City: unknown
Region: unknown
Country: United States
Internet Service Provider: Verizon
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 209.138.135.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39363
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;209.138.135.157. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025030702 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 08 12:58:51 CST 2025
;; MSG SIZE rcvd: 108b'Host 157.135.138.209.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 209.138.135.157.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 212.129.144.231 | attackspambots | Aug 12 11:08:43 buvik sshd[3665]: Failed password for root from 212.129.144.231 port 56012 ssh2 Aug 12 11:11:51 buvik sshd[4248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.144.231 user=root Aug 12 11:11:52 buvik sshd[4248]: Failed password for root from 212.129.144.231 port 40930 ssh2 ... |
2020-08-12 17:13:24 |
| 51.255.28.53 | attackspambots | SSH authentication failure x 6 reported by Fail2Ban ... |
2020-08-12 17:12:23 |
| 154.70.208.66 | attackbots | Aug 12 08:01:10 journals sshd\[34671\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.70.208.66 user=root Aug 12 08:01:13 journals sshd\[34671\]: Failed password for root from 154.70.208.66 port 37244 ssh2 Aug 12 08:05:27 journals sshd\[35001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.70.208.66 user=root Aug 12 08:05:29 journals sshd\[35001\]: Failed password for root from 154.70.208.66 port 40980 ssh2 Aug 12 08:09:52 journals sshd\[35390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.70.208.66 user=root ... |
2020-08-12 17:12:48 |
| 187.34.241.113 | attackspam | Automatic report - Port Scan Attack |
2020-08-12 16:59:48 |
| 188.166.159.127 | attack | Brute-force attempt banned |
2020-08-12 16:54:59 |
| 27.254.38.122 | attackbots | failedLogins |
2020-08-12 16:43:38 |
| 196.41.122.94 | attackspam | 196.41.122.94 - - [12/Aug/2020:08:18:22 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 196.41.122.94 - - [12/Aug/2020:08:18:25 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 196.41.122.94 - - [12/Aug/2020:08:18:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-08-12 16:46:01 |
| 106.54.77.171 | attack | Aug 12 03:08:09 ny01 sshd[25363]: Failed password for root from 106.54.77.171 port 33156 ssh2 Aug 12 03:11:40 ny01 sshd[25871]: Failed password for root from 106.54.77.171 port 42672 ssh2 |
2020-08-12 17:04:40 |
| 222.124.168.215 | attackbotsspam | [Wed Aug 12 10:49:18.820628 2020] [:error] [pid 15638:tid 140440171935488] [client 222.124.168.215:51197] [client 222.124.168.215] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-dasarian/prakiraan-dasarian-daerah-potensi-banjir/555558197-prakiraan-dasarian-daerah-potensi-banjir-di-provinsi-jawa-timur-untuk-bulan-agustus-dasarian-ii-tanggal-11-20-tahun-2020-update-10-agustus-2020"] [unique_id
... |
2020-08-12 17:07:41 |
| 45.129.33.13 | attack |
|
2020-08-12 16:39:29 |
| 89.248.172.85 | attackspam | ET CINS Active Threat Intelligence Poor Reputation IP group 86 - port: 2211 proto: tcp cat: Misc Attackbytes: 60 |
2020-08-12 16:36:38 |
| 46.229.168.147 | attackbotsspam | [Wed Aug 12 10:49:39.147698 2020] [:error] [pid 15638:tid 140440061867776] [client 46.229.168.147:33398] [client 46.229.168.147] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/3294-kalender-tanam-katam-terpadu-pulau-sumatra/kalender-tanam-katam-terpadu-provinsi-aceh/kalender-tanam-katam-terpadu-kabupaten-aceh-tenggara-provinsi-aceh/kalender-tanam-katam-terpadu-kecamatan-
... |
2020-08-12 16:57:19 |
| 109.169.65.225 | attackspam | 109.169.65.225 - - [12/Aug/2020:05:50:04 +0200] "GET /awstats.pl?framename=mainright&output=refererpages HTTP/1.0" 404 280 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36" |
2020-08-12 16:38:35 |
| 45.183.193.1 | attackbotsspam | Aug 12 08:04:06 vps639187 sshd\[27548\]: Invalid user Number1 from 45.183.193.1 port 49748 Aug 12 08:04:06 vps639187 sshd\[27548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.183.193.1 Aug 12 08:04:08 vps639187 sshd\[27548\]: Failed password for invalid user Number1 from 45.183.193.1 port 49748 ssh2 ... |
2020-08-12 17:08:48 |
| 219.249.62.179 | attackspambots | Aug 12 12:04:21 lunarastro sshd[6631]: Failed password for root from 219.249.62.179 port 49756 ssh2 Aug 12 12:12:40 lunarastro sshd[6797]: Failed password for root from 219.249.62.179 port 35484 ssh2 |
2020-08-12 16:32:28 |