City: Basel
Region: Basel-City
Country: Switzerland
Internet Service Provider: BSE Software GmbH
Hostname: unknown
Organization: BSE Software GmbH
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | Honeypot attack, port: 445, PTR: ds1789744.dedicated.solnet.ch. |
2020-01-15 14:24:29 |
| attackspam | SMB Server BruteForce Attack |
2019-09-11 09:55:22 |
| attackspambots | 445/tcp 445/tcp 445/tcp... [2019-06-02/07-19]5pkt,1pt.(tcp) |
2019-07-19 22:40:50 |
| attackbots | 445/tcp 445/tcp 445/tcp... [2019-05-04/07-04]7pkt,1pt.(tcp) |
2019-07-04 16:12:17 |
| attack | SMB Server BruteForce Attack |
2019-07-03 22:00:43 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 82.220.2.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55443
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;82.220.2.159. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019040700 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 08 00:57:38 +08 2019
;; MSG SIZE rcvd: 116
159.2.220.82.in-addr.arpa domain name pointer ds1789744.dedicated.solnet.ch.
Server: 67.207.67.3
Address: 67.207.67.3#53
Non-authoritative answer:
159.2.220.82.in-addr.arpa name = ds1789744.dedicated.solnet.ch.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.116.86.84 | attackbots | [portscan] tcp/23 [TELNET] in sorbs:'listed [spam]' in spfbl.net:'listed' *(RWIN=14600)(10151156) |
2019-10-16 00:56:49 |
| 51.15.87.57 | attackspam | [MySQL inject/portscan] tcp/3306 *(RWIN=65535)(10151156) |
2019-10-16 00:25:27 |
| 191.243.38.219 | attack | Honeypot attack, port: 445, PTR: residencial-191-243-38-219.maxriomafra.net.br. |
2019-10-16 00:48:03 |
| 116.52.9.220 | attack | [portscan] tcp/22 [SSH] in spfbl.net:'listed' *(RWIN=3442)(10151156) |
2019-10-16 00:54:40 |
| 198.108.66.254 | attack | [portscan] tcp/21 [FTP] in spfbl.net:'listed' *(RWIN=65535)(10151156) |
2019-10-16 00:47:47 |
| 187.209.37.169 | attackspam | [portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=8192)(10151156) |
2019-10-16 00:49:04 |
| 43.252.230.148 | attackspambots | [portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=1024)(10151156) |
2019-10-16 00:43:38 |
| 62.138.23.23 | attackspambots | [portscan] tcp/3389 [MS RDP] *(RWIN=1024)(10151156) |
2019-10-16 00:41:10 |
| 113.2.112.58 | attackspambots | [portscan] tcp/23 [TELNET] in SpamCop:'listed' in spfbl.net:'listed' in gbudb.net:'listed' *(RWIN=52459)(10151156) |
2019-10-16 00:34:15 |
| 222.223.160.18 | attack | [portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=1024)(10151156) |
2019-10-16 00:46:05 |
| 49.207.183.59 | attackspam | Automatic report - Port Scan Attack |
2019-10-16 00:42:19 |
| 198.108.67.99 | attack | 10/15/2019-09:56:50.497604 198.108.67.99 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-10-16 00:29:28 |
| 171.221.227.157 | attack | [portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=1024)(10151156) |
2019-10-16 00:31:44 |
| 190.134.179.183 | attackspam | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=43281)(10151156) |
2019-10-16 00:48:40 |
| 194.204.123.123 | attackspambots | [portscan] tcp/1433 [MsSQL] *(RWIN=1024)(10151156) |
2019-10-16 00:21:20 |