City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 156.198.159.227
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11237
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;156.198.159.227. IN A
;; AUTHORITY SECTION:
. 360 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 19:01:00 CST 2022
;; MSG SIZE rcvd: 108227.159.198.156.in-addr.arpa domain name pointer host-156.198.227.159-static.tedata.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
227.159.198.156.in-addr.arpa name = host-156.198.227.159-static.tedata.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 118.173.154.138 | attack | Unauthorized connection attempt detected from IP address 118.173.154.138 to port 85 [J] |
2020-02-01 17:17:49 |
| 83.246.143.46 | attack | Unauthorized connection attempt detected from IP address 83.246.143.46 to port 445 [T] |
2020-02-01 18:00:57 |
| 106.53.72.119 | attackbotsspam | Unauthorized connection attempt detected from IP address 106.53.72.119 to port 22 [T] |
2020-02-01 17:25:56 |
| 188.168.170.208 | attackbots | Unauthorized connection attempt detected from IP address 188.168.170.208 to port 80 [T] |
2020-02-01 17:46:10 |
| 13.250.107.82 | attack | GET /.env HTTP/1.1 302 - curl/7.47.0 |
2020-02-01 17:36:24 |
| 59.55.142.211 | attack | Unauthorized connection attempt detected from IP address 59.55.142.211 to port 445 [T] |
2020-02-01 17:29:56 |
| 13.210.120.130 | attackbotsspam | [SatFeb0108:26:53.0899482020][:error][pid12039:tid47392799856384][client13.210.120.130:50006][client13.210.120.130]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\|passwd\|group\)\|www_\?acl\)\|global\\\\\\\\.asa\|httpd\\\\\\\\.conf\|boot\\\\\\\\.ini\|web.config\)\\\\\\\\b\|\(\|\^\|\\\\\\\\.\\\\\\\\.\)/etc/\|/\\\\\\\\.\(\?:history\|bash_history\|sh_history\|env\)\$\)"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"211"][id"390709"][rev"30"][msg"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely"][data"/.env"][severity"CRITICAL"][hostname"mail.bno.ch"][uri"/.env"][unique_id"XjUoPTDMu3QNpyBNW2Cp4AAAAFM"][SatFeb0108:41:58.9151532020][:error][pid12116:tid47392762033920][client13.210.120.130:59016][client13.210.120.130]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\|passwd\|group\)\|www_\?acl\)\|global\\\\\\\\.asa\|httpd\\\\\\\ |
2020-02-01 17:37:00 |
| 211.137.225.101 | attack | Unauthorized connection attempt detected from IP address 211.137.225.101 to port 8080 [T] |
2020-02-01 17:44:28 |
| 213.79.114.246 | attackspam | Unauthorized connection attempt detected from IP address 213.79.114.246 to port 8080 [T] |
2020-02-01 17:43:54 |
| 58.186.17.135 | attackbots | Unauthorized connection attempt detected from IP address 58.186.17.135 to port 81 [J] |
2020-02-01 17:30:30 |
| 103.76.22.118 | attack | firewall-block, port(s): 9709/tcp |
2020-02-01 17:58:37 |
| 106.12.69.27 | attackspambots | Unauthorized connection attempt detected from IP address 106.12.69.27 to port 2447 [J] |
2020-02-01 17:26:27 |
| 101.51.127.214 | attackbots | Unauthorized connection attempt detected from IP address 101.51.127.214 to port 2323 [J] |
2020-02-01 17:26:49 |
| 42.113.51.85 | attackbots | Unauthorized connection attempt detected from IP address 42.113.51.85 to port 23 [J] |
2020-02-01 17:34:36 |
| 183.80.15.136 | attack | Unauthorized connection attempt detected from IP address 183.80.15.136 to port 23 [J] |
2020-02-01 17:48:17 |