City: unknown
Region: unknown
Country: Sweden
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 92.39.218.17 | attack | xmlrpc attack |
2020-05-05 05:39:32 |
| 92.39.241.221 | attack | Unauthorized connection attempt from IP address 92.39.241.221 on Port 445(SMB) |
2020-05-04 20:45:24 |
| 92.39.217.54 | attackspam | port scan and connect, tcp 80 (http) |
2020-03-10 17:48:49 |
| 92.39.21.22 | attack | Automatic report - Port Scan Attack |
2020-03-10 12:32:33 |
| 92.39.241.198 | attackbots | Virus infected- Heuristics.OLE2.ContainsMacros Discarded Inbound 185.65.202.177 relayed to 92.39.241.198 |
2020-03-05 20:30:07 |
| 92.39.241.198 | attack | Brute force attempt |
2020-02-13 19:36:20 |
| 92.39.241.221 | attackbots | Port Scan: TCP/445 |
2019-09-25 07:19:09 |
| 92.39.21.98 | attackspambots | Automatic report - Port Scan Attack |
2019-09-06 20:20:40 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.39.2.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3222
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;92.39.2.18. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012201 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 08:18:05 CST 2025
;; MSG SIZE rcvd: 103Host 18.2.39.92.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 18.2.39.92.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 51.38.57.78 | attack | $f2bV_matches |
2020-02-13 16:36:46 |
| 196.11.231.220 | attackspam | 2020-02-12T21:51:38.784888-07:00 suse-nuc sshd[26258]: Invalid user hyangga from 196.11.231.220 port 34741 ... |
2020-02-13 16:10:37 |
| 61.216.179.127 | attack | Invalid user rabbit from 61.216.179.127 port 58088 |
2020-02-13 16:21:20 |
| 218.78.166.161 | attack | Cluster member 10.133.13.87 (-) said, DENY 218.78.166.161, Reason:[*Port Scan* detected from 218.78.166.161 (CN/China/161.166.78.218.dial.xw.sh.dynamic.163data.com.cn). 7 hits in the last 56 seconds] |
2020-02-13 16:20:14 |
| 27.72.59.160 | attackspambots | 1581569507 - 02/13/2020 05:51:47 Host: 27.72.59.160/27.72.59.160 Port: 445 TCP Blocked |
2020-02-13 16:03:43 |
| 80.82.77.86 | attackspam | firewall-block, port(s): 626/udp, 2302/udp |
2020-02-13 16:43:59 |
| 139.219.0.29 | attackspambots | $f2bV_matches |
2020-02-13 16:08:41 |
| 41.139.135.10 | attackspambots | 1581576924 - 02/13/2020 07:55:24 Host: 41.139.135.10/41.139.135.10 Port: 445 TCP Blocked |
2020-02-13 16:18:39 |
| 122.4.241.6 | attackspambots | Feb 13 05:51:37 ks10 sshd[131193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.4.241.6 Feb 13 05:51:39 ks10 sshd[131193]: Failed password for invalid user santorineos from 122.4.241.6 port 45749 ssh2 ... |
2020-02-13 16:11:26 |
| 182.61.104.246 | attack | $lgm |
2020-02-13 16:34:34 |
| 96.41.163.7 | attackbotsspam | Automatic report - Port Scan Attack |
2020-02-13 16:26:14 |
| 180.191.135.117 | attackbotsspam | Wordpress login attempts |
2020-02-13 16:07:17 |
| 222.186.190.92 | attack | Feb 13 09:01:23 SilenceServices sshd[22069]: Failed password for root from 222.186.190.92 port 41174 ssh2 Feb 13 09:01:26 SilenceServices sshd[22069]: Failed password for root from 222.186.190.92 port 41174 ssh2 Feb 13 09:01:36 SilenceServices sshd[22069]: error: maximum authentication attempts exceeded for root from 222.186.190.92 port 41174 ssh2 [preauth] |
2020-02-13 16:02:30 |
| 95.216.100.229 | attackbotsspam | [Thu Feb 13 11:51:00.340319 2020] [:error] [pid 29304:tid 140024279488256] [client 95.216.100.229:48400] [client 95.216.100.229] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/buku"] [unique_id "XkTVtDQXVcBnYDbj8RmbXgAAARQ"]
... |
2020-02-13 16:37:06 |
| 177.191.150.73 | attack | Automatic report - Port Scan Attack |
2020-02-13 16:36:02 |