City: Hameln
Region: Niedersachsen
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.172.212.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64243
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;147.172.212.216. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400
;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 02:56:59 CST 2025
;; MSG SIZE rcvd: 108Host 216.212.172.147.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 216.212.172.147.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 107.175.194.181 | attack | Fail2Ban Ban Triggered |
2019-08-24 04:51:51 |
| 218.92.0.211 | attackbotsspam | Aug 23 16:18:05 *** sshd[22980]: User root from 218.92.0.211 not allowed because not listed in AllowUsers |
2019-08-24 04:57:47 |
| 88.255.210.17 | attackspambots | 445/tcp 445/tcp 445/tcp... [2019-07-13/08-23]4pkt,1pt.(tcp) |
2019-08-24 04:35:37 |
| 190.85.156.226 | attack | 445/tcp 445/tcp 445/tcp... [2019-07-18/08-23]4pkt,1pt.(tcp) |
2019-08-24 04:37:35 |
| 191.241.242.58 | attack | 445/tcp 445/tcp 445/tcp [2019-07-31/08-23]3pkt |
2019-08-24 04:55:28 |
| 71.42.172.43 | attackspam | 445/tcp 445/tcp 445/tcp... [2019-06-27/08-23]10pkt,1pt.(tcp) |
2019-08-24 04:24:57 |
| 91.92.207.220 | attackspam | 60001/tcp 23/tcp... [2019-07-25/08-23]4pkt,2pt.(tcp) |
2019-08-24 05:00:27 |
| 62.234.81.63 | attackbots | Aug 23 07:21:36 auw2 sshd\[5918\]: Invalid user ts3bot from 62.234.81.63 Aug 23 07:21:36 auw2 sshd\[5918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.81.63 Aug 23 07:21:38 auw2 sshd\[5918\]: Failed password for invalid user ts3bot from 62.234.81.63 port 39409 ssh2 Aug 23 07:27:01 auw2 sshd\[6368\]: Invalid user brown from 62.234.81.63 Aug 23 07:27:01 auw2 sshd\[6368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.81.63 |
2019-08-24 04:46:38 |
| 36.225.49.181 | attack | Caught in portsentry honeypot |
2019-08-24 05:01:33 |
| 103.122.65.42 | attackbotsspam | Aug 23 14:19:13 vtv3 sshd\[20176\]: Invalid user oracle from 103.122.65.42 port 50422 Aug 23 14:19:13 vtv3 sshd\[20176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.122.65.42 Aug 23 14:19:15 vtv3 sshd\[20176\]: Failed password for invalid user oracle from 103.122.65.42 port 50422 ssh2 Aug 23 14:24:28 vtv3 sshd\[22744\]: Invalid user test1 from 103.122.65.42 port 40822 Aug 23 14:24:28 vtv3 sshd\[22744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.122.65.42 Aug 23 14:35:09 vtv3 sshd\[28569\]: Invalid user portfolio from 103.122.65.42 port 49846 Aug 23 14:35:09 vtv3 sshd\[28569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.122.65.42 Aug 23 14:35:10 vtv3 sshd\[28569\]: Failed password for invalid user portfolio from 103.122.65.42 port 49846 ssh2 Aug 23 14:40:40 vtv3 sshd\[31525\]: Invalid user android from 103.122.65.42 port 40242 Aug 23 14:40:40 vtv3 sshd\[31 |
2019-08-24 04:30:15 |
| 113.62.127.194 | attackspambots | 445/tcp 445/tcp 445/tcp... [2019-07-11/08-23]7pkt,1pt.(tcp) |
2019-08-24 04:44:18 |
| 220.135.40.221 | attackbotsspam | Aug 23 11:34:13 localhost kernel: [312268.270290] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=220.135.40.221 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=20197 PROTO=TCP SPT=51410 DPT=52869 WINDOW=65250 RES=0x00 SYN URGP=0 Aug 23 11:34:13 localhost kernel: [312268.270314] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=220.135.40.221 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=20197 PROTO=TCP SPT=51410 DPT=52869 SEQ=758669438 ACK=0 WINDOW=65250 RES=0x00 SYN URGP=0 Aug 23 12:18:20 localhost kernel: [314916.001976] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=220.135.40.221 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=47489 PROTO=TCP SPT=26804 DPT=52869 WINDOW=13028 RES=0x00 SYN URGP=0 Aug 23 12:18:20 localhost kernel: [314916.002003] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=220.135.40.221 DST=[mungedIP2] LEN=40 TOS=0x00 PR |
2019-08-24 04:45:16 |
| 123.201.35.198 | attack | Lines containing failures of 123.201.35.198 Aug 23 17:26:31 MAKserver05 sshd[22113]: Did not receive identification string from 123.201.35.198 port 56708 Aug 23 17:26:34 MAKserver05 sshd[22118]: Invalid user adminixxxr from 123.201.35.198 port 56670 Aug 23 17:26:35 MAKserver05 sshd[22118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.201.35.198 Aug 23 17:26:37 MAKserver05 sshd[22118]: Failed password for invalid user adminixxxr from 123.201.35.198 port 56670 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=123.201.35.198 |
2019-08-24 04:49:10 |
| 107.172.15.10 | attack | 445/tcp 445/tcp 445/tcp... [2019-07-27/08-23]7pkt,1pt.(tcp) |
2019-08-24 04:22:35 |
| 104.248.218.225 | attackspam | Aug 23 10:03:31 web9 sshd\[496\]: Invalid user admin from 104.248.218.225 Aug 23 10:03:31 web9 sshd\[496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.218.225 Aug 23 10:03:33 web9 sshd\[496\]: Failed password for invalid user admin from 104.248.218.225 port 59758 ssh2 Aug 23 10:08:06 web9 sshd\[1644\]: Invalid user vnc from 104.248.218.225 Aug 23 10:08:06 web9 sshd\[1644\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.218.225 |
2019-08-24 04:52:39 |