City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.164.211.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42982
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;116.164.211.39. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020602 1800 900 604800 86400
;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 07:50:11 CST 2025
;; MSG SIZE rcvd: 107Host 39.211.164.116.in-addr.arpa not found: 2(SERVFAIL);; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 39.211.164.116.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 150.242.255.103 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/150.242.255.103/ IN - 1H : (30) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IN NAME ASN : ASN133469 IP : 150.242.255.103 CIDR : 150.242.255.0/24 PREFIX COUNT : 18 UNIQUE IP COUNT : 4608 WYKRYTE ATAKI Z ASN133469 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery |
2019-09-17 02:15:41 |
| 185.153.197.11 | normal | Terraria Server v1.3.5.3 Listening on port 7777 Type 'help' for a list of commands. : : : 185.153.197.71:12455 is connecting... 185.153.197.71:12455 is connecting... 185.153.197.71:13444 is connecting... 185.153.197.71:13444 is connecting... Exception normal: Tried to send data to a client after losing connection Exception normal: Tried to send data to a client after losing connection 185.153.197.71:19011 is connecting... 185.153.197.71:19011 is connecting... Exception normal: Tried to send data to a client after losing connection |
2019-09-17 02:20:49 |
| 206.189.122.133 | attack | Sep 16 20:08:15 vps691689 sshd[6318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.122.133 Sep 16 20:08:18 vps691689 sshd[6318]: Failed password for invalid user ciserve from 206.189.122.133 port 54910 ssh2 Sep 16 20:12:23 vps691689 sshd[6367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.122.133 ... |
2019-09-17 02:17:50 |
| 49.88.112.90 | attack | 2019-09-17T01:21:43.159117enmeeting.mahidol.ac.th sshd\[27015\]: User root from 49.88.112.90 not allowed because not listed in AllowUsers 2019-09-17T01:21:43.559871enmeeting.mahidol.ac.th sshd\[27015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.90 user=root 2019-09-17T01:21:46.301905enmeeting.mahidol.ac.th sshd\[27015\]: Failed password for invalid user root from 49.88.112.90 port 16948 ssh2 ... |
2019-09-17 02:33:16 |
| 192.207.62.237 | attackspam | 192.207.62.237 has been banned for [spam] ... |
2019-09-17 02:34:12 |
| 31.204.251.100 | attackbots | Hits on port : 445 |
2019-09-17 02:28:22 |
| 185.153.197.11 | normal | Terraria Server v1.3.5.3 Listening on port 7777 Type 'help' for a list of commands. : 185.153.197.71:12455 is connecting... 185.153.197.71:12455 is connecting... 185.153.197.71:13444 is connecting... 185.153.197.71:13444 is connecting... Exception normal: Tried to send data to a client after losing connection Exception normal: Tried to send data to a client after losing connection 185.153.197.71:19011 is connecting... 185.153.197.71:19011 is connecting... Exception normal: Tried to send data to a client after losing connection |
2019-09-17 02:21:16 |
| 43.245.185.70 | attack | $f2bV_matches |
2019-09-17 01:58:25 |
| 46.229.168.138 | attack | 46.229.168.138 - - \[16/Sep/2019:18:28:24 +0200\] "GET /index.php\?hidelinks=1\&limit=250\&title=Sp%C3%A9cial%3APages_li%C3%A9es%2FAide%3ALiens_externes HTTP/1.1" 404 4259 "-" "Mozilla/5.0 \(compatible\; SemrushBot/6\~bl\; +http://www.semrush.com/bot.html\)" 46.229.168.138 - - \[16/Sep/2019:18:28:51 +0200\] "GET /index.php\?printable=yes\&title=Sp%C3%A9cial%3APages_li%C3%A9es%2FParray HTTP/1.1" 404 4168 "-" "Mozilla/5.0 \(compatible\; SemrushBot/6\~bl\; +http://www.semrush.com/bot.html\)" |
2019-09-17 02:05:45 |
| 72.11.140.178 | attackbotsspam | 72.11.140.178 - - [16/Sep/2019:04:18:19 -0400] "GET /?page=products&action=view&manufacturerID=102&productID=4346C&linkID=5512999999.1%20union%20select%20unhex(hex(version()))%20--%20and%201%3D1 HTTP/1.1" 200 68724 "-" "-" 72.11.140.178 - - [16/Sep/2019:04:18:20 -0400] "GET /?page=products&action=view&manufacturerID=102&productID=4346C&linkID=551299999%27%20union%20select%20unhex(hex(version()))%20--%20%27x%27=%27x HTTP/1.1" 200 68724 "-" "-" ... |
2019-09-17 02:11:50 |
| 106.13.73.76 | attackspambots | ssh failed login |
2019-09-17 01:57:50 |
| 177.23.184.99 | attackbotsspam | Sep 16 13:06:34 rpi sshd[3700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.23.184.99 Sep 16 13:06:35 rpi sshd[3700]: Failed password for invalid user bruno from 177.23.184.99 port 39222 ssh2 |
2019-09-17 02:08:43 |
| 151.236.53.126 | attackspambots | Sep 16 12:51:10 unicornsoft sshd\[3359\]: Invalid user trendimsa1.0 from 151.236.53.126 Sep 16 12:51:10 unicornsoft sshd\[3359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.236.53.126 Sep 16 12:51:13 unicornsoft sshd\[3359\]: Failed password for invalid user trendimsa1.0 from 151.236.53.126 port 54924 ssh2 |
2019-09-17 02:04:23 |
| 117.50.99.93 | attackspam | 2019-09-16 13:30:36,245 fail2ban.actions: WARNING [ssh] Ban 117.50.99.93 |
2019-09-17 02:04:52 |
| 167.71.203.148 | attack | Sep 16 20:03:39 core sshd[28992]: Invalid user Salomo from 167.71.203.148 port 44852 Sep 16 20:03:40 core sshd[28992]: Failed password for invalid user Salomo from 167.71.203.148 port 44852 ssh2 ... |
2019-09-17 02:10:11 |