City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.16.139.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17672
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;116.16.139.159. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 07:05:25 CST 2022
;; MSG SIZE rcvd: 107Host 159.139.16.116.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 159.139.16.116.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 88.250.191.137 | attack | Automatic report - Port Scan Attack |
2019-11-29 00:58:27 |
| 5.180.184.55 | attackbots | Nov 28 17:40:19 v22018086721571380 sshd[27586]: Failed password for invalid user jenkins from 5.180.184.55 port 57532 ssh2 |
2019-11-29 01:07:26 |
| 106.13.112.117 | attackspam | Lines containing failures of 106.13.112.117 Nov 27 04:13:18 shared05 sshd[31551]: Invalid user Kauno from 106.13.112.117 port 54520 Nov 27 04:13:18 shared05 sshd[31551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.112.117 Nov 27 04:13:19 shared05 sshd[31551]: Failed password for invalid user Kauno from 106.13.112.117 port 54520 ssh2 Nov 27 04:13:19 shared05 sshd[31551]: Received disconnect from 106.13.112.117 port 54520:11: Bye Bye [preauth] Nov 27 04:13:19 shared05 sshd[31551]: Disconnected from invalid user Kauno 106.13.112.117 port 54520 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.112.117 |
2019-11-29 01:20:00 |
| 185.108.129.224 | attackbotsspam | 0,86-25/09 [bc01/m38] PostRequest-Spammer scoring: brussels |
2019-11-29 01:29:22 |
| 193.112.92.253 | attack | fail2ban honeypot |
2019-11-29 01:19:36 |
| 37.21.116.223 | attack | DATE:2019-11-28 15:35:55, IP:37.21.116.223, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc) |
2019-11-29 01:16:46 |
| 8.209.79.9 | attackspam | The IP has triggered Cloudflare WAF. CF-Ray: 53c64ea8997b648b | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: DE | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36 | CF_DC: FRA. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB). |
2019-11-29 01:32:49 |
| 218.31.33.34 | attackspam | Nov 28 22:00:19 gw1 sshd[32621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.31.33.34 Nov 28 22:00:21 gw1 sshd[32621]: Failed password for invalid user fittabile from 218.31.33.34 port 35406 ssh2 ... |
2019-11-29 01:07:50 |
| 46.38.144.146 | attackspambots | Nov 28 18:17:03 relay postfix/smtpd\[25158\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 18:17:32 relay postfix/smtpd\[20318\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 18:17:49 relay postfix/smtpd\[25158\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 18:18:18 relay postfix/smtpd\[20318\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 18:18:35 relay postfix/smtpd\[23375\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-11-29 01:22:46 |
| 51.83.73.160 | attack | Nov 28 05:58:21 web9 sshd\[22077\]: Invalid user Jarno from 51.83.73.160 Nov 28 05:58:21 web9 sshd\[22077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.73.160 Nov 28 05:58:23 web9 sshd\[22077\]: Failed password for invalid user Jarno from 51.83.73.160 port 57748 ssh2 Nov 28 06:01:53 web9 sshd\[22552\]: Invalid user aarti from 51.83.73.160 Nov 28 06:01:53 web9 sshd\[22552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.73.160 |
2019-11-29 00:55:18 |
| 150.109.63.147 | attackspam | Nov 28 05:47:46 tdfoods sshd\[32153\]: Invalid user kallis from 150.109.63.147 Nov 28 05:47:46 tdfoods sshd\[32153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.63.147 Nov 28 05:47:48 tdfoods sshd\[32153\]: Failed password for invalid user kallis from 150.109.63.147 port 58616 ssh2 Nov 28 05:51:33 tdfoods sshd\[32476\]: Invalid user huq from 150.109.63.147 Nov 28 05:51:33 tdfoods sshd\[32476\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.63.147 |
2019-11-29 01:05:34 |
| 124.156.116.72 | attackspam | Nov 25 03:32:33 xxx sshd[20138]: Invalid user apache from 124.156.116.72 Nov 25 03:32:35 xxx sshd[20138]: Failed password for invalid user apache from 124.156.116.72 port 41770 ssh2 Nov 25 04:11:37 xxx sshd[23513]: Failed password for r.r from 124.156.116.72 port 44508 ssh2 Nov 25 04:20:11 xxx sshd[23946]: Invalid user apache from 124.156.116.72 Nov 25 04:20:14 xxx sshd[23946]: Failed password for invalid user apache from 124.156.116.72 port 52750 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=124.156.116.72 |
2019-11-29 01:22:25 |
| 95.181.218.141 | attack | REQUESTED PAGE: /hsvc_gallery/main.php?g2_view=shutterfly.PrintPhotos&g2_itemId=1473&g2_returnUrl=http%3A%2F%2Fwww2.hsvc.co.nz%2Fhsvc_gallery%2Fmain.php%3Fg2_itemId%3D1473&g2_authToken=8fc6e13e2498 |
2019-11-29 00:57:22 |
| 27.4.102.21 | attackspambots | Invalid user ubnt from 27.4.102.21 port 51311 |
2019-11-29 01:31:34 |
| 188.235.161.75 | attack | Automatic report - Port Scan Attack |
2019-11-29 01:25:28 |