City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.161.104.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25967
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;131.161.104.66. IN A
;; AUTHORITY SECTION:
. 96 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400
;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:29:25 CST 2022
;; MSG SIZE rcvd: 10766.104.161.131.in-addr.arpa domain name pointer 131-161-104-66.rev.netcorporativa.com.br.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
66.104.161.131.in-addr.arpa name = 131-161-104-66.rev.netcorporativa.com.br.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 202.92.200.118 | attack | Unauthorized connection attempt from IP address 202.92.200.118 on Port 25(SMTP) |
2019-07-21 05:28:33 |
| 1.6.123.91 | attack | Unauthorized connection attempt from IP address 1.6.123.91 on Port 445(SMB) |
2019-07-21 05:40:00 |
| 188.166.232.14 | attackspam | Jul 20 23:26:25 vps647732 sshd[10369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.232.14 Jul 20 23:26:26 vps647732 sshd[10369]: Failed password for invalid user transfer from 188.166.232.14 port 57502 ssh2 ... |
2019-07-21 05:29:13 |
| 47.247.231.68 | attackspam | Automatic report - Port Scan Attack |
2019-07-21 05:16:33 |
| 220.133.115.37 | attackspambots | 2019-07-21T02:59:32.431930enmeeting.mahidol.ac.th sshd\[29111\]: Invalid user ftpadmin from 220.133.115.37 port 36496 2019-07-21T02:59:32.445792enmeeting.mahidol.ac.th sshd\[29111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-133-115-37.hinet-ip.hinet.net 2019-07-21T02:59:35.165951enmeeting.mahidol.ac.th sshd\[29111\]: Failed password for invalid user ftpadmin from 220.133.115.37 port 36496 ssh2 ... |
2019-07-21 04:51:07 |
| 35.195.238.142 | attack | Automatic report - Banned IP Access |
2019-07-21 05:15:46 |
| 92.45.114.164 | attack | Unauthorized connection attempt from IP address 92.45.114.164 on Port 445(SMB) |
2019-07-21 05:37:11 |
| 188.163.99.74 | attackbotsspam | Unauthorized connection attempt from IP address 188.163.99.74 on Port 445(SMB) |
2019-07-21 05:23:55 |
| 197.253.14.6 | attack | ssh default account attempted login |
2019-07-21 05:10:42 |
| 185.143.221.61 | attackspam | Jul 20 22:06:24 h2177944 kernel: \[1977306.744980\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.221.61 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=40167 PROTO=TCP SPT=59317 DPT=9463 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 20 22:18:56 h2177944 kernel: \[1978059.101388\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.221.61 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=28960 PROTO=TCP SPT=59317 DPT=9711 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 20 22:54:29 h2177944 kernel: \[1980191.268600\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.221.61 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=57695 PROTO=TCP SPT=59317 DPT=9460 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 20 23:00:34 h2177944 kernel: \[1980556.049212\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.221.61 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=18775 PROTO=TCP SPT=59317 DPT=9550 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 20 23:05:54 h2177944 kernel: \[1980876.738701\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.221.61 DST=85.214. |
2019-07-21 05:06:53 |
| 185.220.101.46 | attackspam | Reported by AbuseIPDB proxy server. |
2019-07-21 05:24:52 |
| 185.153.180.64 | attackspambots | HTTP SQL Injection Attempt |
2019-07-21 05:08:23 |
| 201.114.244.45 | attackspam | Jul 20 15:38:20 aat-srv002 sshd[16864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.114.244.45 Jul 20 15:38:23 aat-srv002 sshd[16864]: Failed password for invalid user xray from 201.114.244.45 port 34912 ssh2 Jul 20 15:46:28 aat-srv002 sshd[16981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.114.244.45 Jul 20 15:46:30 aat-srv002 sshd[16981]: Failed password for invalid user jenkins from 201.114.244.45 port 59236 ssh2 ... |
2019-07-21 04:55:41 |
| 188.128.39.131 | attack | Jul 20 21:52:00 microserver sshd[59611]: Invalid user user from 188.128.39.131 port 55438 Jul 20 21:52:00 microserver sshd[59611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.131 Jul 20 21:52:02 microserver sshd[59611]: Failed password for invalid user user from 188.128.39.131 port 55438 ssh2 Jul 20 21:56:52 microserver sshd[8120]: Invalid user git from 188.128.39.131 port 52176 Jul 20 21:56:52 microserver sshd[8120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.131 Jul 20 22:11:18 microserver sshd[50056]: Invalid user steam from 188.128.39.131 port 42380 Jul 20 22:11:18 microserver sshd[50056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.131 Jul 20 22:11:21 microserver sshd[50056]: Failed password for invalid user steam from 188.128.39.131 port 42380 ssh2 Jul 20 22:16:17 microserver sshd[42072]: Invalid user avorion from 188.128.39.131 port 39114 |
2019-07-21 04:58:03 |
| 37.139.0.226 | attackbotsspam | Jul 20 20:45:21 Ubuntu-1404-trusty-64-minimal sshd\[28382\]: Invalid user teacher from 37.139.0.226 Jul 20 20:45:21 Ubuntu-1404-trusty-64-minimal sshd\[28382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.0.226 Jul 20 20:45:23 Ubuntu-1404-trusty-64-minimal sshd\[28382\]: Failed password for invalid user teacher from 37.139.0.226 port 46316 ssh2 Jul 20 20:57:04 Ubuntu-1404-trusty-64-minimal sshd\[1531\]: Invalid user admin from 37.139.0.226 Jul 20 20:57:04 Ubuntu-1404-trusty-64-minimal sshd\[1531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.0.226 |
2019-07-21 05:11:57 |