City: unknown
Region: unknown
Country: Canada
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.99.163.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36493
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;149.99.163.0. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400
;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 16:19:13 CST 2025
;; MSG SIZE rcvd: 105Host 0.163.99.149.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 0.163.99.149.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.136.108.162 | attackbots | ET CINS Active Threat Intelligence Poor Reputation IP group 31 - port: 500 proto: TCP cat: Misc Attack |
2019-12-24 05:10:38 |
| 51.89.36.26 | attack | 5060/udp 5060/udp 5060/udp... [2019-12-03/23]20pkt,1pt.(udp) |
2019-12-24 05:18:05 |
| 103.109.3.214 | attackspam | 103.109.3.214 - - [23/Dec/2019:09:54:26 -0500] "GET /index.cfm?page=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&manufacturerID=15&collectionID=161 HTTP/1.1" 200 19261 "https:// /index.cfm?page=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&manufacturerID=15&collectionID=161" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ... |
2019-12-24 05:16:35 |
| 83.61.10.169 | attackspam | Dec 23 18:41:52 [host] sshd[27564]: Invalid user sarahjoy from 83.61.10.169 Dec 23 18:41:52 [host] sshd[27564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.61.10.169 Dec 23 18:41:54 [host] sshd[27564]: Failed password for invalid user sarahjoy from 83.61.10.169 port 51008 ssh2 |
2019-12-24 05:15:14 |
| 120.132.12.162 | attackbots | Invalid user scanlogd from 120.132.12.162 port 34088 |
2019-12-24 05:09:02 |
| 58.18.130.101 | attackbotsspam | 1433/tcp 1433/tcp 1433/tcp... [2019-10-22/12-23]9pkt,1pt.(tcp) |
2019-12-24 05:10:07 |
| 81.201.60.150 | attackbotsspam | Dec 23 05:58:45 php1 sshd\[26588\]: Invalid user alberta from 81.201.60.150 Dec 23 05:58:45 php1 sshd\[26588\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hosting.pilsfree.net Dec 23 05:58:47 php1 sshd\[26588\]: Failed password for invalid user alberta from 81.201.60.150 port 57934 ssh2 Dec 23 06:04:40 php1 sshd\[27303\]: Invalid user foschi from 81.201.60.150 Dec 23 06:04:40 php1 sshd\[27303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hosting.pilsfree.net |
2019-12-24 04:58:51 |
| 129.158.73.144 | attackbots | Triggered by Fail2Ban at Vostok web server |
2019-12-24 05:19:04 |
| 77.247.108.14 | attackspam | 12/23/2019-21:17:34.637805 77.247.108.14 Protocol: 17 ET SCAN Sipvicious Scan |
2019-12-24 05:04:38 |
| 154.66.219.20 | attack | Dec 23 15:45:17 MainVPS sshd[18930]: Invalid user ohshita from 154.66.219.20 port 39262 Dec 23 15:45:17 MainVPS sshd[18930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.66.219.20 Dec 23 15:45:17 MainVPS sshd[18930]: Invalid user ohshita from 154.66.219.20 port 39262 Dec 23 15:45:19 MainVPS sshd[18930]: Failed password for invalid user ohshita from 154.66.219.20 port 39262 ssh2 Dec 23 15:54:23 MainVPS sshd[3750]: Invalid user info from 154.66.219.20 port 33830 ... |
2019-12-24 05:20:46 |
| 182.61.170.213 | attackbotsspam | 2019-12-23T19:47:53.921740centos sshd\[29279\]: Invalid user www from 182.61.170.213 port 40258 2019-12-23T19:47:53.928380centos sshd\[29279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.170.213 2019-12-23T19:47:55.959236centos sshd\[29279\]: Failed password for invalid user www from 182.61.170.213 port 40258 ssh2 |
2019-12-24 05:29:29 |
| 106.12.34.56 | attack | Automatic report - Banned IP Access |
2019-12-24 05:05:47 |
| 129.158.72.141 | attackbots | Feb 17 19:53:14 dillonfme sshd\[12833\]: Invalid user tomcat from 129.158.72.141 port 28873 Feb 17 19:53:15 dillonfme sshd\[12833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.158.72.141 Feb 17 19:53:17 dillonfme sshd\[12833\]: Failed password for invalid user tomcat from 129.158.72.141 port 28873 ssh2 Feb 17 20:01:14 dillonfme sshd\[13088\]: User messagebus from 129.158.72.141 not allowed because not listed in AllowUsers Feb 17 20:01:14 dillonfme sshd\[13088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.158.72.141 user=messagebus ... |
2019-12-24 05:23:22 |
| 203.202.240.189 | attackbots | 1433/tcp 445/tcp... [2019-10-28/12-23]12pkt,2pt.(tcp) |
2019-12-24 05:06:43 |
| 46.38.144.32 | attack | Dec 23 21:47:19 relay postfix/smtpd\[20997\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 21:49:37 relay postfix/smtpd\[8207\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 21:50:36 relay postfix/smtpd\[16987\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 21:52:53 relay postfix/smtpd\[14846\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 21:53:51 relay postfix/smtpd\[20990\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-12-24 04:54:49 |