City: Pittsburgh
Region: Pennsylvania
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: University of Pittsburgh
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 136.142.72.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58993
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;136.142.72.221. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019052500 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat May 25 19:34:53 CST 2019
;; MSG SIZE rcvd: 118
Host 221.72.142.136.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 221.72.142.136.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.83.41.43 | attack | Aug 16 18:33:09 Host-KLAX-C amavis[12564]: (12564-19) Blocked SPAM {RejectedInternal}, AM.PDP-SOCK LOCAL [45.83.41.43] [45.83.41.43] <> -> |
2020-08-17 16:45:41 |
| 199.167.138.165 | attackbots | spam |
2020-08-17 16:53:58 |
| 199.167.138.145 | attackbots | spam |
2020-08-17 16:48:28 |
| 116.50.57.222 | attackspambots | spam |
2020-08-17 17:00:20 |
| 14.231.193.217 | attackspam | 1597636642 - 08/17/2020 05:57:22 Host: 14.231.193.217/14.231.193.217 Port: 445 TCP Blocked ... |
2020-08-17 16:23:38 |
| 51.91.102.99 | attackspambots | Aug 17 10:46:14 vps639187 sshd\[21738\]: Invalid user oracle2 from 51.91.102.99 port 47472 Aug 17 10:46:14 vps639187 sshd\[21738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.102.99 Aug 17 10:46:16 vps639187 sshd\[21738\]: Failed password for invalid user oracle2 from 51.91.102.99 port 47472 ssh2 ... |
2020-08-17 16:47:11 |
| 41.160.225.174 | attackbots | IP: 41.160.225.174
Ports affected
Simple Mail Transfer (25)
Abuse Confidence rating 27%
Found in DNSBL('s)
ASN Details
AS36937 Neotel Pty Ltd
South Africa (ZA)
CIDR 41.160.0.0/13
Log Date: 17/08/2020 7:24:15 AM UTC |
2020-08-17 16:34:01 |
| 213.6.8.29 | normal | Tank |
2020-08-17 16:57:15 |
| 212.129.59.36 | attack | 212.129.59.36 - - [17/Aug/2020:08:34:32 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.129.59.36 - - [17/Aug/2020:08:34:33 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.129.59.36 - - [17/Aug/2020:08:34:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-08-17 16:29:40 |
| 84.47.111.110 | attackspambots | IP: 84.47.111.110
Ports affected
Simple Mail Transfer (25)
Abuse Confidence rating 55%
Found in DNSBL('s)
ASN Details
AS6855 Slovak Telecom a. s.
Slovakia (SK)
CIDR 84.47.0.0/17
Log Date: 17/08/2020 7:53:20 AM UTC |
2020-08-17 16:52:37 |
| 180.76.172.178 | attack | Aug 17 10:45:46 lukav-desktop sshd\[12638\]: Invalid user luis from 180.76.172.178 Aug 17 10:45:46 lukav-desktop sshd\[12638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.172.178 Aug 17 10:45:48 lukav-desktop sshd\[12638\]: Failed password for invalid user luis from 180.76.172.178 port 41156 ssh2 Aug 17 10:47:22 lukav-desktop sshd\[13438\]: Invalid user tci from 180.76.172.178 Aug 17 10:47:23 lukav-desktop sshd\[13438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.172.178 |
2020-08-17 16:35:29 |
| 212.67.0.150 | attackspam | spam |
2020-08-17 16:37:55 |
| 199.167.138.153 | attackbots | spam |
2020-08-17 16:43:07 |
| 192.99.4.145 | attackbots | Aug 17 01:37:40 logopedia-1vcpu-1gb-nyc1-01 sshd[418178]: Failed password for root from 192.99.4.145 port 33466 ssh2 ... |
2020-08-17 16:29:59 |
| 199.167.138.146 | attack | spam |
2020-08-17 16:50:41 |