City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.54.34.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45290
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;141.54.34.45. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400
;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 16:49:36 CST 2025
;; MSG SIZE rcvd: 10545.34.54.141.in-addr.arpa domain name pointer dm-sekr.architektur.uni-weimar.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
45.34.54.141.in-addr.arpa name = dm-sekr.architektur.uni-weimar.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 122.51.58.42 | attack | SSH Brute Force |
2020-08-19 16:48:32 |
| 93.174.93.195 | attackspam | firewall-block, port(s): 20480/udp |
2020-08-19 17:07:42 |
| 106.241.33.158 | attack | Aug 19 13:50:21 NG-HHDC-SVS-001 sshd[30187]: Invalid user taller from 106.241.33.158 ... |
2020-08-19 16:52:00 |
| 45.143.223.32 | attackspambots | [2020-08-19 04:32:26] NOTICE[1185][C-00003537] chan_sip.c: Call from '' (45.143.223.32:63596) to extension '333009441904911014' rejected because extension not found in context 'public'. [2020-08-19 04:32:26] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-19T04:32:26.634-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="333009441904911014",SessionID="0x7f10c41b0fe8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.223.32/63596",ACLName="no_extension_match" [2020-08-19 04:33:43] NOTICE[1185][C-00003538] chan_sip.c: Call from '' (45.143.223.32:63565) to extension '333010441904911014' rejected because extension not found in context 'public'. [2020-08-19 04:33:43] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-19T04:33:43.430-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="333010441904911014",SessionID="0x7f10c43add48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddres ... |
2020-08-19 16:43:50 |
| 114.67.102.123 | attack | 2020-08-19T07:02:37.777576abusebot-8.cloudsearch.cf sshd[17413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.102.123 user=root 2020-08-19T07:02:39.871033abusebot-8.cloudsearch.cf sshd[17413]: Failed password for root from 114.67.102.123 port 41788 ssh2 2020-08-19T07:07:40.083474abusebot-8.cloudsearch.cf sshd[17426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.102.123 user=root 2020-08-19T07:07:42.442526abusebot-8.cloudsearch.cf sshd[17426]: Failed password for root from 114.67.102.123 port 38902 ssh2 2020-08-19T07:12:27.553330abusebot-8.cloudsearch.cf sshd[17433]: Invalid user sorin from 114.67.102.123 port 36002 2020-08-19T07:12:27.558336abusebot-8.cloudsearch.cf sshd[17433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.102.123 2020-08-19T07:12:27.553330abusebot-8.cloudsearch.cf sshd[17433]: Invalid user sorin from 114.67.102.123 por ... |
2020-08-19 17:06:14 |
| 141.98.81.208 | attack | Aug 19 11:51:20 e2e-62-230 sshd\[29651\]: Invalid user user from 141.98.81.208 Aug 19 11:51:29 e2e-62-230 sshd\[29717\]: Invalid user guest from 141.98.81.208 Aug 19 11:51:38 e2e-62-230 sshd\[29790\]: Invalid user Administrator from 141.98.81.208 ... |
2020-08-19 16:57:07 |
| 201.163.180.183 | attackspambots | "fail2ban match" |
2020-08-19 16:47:36 |
| 162.214.28.25 | attack | 162.214.28.25 - - [19/Aug/2020:08:27:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2216 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 162.214.28.25 - - [19/Aug/2020:08:27:46 +0100] "POST /wp-login.php HTTP/1.1" 200 2229 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 162.214.28.25 - - [19/Aug/2020:08:27:51 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-19 17:22:04 |
| 180.164.59.151 | attackspambots | Aug 19 14:26:32 dhoomketu sshd[2479485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.59.151 user=root Aug 19 14:26:34 dhoomketu sshd[2479485]: Failed password for root from 180.164.59.151 port 37142 ssh2 Aug 19 14:29:41 dhoomketu sshd[2479590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.59.151 user=root Aug 19 14:29:44 dhoomketu sshd[2479590]: Failed password for root from 180.164.59.151 port 42814 ssh2 Aug 19 14:32:32 dhoomketu sshd[2479628]: Invalid user root01 from 180.164.59.151 port 48446 ... |
2020-08-19 17:17:42 |
| 124.207.149.237 | attackbotsspam | Aug 19 06:50:24 minden010 pure-ftpd: (?@124.207.149.237) [WARNING] Authentication failed for user [user] Aug 19 06:50:30 minden010 pure-ftpd: (?@124.207.149.237) [WARNING] Authentication failed for user [user] Aug 19 06:50:35 minden010 pure-ftpd: (?@124.207.149.237) [WARNING] Authentication failed for user [user] Aug 19 06:50:39 minden010 pure-ftpd: (?@124.207.149.237) [WARNING] Authentication failed for user [user] Aug 19 06:50:45 minden010 pure-ftpd: (?@124.207.149.237) [WARNING] Authentication failed for user [user] ... |
2020-08-19 17:03:52 |
| 200.5.63.74 | attack | Automatic report - XMLRPC Attack |
2020-08-19 16:44:56 |
| 182.74.25.246 | attackbotsspam | SSH Brute-Forcing (server2) |
2020-08-19 17:26:58 |
| 163.172.19.244 | attackspambots | Attempt to hack Wordpress Login, XMLRPC or other login |
2020-08-19 16:46:16 |
| 95.146.44.40 | attack | Automatic report - Port Scan Attack |
2020-08-19 16:55:04 |
| 5.135.142.71 | attack | Aug 19 04:51:15 ws22vmsma01 sshd[32199]: Failed password for root from 5.135.142.71 port 54572 ssh2 Aug 19 04:51:27 ws22vmsma01 sshd[32199]: error: maximum authentication attempts exceeded for root from 5.135.142.71 port 54572 ssh2 [preauth] ... |
2020-08-19 17:07:13 |