City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.66.189.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55573
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.66.189.92. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025011500 1800 900 604800 86400
;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 15 21:09:00 CST 2025
;; MSG SIZE rcvd: 106Host 92.189.66.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 92.189.66.139.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 159.203.201.163 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2020-01-27 02:30:12 |
| 220.161.243.36 | attack | Unauthorized connection attempt detected from IP address 220.161.243.36 to port 6656 [T] |
2020-01-27 03:14:05 |
| 142.93.47.125 | attack | Jan 26 23:25:18 gw1 sshd[11059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.47.125 Jan 26 23:25:21 gw1 sshd[11059]: Failed password for invalid user catchall from 142.93.47.125 port 51510 ssh2 ... |
2020-01-27 02:32:50 |
| 114.220.238.191 | attackspambots | Jan 26 19:25:19 haigwepa sshd[8661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.220.238.191 Jan 26 19:25:22 haigwepa sshd[8661]: Failed password for invalid user giovanni from 114.220.238.191 port 47244 ssh2 ... |
2020-01-27 02:31:44 |
| 180.218.161.74 | attackbotsspam | Jan 26 20:04:43 debian-2gb-nbg1-2 kernel: \[2324754.171245\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.218.161.74 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=230 ID=62016 DF PROTO=TCP SPT=55935 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0 |
2020-01-27 03:16:37 |
| 80.82.77.86 | attackbotsspam | 01/26/2020-13:24:54.492941 80.82.77.86 Protocol: 17 ET DROP Dshield Block Listed Source group 1 |
2020-01-27 02:54:19 |
| 125.128.140.114 | attack | TCP Port: 25 invalid blocked abuseat-org also barracuda and spamcop (540) |
2020-01-27 02:42:01 |
| 194.180.224.127 | attackspambots | *Port Scan* detected from 194.180.224.127 (US/United States/-). 4 hits in the last 70 seconds |
2020-01-27 02:46:10 |
| 182.247.36.108 | attack | Unauthorized connection attempt detected from IP address 182.247.36.108 to port 6656 [T] |
2020-01-27 03:15:10 |
| 220.164.154.247 | attackspambots | Unauthorized connection attempt detected from IP address 220.164.154.247 to port 6656 [T] |
2020-01-27 03:13:37 |
| 107.175.194.133 | attackspambots | Jan 25 21:49:36 kmh-wmh-001-nbg01 sshd[14310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.194.133 user=r.r Jan 25 21:49:39 kmh-wmh-001-nbg01 sshd[14310]: Failed password for r.r from 107.175.194.133 port 40010 ssh2 Jan 25 21:49:39 kmh-wmh-001-nbg01 sshd[14310]: Received disconnect from 107.175.194.133 port 40010:11: Bye Bye [preauth] Jan 25 21:49:39 kmh-wmh-001-nbg01 sshd[14310]: Disconnected from 107.175.194.133 port 40010 [preauth] Jan 25 21:54:24 kmh-wmh-001-nbg01 sshd[14765]: Invalid user tomcat from 107.175.194.133 port 49928 Jan 25 21:54:24 kmh-wmh-001-nbg01 sshd[14765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.194.133 Jan 25 21:54:26 kmh-wmh-001-nbg01 sshd[14765]: Failed password for invalid user tomcat from 107.175.194.133 port 49928 ssh2 Jan 25 21:54:26 kmh-wmh-001-nbg01 sshd[14765]: Received disconnect from 107.175.194.133 port 49928:11: Bye Bye [preaut........ ------------------------------- |
2020-01-27 03:00:36 |
| 36.84.65.59 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 26-01-2020 18:25:13. |
2020-01-27 02:37:37 |
| 49.232.15.79 | attack | 49.232.15.79 - - [26/Jan/2020:21:13:52 +0300] "GET /TP/public/index.php HTTP/1.1" 404 476 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 49.232.15.79 - - [26/Jan/2020:21:13:53 +0300] "GET /TP/index.php HTTP/1.1" 404 469 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 49.232.15.79 - - [26/Jan/2020:21:13:53 +0300] "GET /thinkphp/html/public/index.php HTTP/1.1" 404 487 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 49.232.15.79 - - [26/Jan/2020:21:13:54 +0300] "GET /html/public/index.php HTTP/1.1" 404 478 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 49.232.15.79 - - [26/Jan/2020:21:13:56 +0300] "GET /public/index.php HTTP/1.1" 404 473 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 49.232.15.79 - - [26/Jan/2020:21:13:56 +0300] "GET /TP/html/public/index.php HTTP/1.1" 404 481 "-" "Mozilla |
2020-01-27 02:56:33 |
| 121.121.119.153 | attack | Automatic report - Port Scan Attack |
2020-01-27 02:34:46 |
| 167.172.118.117 | attackspambots | Unauthorized connection attempt detected from IP address 167.172.118.117 to port 2220 [J] |
2020-01-27 02:53:40 |