City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.209.95.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50858
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;137.209.95.148. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025031201 1800 900 604800 86400
;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 13 13:12:19 CST 2025
;; MSG SIZE rcvd: 107Host 148.95.209.137.in-addr.arpa not found: 2(SERVFAIL)
server can't find 137.209.95.148.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 54.166.58.241 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/54.166.58.241/ US - 1H : (93) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN14618 IP : 54.166.58.241 CIDR : 54.166.0.0/15 PREFIX COUNT : 433 UNIQUE IP COUNT : 19526400 ATTACKS DETECTED ASN14618 : 1H - 1 3H - 2 6H - 5 12H - 15 24H - 35 DateTime : 2020-03-05 05:51:21 INFO : DNS DENIED Scan Detected and Blocked by ADMIN - data recovery |
2020-03-05 15:35:07 |
| 65.18.115.245 | attackbotsspam | Email rejected due to spam filtering |
2020-03-05 15:09:42 |
| 222.186.180.6 | attack | Multiple SSH login attempts. |
2020-03-05 15:24:27 |
| 106.12.79.145 | attack | Mar 4 20:03:30 wbs sshd\[27792\]: Invalid user deploy from 106.12.79.145 Mar 4 20:03:30 wbs sshd\[27792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.79.145 Mar 4 20:03:31 wbs sshd\[27792\]: Failed password for invalid user deploy from 106.12.79.145 port 46306 ssh2 Mar 4 20:13:11 wbs sshd\[28716\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.79.145 user=root Mar 4 20:13:13 wbs sshd\[28716\]: Failed password for root from 106.12.79.145 port 55196 ssh2 |
2020-03-05 14:59:08 |
| 200.50.67.105 | attackspam | Mar 5 08:02:08 pornomens sshd\[19114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.50.67.105 user=bin Mar 5 08:02:09 pornomens sshd\[19114\]: Failed password for bin from 200.50.67.105 port 56196 ssh2 Mar 5 08:12:50 pornomens sshd\[19176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.50.67.105 user=root ... |
2020-03-05 15:34:46 |
| 203.189.149.85 | attackbotsspam | Email rejected due to spam filtering |
2020-03-05 15:21:25 |
| 35.180.100.122 | attack | Mar 2 15:23:07 xxxxxxx7446550 sshd[19811]: Invalid user gfbt from 35.180.100.122 Mar 2 15:23:07 xxxxxxx7446550 sshd[19811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-35-180-100-122.eu-west-3.compute.amazonaws.com Mar 2 15:23:09 xxxxxxx7446550 sshd[19811]: Failed password for invalid user gfbt from 35.180.100.122 port 37656 ssh2 Mar 2 15:23:09 xxxxxxx7446550 sshd[19812]: Received disconnect from 35.180.100.122: 11: Normal Shutdown Mar 2 15:25:55 xxxxxxx7446550 sshd[20373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-35-180-100-122.eu-west-3.compute.amazonaws.com user=test Mar 2 15:25:57 xxxxxxx7446550 sshd[20373]: Failed password for test from 35.180.100.122 port 35424 ssh2 Mar 2 15:25:57 xxxxxxx7446550 sshd[20374]: Received disconnect from 35.180.100.122: 11: Normal Shutdown Mar 2 15:28:55 xxxxxxx7446550 sshd[21214]: Invalid user www from 35.180.100.122 Mar 2 15:........ ------------------------------- |
2020-03-05 15:39:49 |
| 192.241.208.250 | attack | Input Traffic from this IP, but critial abuseconfidencescore |
2020-03-05 15:14:19 |
| 218.92.0.201 | attackspam | Mar 5 07:46:20 silence02 sshd[19361]: Failed password for root from 218.92.0.201 port 32577 ssh2 Mar 5 07:46:23 silence02 sshd[19361]: Failed password for root from 218.92.0.201 port 32577 ssh2 Mar 5 07:46:25 silence02 sshd[19361]: Failed password for root from 218.92.0.201 port 32577 ssh2 |
2020-03-05 15:05:52 |
| 222.186.52.139 | attack | 05.03.2020 07:23:54 SSH access blocked by firewall |
2020-03-05 15:27:53 |
| 78.128.113.93 | attackbotsspam | Mar 5 08:07:21 relay postfix/smtpd\[810\]: warning: unknown\[78.128.113.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 08:07:29 relay postfix/smtpd\[27376\]: warning: unknown\[78.128.113.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 08:13:06 relay postfix/smtpd\[810\]: warning: unknown\[78.128.113.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 08:13:14 relay postfix/smtpd\[24034\]: warning: unknown\[78.128.113.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 08:14:51 relay postfix/smtpd\[27376\]: warning: unknown\[78.128.113.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-03-05 15:20:22 |
| 139.255.87.213 | attackspambots | Mar 5 11:49:35 gw1 sshd[23094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.255.87.213 Mar 5 11:49:36 gw1 sshd[23094]: Failed password for invalid user amandabackup from 139.255.87.213 port 59874 ssh2 ... |
2020-03-05 14:58:46 |
| 212.133.243.104 | attackspam | DATE:2020-03-05 05:48:50, IP:212.133.243.104, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-03-05 15:27:06 |
| 191.125.132.220 | attackbots | Email rejected due to spam filtering |
2020-03-05 15:14:39 |
| 113.173.97.91 | attackspambots | Postfix SASL Login attempt. IP autobanned |
2020-03-05 15:29:17 |