City: unknown
Region: unknown
Country: unknown
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2001:610:1a08:292:129:125:2:51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 59525
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2001:610:1a08:292:129:125:2:51. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Fri Feb 18 23:46:02 CST 2022
;; MSG SIZE rcvd: 59
'b'1.5.0.0.2.0.0.0.5.2.1.0.9.2.1.0.2.9.2.0.8.0.a.1.0.1.6.0.1.0.0.2.ip6.arpa domain name pointer production.ucms.rug.nl.
'Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
1.5.0.0.2.0.0.0.5.2.1.0.9.2.1.0.2.9.2.0.8.0.a.1.0.1.6.0.1.0.0.2.ip6.arpa name = production.ucms.rug.nl.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 79.155.112.192 | attackspam | Sep 23 07:43:27 vmanager6029 sshd\[25182\]: Invalid user netgate from 79.155.112.192 port 58338 Sep 23 07:43:27 vmanager6029 sshd\[25182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.155.112.192 Sep 23 07:43:29 vmanager6029 sshd\[25182\]: Failed password for invalid user netgate from 79.155.112.192 port 58338 ssh2 |
2019-09-23 17:18:13 |
| 165.22.59.11 | attackspambots | Sep 22 18:01:39 lcdev sshd\[23516\]: Invalid user mansour from 165.22.59.11 Sep 22 18:01:39 lcdev sshd\[23516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.59.11 Sep 22 18:01:41 lcdev sshd\[23516\]: Failed password for invalid user mansour from 165.22.59.11 port 34734 ssh2 Sep 22 18:06:41 lcdev sshd\[23882\]: Invalid user manuel from 165.22.59.11 Sep 22 18:06:41 lcdev sshd\[23882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.59.11 |
2019-09-23 17:26:05 |
| 112.33.253.60 | attack | Sep 23 12:31:43 localhost sshd\[17748\]: Invalid user oq from 112.33.253.60 port 41003 Sep 23 12:31:43 localhost sshd\[17748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.253.60 Sep 23 12:31:46 localhost sshd\[17748\]: Failed password for invalid user oq from 112.33.253.60 port 41003 ssh2 |
2019-09-23 18:50:18 |
| 222.75.117.90 | attack | Sep 23 12:20:09 taivassalofi sshd[76517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.75.117.90 Sep 23 12:20:11 taivassalofi sshd[76517]: Failed password for invalid user ts1 from 222.75.117.90 port 55366 ssh2 ... |
2019-09-23 17:22:49 |
| 84.24.140.167 | attack | [MonSep2305:51:08.0210872019][:error][pid25717:tid46955294148352][client84.24.140.167:48237][client84.24.140.167]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles\(disablethisruleifyourequireaccesstofilesthatendwith.sql\)"][severity"CRITICAL"][hostname"tokiopiano.ch"][uri"/1/dump.sql"][unique_id"XYhBLADgIX5DjwvIF8RW-wAAAJM"][MonSep2305:51:14.0899382019][:error][pid25718:tid46955294148352][client84.24.140.167:48535][client84.24.140.167]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles\(disablethisruleifyourequireaccesstofilesthatendwith.sql\)"][se |
2019-09-23 17:40:23 |
| 106.12.24.1 | attackbots | 2019-09-23T03:50:49.989684abusebot-3.cloudsearch.cf sshd\[9921\]: Invalid user user from 106.12.24.1 port 42768 |
2019-09-23 18:03:45 |
| 93.42.182.192 | attackbots | Sep 22 23:24:45 hcbb sshd\[26523\]: Invalid user dylan from 93.42.182.192 Sep 22 23:24:45 hcbb sshd\[26523\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-182-192.ip87.fastwebnet.it Sep 22 23:24:47 hcbb sshd\[26523\]: Failed password for invalid user dylan from 93.42.182.192 port 35626 ssh2 Sep 22 23:28:58 hcbb sshd\[26883\]: Invalid user kumi from 93.42.182.192 Sep 22 23:28:58 hcbb sshd\[26883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-182-192.ip87.fastwebnet.it |
2019-09-23 17:35:32 |
| 192.186.16.125 | attackbots | SMB Server BruteForce Attack |
2019-09-23 17:33:15 |
| 81.149.211.134 | attack | Automatic report - Banned IP Access |
2019-09-23 18:23:38 |
| 222.186.15.217 | attackbotsspam | 2019-09-23T10:26:49.647070abusebot-4.cloudsearch.cf sshd\[26581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.217 user=root |
2019-09-23 18:32:27 |
| 148.70.84.130 | attackbots | Sep 23 07:09:44 taivassalofi sshd[70634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.84.130 Sep 23 07:09:46 taivassalofi sshd[70634]: Failed password for invalid user user2 from 148.70.84.130 port 59900 ssh2 ... |
2019-09-23 18:11:56 |
| 59.35.93.142 | attackspambots | Automatic report - Port Scan Attack |
2019-09-23 17:46:09 |
| 112.64.32.118 | attackspambots | Sep 23 10:56:12 icinga sshd[5795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 Sep 23 10:56:14 icinga sshd[5795]: Failed password for invalid user andrew from 112.64.32.118 port 39510 ssh2 ... |
2019-09-23 17:24:27 |
| 157.245.107.180 | attack | Sep 23 05:51:45 herz-der-gamer sshd[11665]: Invalid user rrobinson from 157.245.107.180 port 60536 ... |
2019-09-23 17:18:27 |
| 49.88.112.110 | attack | Sep 23 05:47:41 *** sshd[21135]: User root from 49.88.112.110 not allowed because not listed in AllowUsers |
2019-09-23 17:15:57 |