City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.2.167.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45311
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.2.167.16. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025013001 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 10:12:50 CST 2025
;; MSG SIZE rcvd: 105
Host 16.167.2.139.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 16.167.2.139.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.248.57.44 | attackspam | Invalid user elias from 104.248.57.44 port 44796 |
2020-09-14 13:09:14 |
| 51.77.34.244 | attackbots | 2020-09-14T08:07:52.304916snf-827550 sshd[25218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip244.ip-51-77-34.eu user=root 2020-09-14T08:07:54.143579snf-827550 sshd[25218]: Failed password for root from 51.77.34.244 port 50104 ssh2 2020-09-14T08:11:55.368877snf-827550 sshd[25264]: Invalid user constantina from 51.77.34.244 port 34382 ... |
2020-09-14 13:29:14 |
| 68.183.64.174 | attack | Automatic report - Banned IP Access |
2020-09-14 13:23:50 |
| 149.202.164.82 | attackspambots | Brute force attempt |
2020-09-14 13:03:52 |
| 5.188.206.34 | attackbotsspam | Sep 14 06:32:17 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=5.188.206.34 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=10071 PROTO=TCP SPT=46733 DPT=34370 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 06:34:20 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=5.188.206.34 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=58149 PROTO=TCP SPT=46733 DPT=56469 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 06:35:33 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=5.188.206.34 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=31848 PROTO=TCP SPT=46733 DPT=51848 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 06:36:07 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=5.188.206.34 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=5845 PROTO=TCP SPT=46733 DPT=59446 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 06:39:29 *hidden* kern ... |
2020-09-14 13:17:28 |
| 212.237.42.236 | attackspambots | Invalid user admin from 212.237.42.236 port 56868 |
2020-09-14 12:59:28 |
| 118.89.231.109 | attackbotsspam | Sep 14 05:15:00 localhost sshd[48267]: Invalid user R00tAdm!n123 from 118.89.231.109 port 57024 Sep 14 05:15:00 localhost sshd[48267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.231.109 Sep 14 05:15:00 localhost sshd[48267]: Invalid user R00tAdm!n123 from 118.89.231.109 port 57024 Sep 14 05:15:02 localhost sshd[48267]: Failed password for invalid user R00tAdm!n123 from 118.89.231.109 port 57024 ssh2 Sep 14 05:20:46 localhost sshd[48796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.231.109 user=root Sep 14 05:20:48 localhost sshd[48796]: Failed password for root from 118.89.231.109 port 60775 ssh2 ... |
2020-09-14 13:33:18 |
| 204.17.56.42 | attackspambots | Sep 13 18:58:28 funkybot sshd[31242]: Failed password for root from 204.17.56.42 port 47440 ssh2 Sep 13 18:58:33 funkybot sshd[31242]: Failed password for root from 204.17.56.42 port 47440 ssh2 ... |
2020-09-14 13:16:01 |
| 79.0.147.19 | attackbotsspam | Telnet Server BruteForce Attack |
2020-09-14 12:57:38 |
| 168.63.212.45 | attackspam | Detected by ModSecurity. Host header is an IP address, Request URI: //ip-redirect/ |
2020-09-14 13:10:57 |
| 203.192.219.7 | attack | Invalid user ali from 203.192.219.7 port 33536 |
2020-09-14 13:11:12 |
| 182.61.3.119 | attack | Sep 14 06:33:55 vpn01 sshd[28188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.3.119 Sep 14 06:33:57 vpn01 sshd[28188]: Failed password for invalid user nicole from 182.61.3.119 port 46488 ssh2 ... |
2020-09-14 13:26:54 |
| 193.169.252.217 | attack | Icarus honeypot on github |
2020-09-14 13:17:48 |
| 212.145.192.205 | attackbotsspam | Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-09-14 12:53:56 |
| 212.70.149.4 | attackspam | For days now smtp ehlo round about every 3min. Sep 14 03:38:49 postfix/postscreen[4402]: BLACKLISTED [212.70.149.4]:47336 Sep 14 03:38:50 postfix/postscreen[4402]: PREGREET 11 after 0.93 from [212.70.149.4]:47336: EHLO User Sep 14 03:41:54 postfix/postscreen[6663]: BLACKLISTED [212.70.149.4]:4822 Sep 14 03:41:55 postfix/postscreen[6663]: PREGREET 11 after 0.79 from [212.70.149.4]:4822: EHLO User Sep 14 03:45:00 postfix/postscreen[9368]: BLACKLISTED [212.70.149.4]:27232 Sep 14 03:45:01 postfix/postscreen[9368]: PREGREET 11 after 0.99 from [212.70.149.4]:27232: EHLO User Sep 14 03:48:07 postfix/postscreen[12268]: BLACKLISTED [212.70.149.4]:48990 Sep 14 03:48:07 postfix/postscreen[12268]: PREGREET 11 after 0.06 from [212.70.149.4]:48990: EHLO User Sep 14 03:51:13 postfix/postscreen[16929]: BLACKLISTED [212.70.149.4]:6114 Sep 14 03:51:14 postfix/postscreen[16929]: PREGREET 11 after 0.06 from [212.70.149.4]:6114: EHLO User Se |
2020-09-14 13:20:24 |