City: Overland Park
Region: Kansas
Country: United States
Internet Service Provider: Codero
Hostname: unknown
Organization: Codero
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackbots | Unauthorized connection attempt from IP address 69.64.75.48 on Port 445(SMB) |
2019-06-22 16:40:04 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 69.64.75.36 | attackspambots | SSH Brute Force |
2019-06-27 17:56:29 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 69.64.75.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24184
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;69.64.75.48. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019062201 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 22 16:39:54 CST 2019
;; MSG SIZE rcvd: 11548.75.64.69.in-addr.arpa domain name pointer 69-64-75-48.dedicated.codero.net.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
48.75.64.69.in-addr.arpa name = 69-64-75-48.dedicated.codero.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.175.93.27 | attackbotsspam | 11/10/2019-13:00:53.980681 185.175.93.27 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-11-11 03:02:26 |
| 89.248.174.222 | attackspam | Nov 9 08:36:29 SRC=89.248.174.222 PROTO=TCP SPT=47065 DPT=8089 Nov 9 09:26:54 SRC=89.248.174.222 PROTO=TCP SPT=49176 DPT=8089 Nov 9 10:12:04 SRC=89.248.174.222 PROTO=TCP SPT=52276 DPT=8089 Nov 9 11:00:17 SRC=89.248.174.222 PROTO=TCP SPT=55968 DPT=8089 Nov 9 12:48:59 SRC=89.248.174.222 PROTO=TCP SPT=40952 DPT=8089 |
2019-11-11 02:48:39 |
| 92.118.222.248 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 88 - port: 83 proto: TCP cat: Misc Attack |
2019-11-11 02:47:06 |
| 89.248.162.209 | attackbots | Port Scan: TCP/8089 |
2019-11-11 02:51:02 |
| 198.108.67.44 | attackbotsspam | ET DROP Dshield Block Listed Source group 1 - port: 5600 proto: TCP cat: Misc Attack |
2019-11-11 02:37:06 |
| 185.175.93.45 | attackspambots | firewall-block, port(s): 34890/tcp, 55588/tcp |
2019-11-11 02:41:49 |
| 45.82.153.34 | attack | 11/10/2019-19:49:40.056823 45.82.153.34 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 44 |
2019-11-11 02:58:16 |
| 45.143.220.46 | attackbots | ET CINS Active Threat Intelligence Poor Reputation IP group 32 - port: 5060 proto: UDP cat: Misc Attack |
2019-11-11 02:31:33 |
| 198.108.67.59 | attackbotsspam | ET DROP Dshield Block Listed Source group 1 - port: 2082 proto: TCP cat: Misc Attack |
2019-11-11 02:36:15 |
| 185.176.27.166 | attack | slow and persistent scanner |
2019-11-11 02:39:50 |
| 185.142.236.35 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-11-11 02:43:29 |
| 36.48.159.58 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 20 - port: 1433 proto: TCP cat: Misc Attack |
2019-11-11 02:33:07 |
| 49.88.112.109 | attackbotsspam | 11/10/2019-11:40:30.762223 49.88.112.109 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 50 |
2019-11-11 02:30:34 |
| 81.22.45.219 | attackbots | 81.22.45.219 was recorded 11 times by 2 hosts attempting to connect to the following ports: 49172,11462,43237,18008,26448,51455,41668,10508,51028,20138,43773. Incident counter (4h, 24h, all-time): 11, 62, 62 |
2019-11-11 02:51:45 |
| 89.248.174.193 | attackbots | Multiport scan : 5 ports scanned 9200 9443 9600 10000 10001 |
2019-11-11 02:49:35 |