City: unknown
Region: unknown
Country: Netherlands
Internet Service Provider: unknown
Hostname: unknown
Organization: SURFnet bv
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.149.148.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32862
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.149.148.147. IN A
;; AUTHORITY SECTION:
. 2654 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019081201 1800 900 604800 86400
;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 13 03:18:34 CST 2019
;; MSG SIZE rcvd: 119147.148.149.145.in-addr.arpa domain name pointer 145.149.EARLY-REGISTRATION.of.SURFnet.invalid.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
147.148.149.145.in-addr.arpa name = 145.149.EARLY-REGISTRATION.of.SURFnet.invalid.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.86.180.10 | attackspambots | 78. On Jun 30 2020 experienced a Brute Force SSH login attempt -> 3 unique times by 103.86.180.10. |
2020-07-02 06:38:03 |
| 117.239.232.59 | attackbots | Jul 1 02:44:38 jane sshd[26790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.239.232.59 Jul 1 02:44:40 jane sshd[26790]: Failed password for invalid user jenkins from 117.239.232.59 port 38326 ssh2 ... |
2020-07-02 06:30:53 |
| 120.132.29.38 | attackbotsspam | Jun 30 23:30:27 fhem-rasp sshd[8129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.29.38 user=root Jun 30 23:30:28 fhem-rasp sshd[8129]: Failed password for root from 120.132.29.38 port 40010 ssh2 ... |
2020-07-02 06:42:11 |
| 78.187.236.154 | attackspam |
|
2020-07-02 06:37:01 |
| 49.233.42.247 | attackspam | Brute force SMTP login attempted. ... |
2020-07-02 06:43:04 |
| 122.96.12.174 | attack | Jul 1 00:25:52 debian-2gb-nbg1-2 kernel: \[15814588.601231\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=122.96.12.174 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=40 ID=47026 PROTO=TCP SPT=33269 DPT=5555 WINDOW=60620 RES=0x00 SYN URGP=0 |
2020-07-02 06:14:40 |
| 112.85.42.188 | attack | 06/30/2020-21:22:58.252367 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan |
2020-07-02 06:50:18 |
| 182.61.3.157 | attack | SSH Invalid Login |
2020-07-02 07:00:26 |
| 167.99.74.187 | attackspam | srv02 Mass scanning activity detected Target: 5748 .. |
2020-07-02 06:49:38 |
| 50.246.53.29 | attackbots | Jul 1 03:43:00 inter-technics sshd[27125]: Invalid user spencer from 50.246.53.29 port 39200 Jul 1 03:43:00 inter-technics sshd[27125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.246.53.29 Jul 1 03:43:00 inter-technics sshd[27125]: Invalid user spencer from 50.246.53.29 port 39200 Jul 1 03:43:02 inter-technics sshd[27125]: Failed password for invalid user spencer from 50.246.53.29 port 39200 ssh2 Jul 1 03:48:18 inter-technics sshd[27434]: Invalid user rita from 50.246.53.29 port 43206 ... |
2020-07-02 07:07:52 |
| 159.89.231.172 | attackbotsspam | Multiport scan 46 ports : 1001(x2) 1022(x2) 1122 1223(x3) 1230(x3) 1234(x6) 1423 1723 1922 2020 2022(x2) 2121 2122 2200 2210(x4) 2220(x3) 2221 2222 2223 2230 2233 2250 3022(x2) 3434 4022 4444 5022 5555 6000 6022 6969 8022(x4) 9001(x2) 9010 9022(x5) 9222(x2) 10001 10022 12322 12369 20001 20022 22100(x2) 22222(x4) 30022(x2) 30120 |
2020-07-02 06:39:42 |
| 52.183.38.247 | attack | SSH brute-force attempt |
2020-07-02 06:20:42 |
| 114.34.234.82 | attack | unauthorized connection attempt |
2020-07-02 06:21:05 |
| 85.209.0.142 | attack | scans 3 times in preceeding hours on the ports (in chronological order) 3128 3128 3128 |
2020-07-02 06:36:31 |
| 138.197.186.199 | attackbotsspam | 5x Failed Password |
2020-07-02 06:29:49 |