City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.252.55.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3521
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.252.55.145. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019080600 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 06 22:02:31 CST 2019
;; MSG SIZE rcvd: 118
Host 145.55.252.149.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server: 67.207.67.3
Address: 67.207.67.3#53
** server can't find 145.55.252.149.in-addr.arpa: SERVFAIL
| IP | Type | Details | Datetime |
|---|---|---|---|
| 78.134.208.126 | attackbots | 1577201665 - 12/24/2019 16:34:25 Host: 78.134.208.126/78.134.208.126 Port: 445 TCP Blocked |
2019-12-25 01:35:20 |
| 61.230.6.148 | attack | 2323/tcp [2019-12-24]1pkt |
2019-12-25 01:39:55 |
| 118.170.49.11 | attackbotsspam | 23/tcp [2019-12-24]1pkt |
2019-12-25 01:41:46 |
| 87.64.75.69 | attack | Dec 24 16:33:22 minden010 sshd[3509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.64.75.69 Dec 24 16:33:24 minden010 sshd[3509]: Failed password for invalid user gmodserver from 87.64.75.69 port 45020 ssh2 Dec 24 16:33:53 minden010 sshd[3835]: Failed password for root from 87.64.75.69 port 34946 ssh2 ... |
2019-12-25 02:03:38 |
| 50.62.176.220 | attack | Dec2416:33:47server2pure-ftpd:\(\?@157.230.141.185\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:51server2pure-ftpd:\(\?@137.74.117.110\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:53server2pure-ftpd:\(\?@157.230.141.185\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:55server2pure-ftpd:\(\?@137.74.117.110\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:56server2pure-ftpd:\(\?@50.62.176.220\)[WARNING]Authenticationfailedforuser[ftp]IPAddressesBlocked:157.230.141.185\(US/UnitedStates/-\)137.74.117.110\(FR/France/110.ip-137-74-117.eu\) |
2019-12-25 01:55:14 |
| 114.33.3.156 | attack | 23/tcp [2019-12-24]1pkt |
2019-12-25 01:45:34 |
| 188.143.232.232 | attackbots | 445/tcp [2019-12-24]1pkt |
2019-12-25 01:38:18 |
| 37.187.120.96 | attackbotsspam | Dec 24 22:38:12 vibhu-HP-Z238-Microtower-Workstation sshd\[8245\]: Invalid user terry123 from 37.187.120.96 Dec 24 22:38:12 vibhu-HP-Z238-Microtower-Workstation sshd\[8245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.120.96 Dec 24 22:38:14 vibhu-HP-Z238-Microtower-Workstation sshd\[8245\]: Failed password for invalid user terry123 from 37.187.120.96 port 57074 ssh2 Dec 24 22:41:02 vibhu-HP-Z238-Microtower-Workstation sshd\[8446\]: Invalid user decher from 37.187.120.96 Dec 24 22:41:02 vibhu-HP-Z238-Microtower-Workstation sshd\[8446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.120.96 ... |
2019-12-25 01:40:51 |
| 52.231.205.120 | attack | "Fail2Ban detected SSH brute force attempt" |
2019-12-25 01:51:35 |
| 157.230.141.185 | attackbots | Dec2416:33:47server2pure-ftpd:\(\?@157.230.141.185\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:51server2pure-ftpd:\(\?@137.74.117.110\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:53server2pure-ftpd:\(\?@157.230.141.185\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:55server2pure-ftpd:\(\?@137.74.117.110\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:56server2pure-ftpd:\(\?@50.62.176.220\)[WARNING]Authenticationfailedforuser[ftp]IPAddressesBlocked: |
2019-12-25 01:54:10 |
| 195.128.153.32 | attack | 445/tcp [2019-12-24]1pkt |
2019-12-25 01:42:08 |
| 59.95.38.184 | attack | 23/tcp [2019-12-24]1pkt |
2019-12-25 01:40:18 |
| 176.108.55.41 | attackspambots | 445/tcp [2019-12-24]1pkt |
2019-12-25 01:43:40 |
| 81.22.45.148 | attackbotsspam | 2019-12-24T18:40:31.004385+01:00 lumpi kernel: [2499153.625881] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.148 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=53062 PROTO=TCP SPT=59391 DPT=3474 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-12-25 01:51:03 |
| 179.7.226.186 | attackspam | 445/tcp [2019-12-24]1pkt |
2019-12-25 01:37:46 |