City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 155.75.50.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14056
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;155.75.50.14. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 15:13:54 CST 2025
;; MSG SIZE rcvd: 105b'Host 14.50.75.155.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 155.75.50.14.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.119.255.226 | attack | Automatic report - Banned IP Access |
2020-04-24 18:56:19 |
| 178.255.168.38 | attackspam | DATE:2020-04-24 05:46:50, IP:178.255.168.38, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2020-04-24 19:18:34 |
| 14.228.81.177 | attack | 20/4/24@00:08:05: FAIL: Alarm-Network address from=14.228.81.177 ... |
2020-04-24 19:15:16 |
| 112.85.42.173 | attackspam | Apr 24 10:35:37 ip-172-31-61-156 sshd[23221]: Disconnecting: Too many authentication failures [preauth] Apr 24 10:35:22 ip-172-31-61-156 sshd[23221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root Apr 24 10:35:24 ip-172-31-61-156 sshd[23221]: Failed password for root from 112.85.42.173 port 25773 ssh2 Apr 24 10:35:37 ip-172-31-61-156 sshd[23221]: error: maximum authentication attempts exceeded for root from 112.85.42.173 port 25773 ssh2 [preauth] Apr 24 10:35:37 ip-172-31-61-156 sshd[23221]: Disconnecting: Too many authentication failures [preauth] ... |
2020-04-24 19:11:02 |
| 104.160.34.166 | attack | Apr 24 02:39:44 mail sshd\[37403\]: Invalid user admin from 104.160.34.166 Apr 24 02:39:44 mail sshd\[37403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.160.34.166 ... |
2020-04-24 19:24:27 |
| 161.35.100.157 | attack | Brute forcing RDP port 3389 |
2020-04-24 19:12:07 |
| 188.165.169.238 | attackbotsspam | Apr 24 10:01:12 ip-172-31-61-156 sshd[21912]: Invalid user admin from 188.165.169.238 Apr 24 10:01:12 ip-172-31-61-156 sshd[21912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.169.238 Apr 24 10:01:12 ip-172-31-61-156 sshd[21912]: Invalid user admin from 188.165.169.238 Apr 24 10:01:13 ip-172-31-61-156 sshd[21912]: Failed password for invalid user admin from 188.165.169.238 port 34868 ssh2 Apr 24 10:04:54 ip-172-31-61-156 sshd[22005]: Invalid user csgoserver from 188.165.169.238 ... |
2020-04-24 19:07:10 |
| 185.153.198.211 | attack | Apr 24 13:18:33 debian-2gb-nbg1-2 kernel: \[9986057.832950\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.153.198.211 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=26537 PROTO=TCP SPT=45205 DPT=33907 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-24 19:22:12 |
| 64.119.16.2 | attack | [24/Apr/2020:06:04:43 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" |
2020-04-24 18:59:11 |
| 180.76.101.241 | attack | srv02 Mass scanning activity detected Target: 8982 .. |
2020-04-24 18:48:25 |
| 177.94.5.100 | attackspambots | Automatic report - Port Scan Attack |
2020-04-24 19:25:21 |
| 115.239.253.241 | attackspambots | Invalid user tx from 115.239.253.241 port 60686 |
2020-04-24 19:30:53 |
| 185.209.0.17 | attackbots | Port scan on 5 port(s): 3390 3391 3395 3398 3399 |
2020-04-24 18:59:46 |
| 64.227.73.193 | attack | SIP/5060 Probe, BF, Hack - |
2020-04-24 19:16:36 |
| 162.243.131.194 | attackspam | trying to access non-authorized port |
2020-04-24 18:58:14 |