City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 169.229.2.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60183
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;169.229.2.148. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022061301 1800 900 604800 86400
;; Query time: 127 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 14 01:15:04 CST 2022
;; MSG SIZE rcvd: 106148.2.229.169.in-addr.arpa domain name pointer b2350-a-2.berkeley.edu.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
148.2.229.169.in-addr.arpa name = b2350-a-2.berkeley.edu.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 81.133.142.45 | attackbots | ssh brute force |
2020-02-17 20:00:52 |
| 84.22.42.115 | attackspambots | port scan and connect, tcp 1433 (ms-sql-s) |
2020-02-17 19:37:40 |
| 107.170.76.170 | attack | Feb 17 11:25:50 ks10 sshd[905847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.76.170 Feb 17 11:25:52 ks10 sshd[905847]: Failed password for invalid user shutdown from 107.170.76.170 port 39014 ssh2 ... |
2020-02-17 20:01:22 |
| 176.100.173.50 | attack | [portscan] tcp/23 [TELNET] *(RWIN=63103)(02171127) |
2020-02-17 20:19:07 |
| 122.51.188.20 | attack | Feb 17 10:04:31 host sshd[11840]: Invalid user dominick from 122.51.188.20 port 41510 ... |
2020-02-17 19:50:26 |
| 122.170.5.123 | attackspambots | Feb 17 10:37:50 ncomp sshd[12875]: Invalid user teste from 122.170.5.123 Feb 17 10:37:50 ncomp sshd[12875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.170.5.123 Feb 17 10:37:50 ncomp sshd[12875]: Invalid user teste from 122.170.5.123 Feb 17 10:37:52 ncomp sshd[12875]: Failed password for invalid user teste from 122.170.5.123 port 38394 ssh2 |
2020-02-17 20:19:35 |
| 201.205.255.71 | attackbotsspam | Feb 17 11:23:08 ms-srv sshd[41668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.205.255.71 Feb 17 11:23:09 ms-srv sshd[41668]: Failed password for invalid user gamebot from 201.205.255.71 port 53710 ssh2 |
2020-02-17 20:16:46 |
| 159.203.143.58 | attack | Feb 17 12:27:33 dedicated sshd[22830]: Invalid user kborsi from 159.203.143.58 port 35484 |
2020-02-17 19:46:34 |
| 216.40.42.137 | attack | SSH login attempts. |
2020-02-17 19:41:19 |
| 45.148.10.99 | attack | SSH Brute Force |
2020-02-17 19:47:37 |
| 172.245.42.244 | attackspambots | (From virginia.mitchell228@gmail.com) Hello there! I'm a freelance web designer seeking new clients who are open to new ideas in web design to boost their sales. I saw what you were trying to do with your site, I'd like to share a few helpful and effective ideas on how to you can improve your approach on the online market. I am also able integrate features that can help your website run the business for both you and your clients. In my 12 years of experience in web design and development, I've seen cases where upgrades on the user-interface of a website helped attract more clients and consequently gave a significant amount of business growth. If you'd like to be more familiar with the work I do, I'll send you my portfolio of designs from my past clients. I'll also give you a free consultation via a phone call, so I can share with you some expert design advice and to also know about your ideas as well. Please let me know about the best time to give you a call. Talk to you soon! Best regards, Virgin |
2020-02-17 20:14:42 |
| 185.176.27.166 | attackspam | Feb 17 13:07:58 debian-2gb-nbg1-2 kernel: \[4200496.462870\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.166 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=21320 PROTO=TCP SPT=40756 DPT=5593 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-02-17 20:14:16 |
| 89.208.229.22 | attackspambots | SSH login attempts. |
2020-02-17 19:57:38 |
| 5.62.18.98 | attackbots | DATE:2020-02-17 05:55:01, IP:5.62.18.98, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc) |
2020-02-17 19:53:25 |
| 140.213.59.254 | attackbotsspam | [Mon Feb 17 11:54:56.501374 2020] [:error] [pid 11333:tid 140577555363584] [client 140.213.59.254:42402] [client 140.213.59.254] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-hujan-bulanan/prakiraan-curah-hujan-bulanan/555557608-prakiraan-bulanan-curah-hujan-bulan-januari-tahun-2020-update-dari-analisis-bulan-september-2019"] [unique_id "XkocoCKsjobM@NabR@cILAAAAAE"], refe
... |
2020-02-17 19:54:13 |