROP Dshield Block Listed Source group 1 - port: 3344 proto: TCP cat: Misc Attack	2020-03-20 22:35:42
185.156.73.52	attack	03/20/2020-10:27:33.456309 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-20 22:42:44
92.118.160.1	attackspam	[Fri Mar 20 21:47:01.777129 2020] [:error] [pid 28385:tid 140130688055040] [client 92.118.160.1:53956] [client 92.118.160.1] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "XnTXZZzsdrwyhkL427RYvgAAAe8"] ...	2020-03-20 22:54:35
94.177.240.4	attackspambots	SSH Brute Force	2020-03-20 22:12:40
89.248.168.176	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-20 22:58:35
100.33.109.99	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 94 - port: 4567 proto: TCP cat: Misc Attack	2020-03-20 22:50:38
46.101.253.249	attackspam	SSH Brute Force	2020-03-20 22:22:58
92.118.160.21	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 83 - port: 123 proto: UDP cat: Misc Attack	2020-03-20 22:13:08

170.239.49.197	105.209.45.11	41.199.6.235	92.222.50.21
182.180.81.33	23.94.5.22	123.4.85.238	172.241.156.34
60.173.203.150	36.149.14.88	114.119.133.236	106.202.228.65
193.93.193.18	93.41.200.216	42.236.12.232	29.89.224.207
18.184.4.1	34.80.204.251	113.118.11.81	95.247.66.139

Basic Info

Comments:

Comments on same subnet:

Whois info:

Dig info:

Host info

Nslookup info:

Related IP info:

Related comments:

Recently Reported IPs