City: Nairobi
Region: Nairobi
Country: Kenya
Internet Service Provider: Airtel
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.6.109.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56150
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;102.6.109.121. IN A
;; AUTHORITY SECTION:
. 113 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2023102100 1800 900 604800 86400
;; Query time: 42 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 21 20:02:46 CST 2023
;; MSG SIZE rcvd: 106Host 121.109.6.102.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 121.109.6.102.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 51.52.225.176 | attackspambots | ET EXPLOIT Netgear DGN Remote Command Execution setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=busybox&curpath=/¤tsetting.htm=1 |
2019-11-19 02:50:56 |
| 45.55.222.162 | attackspambots | Nov 10 20:16:37 woltan sshd[1717]: Failed password for root from 45.55.222.162 port 40886 ssh2 |
2019-11-19 02:39:15 |
| 121.134.159.21 | attack | (sshd) Failed SSH login from 121.134.159.21 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Nov 18 16:29:10 elude sshd[23384]: Invalid user ident from 121.134.159.21 port 39752 Nov 18 16:29:13 elude sshd[23384]: Failed password for invalid user ident from 121.134.159.21 port 39752 ssh2 Nov 18 16:35:05 elude sshd[24248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=backup Nov 18 16:35:08 elude sshd[24248]: Failed password for backup from 121.134.159.21 port 57316 ssh2 Nov 18 16:39:03 elude sshd[24833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=sync |
2019-11-19 02:31:31 |
| 193.70.2.117 | attackspam | Nov 18 16:55:44 v22018076622670303 sshd\[22964\]: Invalid user zzzzzzz from 193.70.2.117 port 32832 Nov 18 16:55:44 v22018076622670303 sshd\[22964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.2.117 Nov 18 16:55:46 v22018076622670303 sshd\[22964\]: Failed password for invalid user zzzzzzz from 193.70.2.117 port 32832 ssh2 ... |
2019-11-19 02:31:14 |
| 222.186.3.249 | attackbots | Nov 18 13:34:58 ny01 sshd[30421]: Failed password for root from 222.186.3.249 port 40210 ssh2 Nov 18 13:37:02 ny01 sshd[30623]: Failed password for root from 222.186.3.249 port 33625 ssh2 |
2019-11-19 02:54:51 |
| 104.168.134.59 | attackbotsspam | Nov 18 18:42:04 marvibiene sshd[4024]: Invalid user server from 104.168.134.59 port 52410 Nov 18 18:42:04 marvibiene sshd[4024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.134.59 Nov 18 18:42:04 marvibiene sshd[4024]: Invalid user server from 104.168.134.59 port 52410 Nov 18 18:42:06 marvibiene sshd[4024]: Failed password for invalid user server from 104.168.134.59 port 52410 ssh2 ... |
2019-11-19 02:53:23 |
| 200.54.242.46 | attackbots | Nov 18 19:28:08 SilenceServices sshd[7175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.242.46 Nov 18 19:28:11 SilenceServices sshd[7175]: Failed password for invalid user claypoole from 200.54.242.46 port 56848 ssh2 Nov 18 19:32:30 SilenceServices sshd[9999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.242.46 |
2019-11-19 02:37:18 |
| 139.162.75.99 | attackbots | firewall-block, port(s): 8081/tcp |
2019-11-19 02:38:16 |
| 185.153.199.7 | attack | 11/18/2019-19:11:16.842932 185.153.199.7 Protocol: 6 ET SCAN MS Terminal Server Traffic on Non-standard Port |
2019-11-19 02:27:09 |
| 81.22.45.39 | attack | 11/18/2019-13:30:51.430744 81.22.45.39 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-11-19 02:37:03 |
| 103.249.100.48 | attack | 2019-11-18T16:33:26.914979abusebot-5.cloudsearch.cf sshd\[18306\]: Invalid user gdm from 103.249.100.48 port 36070 |
2019-11-19 02:30:28 |
| 129.211.45.88 | attackspambots | 2019-11-18T18:38:46.598613abusebot-7.cloudsearch.cf sshd\[18412\]: Invalid user melinda from 129.211.45.88 port 33010 |
2019-11-19 02:45:37 |
| 190.44.17.12 | attackbotsspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/190.44.17.12/ US - 1H : (294) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN22047 IP : 190.44.17.12 CIDR : 190.44.16.0/20 PREFIX COUNT : 389 UNIQUE IP COUNT : 1379584 ATTACKS DETECTED ASN22047 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 2 DateTime : 2019-11-18 15:49:44 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-19 03:00:23 |
| 112.220.116.228 | attack | detected by Fail2Ban |
2019-11-19 02:54:04 |
| 194.61.24.38 | attackbots | Connection by 194.61.24.38 on port: 3023 got caught by honeypot at 11/18/2019 2:59:50 PM |
2019-11-19 02:52:24 |