City: unknown
Region: unknown
Country: Kyrgyzstan
Internet Service Provider: Mega-Line Ltd.
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackbots | Honeypot attack, port: 445, PTR: 158.181.129.71.mega.kg. |
2020-02-08 21:38:30 |
| attackbotsspam | Unauthorized connection attempt from IP address 158.181.129.71 on Port 445(SMB) |
2020-01-08 20:46:51 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.181.129.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13580
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;158.181.129.71. IN A
;; AUTHORITY SECTION:
. 432 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020010800 1800 900 604800 86400
;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 08 20:46:42 CST 2020
;; MSG SIZE rcvd: 118
71.129.181.158.in-addr.arpa domain name pointer 158.181.129.71.mega.kg.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
71.129.181.158.in-addr.arpa name = 158.181.129.71.mega.kg.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 41.47.81.102 | attackspam | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=61186)(10151156) |
2019-10-16 02:18:10 |
| 37.49.230.31 | attackspam | " " |
2019-10-16 02:19:32 |
| 185.216.140.17 | attackbots | [portscan] tcp/22 [SSH] in blocklist.de:'listed [ssh]' *(RWIN=65535)(10151156) |
2019-10-16 02:07:20 |
| 202.83.172.43 | attack | [portscan] tcp/1433 [MsSQL] [scan/connect: 2 time(s)] in spfbl.net:'listed' *(RWIN=1024)(10151156) |
2019-10-16 02:05:27 |
| 177.155.134.68 | attackspambots | [portscan] tcp/1433 [MsSQL] [scan/connect: 2 time(s)] *(RWIN=1024)(10151156) |
2019-10-16 02:25:33 |
| 218.69.156.54 | attackbots | [portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=1024)(10151156) |
2019-10-16 02:04:33 |
| 189.114.156.113 | attackbotsspam | [portscan] tcp/23 [TELNET] *(RWIN=48860)(10151156) |
2019-10-16 02:23:59 |
| 178.46.209.41 | attackbots | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=49519)(10151156) |
2019-10-16 02:08:20 |
| 200.105.169.181 | attackspam | Fail2Ban Ban Triggered |
2019-10-16 02:34:46 |
| 45.183.147.149 | attack | [portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=1024)(10151156) |
2019-10-16 02:02:24 |
| 190.67.116.12 | attack | Oct 15 13:48:30 xeon sshd[14024]: Failed password for root from 190.67.116.12 port 38280 ssh2 |
2019-10-16 02:23:26 |
| 191.7.155.166 | attackspambots | UTC: 2019-10-14 port: 23/tcp |
2019-10-16 02:22:59 |
| 92.222.86.214 | attackspambots | [portscan] tcp/3389 [MS RDP] *(RWIN=1024)(10151156) |
2019-10-16 02:14:35 |
| 103.236.188.40 | attackbots | [portscan] tcp/21 [FTP] [scan/connect: 7 time(s)] in spfbl.net:'listed' *(RWIN=29200)(10151156) |
2019-10-16 02:12:57 |
| 60.199.223.17 | attack | [portscan] tcp/1433 [MsSQL] [scan/connect: 2 time(s)] *(RWIN=1024)(10151156) |
2019-10-16 02:31:38 |