City: unknown
Region: unknown
Country: Netherlands (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.142.10.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52187
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;212.142.10.200. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400
;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 07:03:27 CST 2025
;; MSG SIZE rcvd: 107Host 200.10.142.212.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 200.10.142.212.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 5.135.161.7 | attackspam | $f2bV_matches |
2020-10-03 19:38:00 |
| 207.244.252.113 | attackspambots | (From annabelle@merchantpay.top) I have a quick question about working with your business. Like most business owners you just want to survive through to 2021. In order for that to happen you need to save every dollar possible right? This is an honest question, would you continue with the high credit card processing fees if there was another way? New laws are on your side. Test this newly released card processing model this October - just send a phone number and we'll call. $24.99/mo Flat Fee Credit Card Processing (Unlimited) 1) As a small business owner accepting credit/debit, recently passed State Laws are on your side. - Were you aware? New state regulations now in effect, the law was successfully passed in 46 states - effective since August 2019. Since that date you shouldn't be paying above 0.75% Credit Card Processing Fees. 2) You're legally able to demand this new option. Bottom Line: Your processor isn't telling you everything. Why are they hiding the lower fee options? We repre |
2020-10-03 20:02:21 |
| 166.170.223.56 | attack | Brute forcing email accounts |
2020-10-03 19:40:18 |
| 206.81.12.141 | attackbots | 1601722006 - 10/03/2020 12:46:46 Host: 206.81.12.141/206.81.12.141 Port: 99 TCP Blocked ... |
2020-10-03 19:46:05 |
| 66.70.189.203 | attackspam | $f2bV_matches |
2020-10-03 20:09:46 |
| 116.68.160.114 | attackbots | Invalid user spark from 116.68.160.114 port 42784 |
2020-10-03 19:45:46 |
| 180.168.47.238 | attackbotsspam | 2020-10-03T13:36:24.638594mail.broermann.family sshd[16268]: Invalid user debian from 180.168.47.238 port 42904 2020-10-03T13:36:24.642820mail.broermann.family sshd[16268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.47.238 2020-10-03T13:36:24.638594mail.broermann.family sshd[16268]: Invalid user debian from 180.168.47.238 port 42904 2020-10-03T13:36:26.563514mail.broermann.family sshd[16268]: Failed password for invalid user debian from 180.168.47.238 port 42904 ssh2 2020-10-03T13:41:59.102109mail.broermann.family sshd[16779]: Invalid user bot from 180.168.47.238 port 41801 ... |
2020-10-03 19:46:57 |
| 119.254.155.39 | attackspam | 504 Authentication not enabled. |
2020-10-03 20:01:01 |
| 52.149.15.223 | attackspam | TCP port : 8089 |
2020-10-03 20:07:16 |
| 63.80.187.59 | attackbots | E-Mail Spam (RBL) [REJECTED] |
2020-10-03 19:37:35 |
| 178.80.54.189 | attackspam | 178.80.54.189 - - [02/Oct/2020:22:37:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 178.80.54.189 - - [02/Oct/2020:22:37:22 +0100] "POST /wp-login.php HTTP/1.1" 200 7644 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 178.80.54.189 - - [02/Oct/2020:22:38:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ... |
2020-10-03 19:47:50 |
| 157.245.244.212 | attackbots | SSH brute-force attack detected from [157.245.244.212] |
2020-10-03 19:36:59 |
| 67.205.141.165 | attackspambots | 27090/tcp 14680/tcp 17812/tcp... [2020-08-30/10-03]80pkt,27pt.(tcp) |
2020-10-03 19:37:12 |
| 162.142.125.50 | attack | [Sat Oct 03 17:47:25.195961 2020] [:error] [pid 10959:tid 140392171284224] [client 162.142.125.50:38322] [client 162.142.125.50] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "756"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "X3hWveXmh9WfvxChEP5EpgAAAGA"] ... |
2020-10-03 19:30:06 |
| 106.55.167.58 | attack | sshd: Failed password for invalid user .... from 106.55.167.58 port 54504 ssh2 (7 attempts) |
2020-10-03 19:47:35 |