City: unknown
Region: unknown
Country: Italy
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.149.139.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20824
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;93.149.139.68. IN A
;; AUTHORITY SECTION:
. 164 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2021122900 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 29 20:08:11 CST 2021
;; MSG SIZE rcvd: 10668.139.149.93.in-addr.arpa domain name pointer net-93-149-139-68.cust.vodafonedsl.it.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
68.139.149.93.in-addr.arpa name = net-93-149-139-68.cust.vodafonedsl.it.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 128.71.228.56 | attackspam | Harvester |
2020-05-09 07:31:02 |
| 111.93.235.74 | attackbotsspam | May 8 21:53:15 vlre-nyc-1 sshd\[15711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.235.74 user=root May 8 21:53:17 vlre-nyc-1 sshd\[15711\]: Failed password for root from 111.93.235.74 port 3791 ssh2 May 8 21:58:03 vlre-nyc-1 sshd\[15812\]: Invalid user angela from 111.93.235.74 May 8 21:58:03 vlre-nyc-1 sshd\[15812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.235.74 May 8 21:58:06 vlre-nyc-1 sshd\[15812\]: Failed password for invalid user angela from 111.93.235.74 port 10060 ssh2 ... |
2020-05-09 07:11:07 |
| 106.13.126.174 | attackspam | May 8 20:38:23 vlre-nyc-1 sshd\[14760\]: Invalid user cassandra from 106.13.126.174 May 8 20:38:23 vlre-nyc-1 sshd\[14760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.126.174 May 8 20:38:25 vlre-nyc-1 sshd\[14760\]: Failed password for invalid user cassandra from 106.13.126.174 port 52234 ssh2 May 8 20:47:43 vlre-nyc-1 sshd\[14862\]: Invalid user ec2-user from 106.13.126.174 May 8 20:47:43 vlre-nyc-1 sshd\[14862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.126.174 ... |
2020-05-09 07:29:19 |
| 217.199.161.244 | attackspam | Automatic report - XMLRPC Attack |
2020-05-09 07:21:23 |
| 61.177.144.130 | attackspam | SSH Invalid Login |
2020-05-09 07:14:36 |
| 68.183.134.134 | attack | 68.183.134.134 - - \[08/May/2020:22:47:43 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 68.183.134.134 - - \[08/May/2020:22:47:45 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 68.183.134.134 - - \[08/May/2020:22:47:51 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-05-09 07:28:22 |
| 141.98.81.108 | attackbotsspam | May 9 01:43:12 vps647732 sshd[7061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.108 May 9 01:43:15 vps647732 sshd[7061]: Failed password for invalid user admin from 141.98.81.108 port 33047 ssh2 ... |
2020-05-09 07:43:50 |
| 14.215.165.133 | attackspambots | May 8 19:30:33 mail sshd\[53102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.215.165.133 user=root ... |
2020-05-09 07:37:37 |
| 181.129.161.28 | attack | May 9 09:23:08 localhost sshd[1460636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.129.161.28 user=root May 9 09:23:10 localhost sshd[1460636]: Failed password for root from 181.129.161.28 port 42904 ssh2 ... |
2020-05-09 07:41:05 |
| 92.118.37.95 | attackspam | [MK-VM3] Blocked by UFW |
2020-05-09 07:06:34 |
| 5.58.98.253 | attack | Automatic report - Port Scan Attack |
2020-05-09 07:27:18 |
| 106.12.213.184 | attack | May 9 00:45:17 eventyay sshd[4726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.213.184 May 9 00:45:19 eventyay sshd[4726]: Failed password for invalid user drew from 106.12.213.184 port 49968 ssh2 May 9 00:48:30 eventyay sshd[4792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.213.184 ... |
2020-05-09 07:22:24 |
| 178.62.21.80 | attack | SSH Invalid Login |
2020-05-09 07:16:52 |
| 175.0.34.138 | attackbotsspam | 05/08/2020-16:48:14.436026 175.0.34.138 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433 |
2020-05-09 07:13:01 |
| 54.36.150.159 | attack | [Sat May 09 03:48:17.034085 2020] [:error] [pid 6964:tid 139913166591744] [client 54.36.150.159:36178] [client 54.36.150.159] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "AhrefsBot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "183"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: AhrefsBot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; ahrefsbot/6.1; +http://ahrefs.com/robot/)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "OWASP_CRS/AUTOMATION/CRAWLER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil-pegawai/1039-klimatologi/agroklimatologi/kalender-tanam-katam-terpadu/kalender-t ... |
2020-05-09 07:10:21 |