City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 215.75.129.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17804
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;215.75.129.104. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022702 1800 900 604800 86400
;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 05:48:45 CST 2025
;; MSG SIZE rcvd: 107Host 104.129.75.215.in-addr.arpa not found: 2(SERVFAIL)
server can't find 215.75.129.104.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 134.175.8.54 | attackspambots | Bruteforce detected by fail2ban |
2020-05-03 20:15:00 |
| 46.191.141.40 | attackspam | Unauthorized connection attempt from IP address 46.191.141.40 on Port 445(SMB) |
2020-05-03 20:31:10 |
| 144.217.207.8 | attack | [SunMay0314:15:44.9679792020][:error][pid1950:tid47899044054784][client144.217.207.8:55284][client144.217.207.8]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\.bak\|\\\\\\\\.bak\\\\\\\\.php\)\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1260"][id"390582"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessbackupfile\(disablethisruleifyourequireaccesstofilesthatnclude.bak\)"][severity"CRITICAL"][hostname"148.251.104.83"][uri"/.bak"][unique_id"Xq618DR-ljYFFFwRIurcLwAAAAA"][SunMay0314:15:44.9679802020][:error][pid10222:tid47899155105536][client144.217.207.8:50150][client144.217.207.8]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\.bak\|\\\\\\\\.bak\\\\\\\\.php\)\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1260"][id"390582"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessbackupfile\(disabl |
2020-05-03 20:32:16 |
| 217.218.245.11 | attackbotsspam | Unauthorized connection attempt from IP address 217.218.245.11 on Port 445(SMB) |
2020-05-03 20:03:09 |
| 1.9.196.82 | attack | Unauthorized connection attempt from IP address 1.9.196.82 on Port 445(SMB) |
2020-05-03 20:27:33 |
| 148.72.209.9 | attack | "XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES: |
2020-05-03 20:21:16 |
| 192.144.155.110 | attackspambots | DATE:2020-05-03 14:15:39, IP:192.144.155.110, PORT:ssh SSH brute force auth (docker-dc) |
2020-05-03 20:40:08 |
| 91.201.246.215 | attack | Unauthorized connection attempt from IP address 91.201.246.215 on Port 445(SMB) |
2020-05-03 20:35:26 |
| 106.13.31.119 | attackbots | 2020-05-02T23:44:29.717416linuxbox-skyline sshd[132677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.31.119 user=root 2020-05-02T23:44:31.992228linuxbox-skyline sshd[132677]: Failed password for root from 106.13.31.119 port 34440 ssh2 ... |
2020-05-03 20:04:43 |
| 195.5.138.215 | attackspambots | Unauthorized connection attempt from IP address 195.5.138.215 on Port 445(SMB) |
2020-05-03 20:12:56 |
| 207.154.218.16 | attackspambots | May 3 14:06:00 h2779839 sshd[5837]: Invalid user sonic from 207.154.218.16 port 43394 May 3 14:06:00 h2779839 sshd[5837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.218.16 May 3 14:06:00 h2779839 sshd[5837]: Invalid user sonic from 207.154.218.16 port 43394 May 3 14:06:02 h2779839 sshd[5837]: Failed password for invalid user sonic from 207.154.218.16 port 43394 ssh2 May 3 14:11:04 h2779839 sshd[6038]: Invalid user giovanni from 207.154.218.16 port 53266 May 3 14:11:04 h2779839 sshd[6038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.218.16 May 3 14:11:04 h2779839 sshd[6038]: Invalid user giovanni from 207.154.218.16 port 53266 May 3 14:11:07 h2779839 sshd[6038]: Failed password for invalid user giovanni from 207.154.218.16 port 53266 ssh2 May 3 14:15:44 h2779839 sshd[6194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.218.16 ... |
2020-05-03 20:30:22 |
| 203.133.56.14 | attack | Unauthorized connection attempt from IP address 203.133.56.14 on Port 445(SMB) |
2020-05-03 20:23:30 |
| 207.154.221.66 | attackspam | Invalid user ao from 207.154.221.66 port 50746 |
2020-05-03 19:58:07 |
| 167.71.76.122 | attackspam | 2020-05-03T12:11:48.875397shield sshd\[1998\]: Invalid user cumulus from 167.71.76.122 port 44980 2020-05-03T12:11:48.881392shield sshd\[1998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.76.122 2020-05-03T12:11:51.132124shield sshd\[1998\]: Failed password for invalid user cumulus from 167.71.76.122 port 44980 ssh2 2020-05-03T12:15:46.062908shield sshd\[3153\]: Invalid user build from 167.71.76.122 port 56344 2020-05-03T12:15:46.067167shield sshd\[3153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.76.122 |
2020-05-03 20:30:37 |
| 51.254.220.20 | attack | May 3 11:02:17 piServer sshd[22294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.220.20 May 3 11:02:19 piServer sshd[22294]: Failed password for invalid user deploy from 51.254.220.20 port 39363 ssh2 May 3 11:07:45 piServer sshd[22652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.220.20 ... |
2020-05-03 20:03:34 |