City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.30.217.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56963
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;137.30.217.254. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012400 1800 900 604800 86400
;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 18:22:42 CST 2025
;; MSG SIZE rcvd: 107Host 254.217.30.137.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 254.217.30.137.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 27.100.26.45 | attack | 20/1/12@23:50:16: FAIL: Alarm-Network address from=27.100.26.45 ... |
2020-01-13 16:40:45 |
| 138.0.60.5 | attack | Unauthorized connection attempt detected from IP address 138.0.60.5 to port 2220 [J] |
2020-01-13 16:31:35 |
| 188.38.221.185 | attackspam | Jan 13 07:14:00 vmanager6029 sshd\[19171\]: Invalid user andi from 188.38.221.185 port 57174 Jan 13 07:14:00 vmanager6029 sshd\[19171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.38.221.185 Jan 13 07:14:02 vmanager6029 sshd\[19171\]: Failed password for invalid user andi from 188.38.221.185 port 57174 ssh2 |
2020-01-13 16:29:48 |
| 106.13.49.133 | attack | $f2bV_matches |
2020-01-13 16:25:29 |
| 185.39.10.14 | attackbots | Jan 13 08:43:31 h2177944 kernel: \[2099864.974494\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.14 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=58901 PROTO=TCP SPT=58608 DPT=4433 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 13 08:43:31 h2177944 kernel: \[2099864.974508\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.14 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=58901 PROTO=TCP SPT=58608 DPT=4433 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 13 09:23:44 h2177944 kernel: \[2102277.036999\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.14 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=410 PROTO=TCP SPT=58608 DPT=4658 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 13 09:23:44 h2177944 kernel: \[2102277.037012\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.14 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=410 PROTO=TCP SPT=58608 DPT=4658 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 13 09:28:49 h2177944 kernel: \[2102581.856047\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.14 DST=85.214.117.9 LEN=40 T |
2020-01-13 16:41:19 |
| 180.180.8.95 | attack | Honeypot attack, port: 445, PTR: node-1nj.pool-180-180.dynamic.totinternet.net. |
2020-01-13 16:25:15 |
| 5.62.159.86 | attackbotsspam | B: zzZZzz blocked content access |
2020-01-13 16:34:34 |
| 91.54.44.199 | attack | Total attacks: 2 |
2020-01-13 16:24:42 |
| 190.80.13.3 | attackbots | Honeypot attack, port: 445, PTR: nameless.gtt.co.gy. |
2020-01-13 16:29:32 |
| 51.158.24.203 | attackspam | 01/13/2020-02:45:13.316283 51.158.24.203 Protocol: 17 ATTACK [PTSecurity] Cisco ASA and Cisco FTD possible DoS (CVE-2018-15454) |
2020-01-13 16:47:36 |
| 104.244.73.31 | attack | ZTE Router Exploit Scanner |
2020-01-13 16:47:15 |
| 68.183.115.176 | attack | Unauthorized connection attempt detected from IP address 68.183.115.176 to port 2220 [J] |
2020-01-13 16:33:00 |
| 27.73.32.59 | attackspam | Honeypot attack, port: 445, PTR: localhost. |
2020-01-13 16:16:22 |
| 14.140.210.30 | attackspambots | Honeypot attack, port: 445, PTR: 14.140.210.30.static-Delhi-vsnl.net.in. |
2020-01-13 16:44:46 |
| 14.174.37.39 | attack | Unauthorized connection attempt from IP address 14.174.37.39 on Port 445(SMB) |
2020-01-13 16:52:01 |