City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.16.2.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 164
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;164.16.2.148. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 16:26:41 CST 2025
;; MSG SIZE rcvd: 105Host 148.2.16.164.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 148.2.16.164.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 130.61.217.222 | attackspam | Jun 10 17:32:21 PorscheCustomer sshd[2750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.217.222 Jun 10 17:32:23 PorscheCustomer sshd[2750]: Failed password for invalid user monitor from 130.61.217.222 port 60086 ssh2 Jun 10 17:35:41 PorscheCustomer sshd[2844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.217.222 ... |
2020-06-11 00:52:41 |
| 94.191.119.31 | attack | SSH Brute-Force. Ports scanning. |
2020-06-11 00:55:18 |
| 129.146.250.102 | attackbotsspam | pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.250.102 Invalid user anton from 129.146.250.102 port 41744 Failed password for invalid user anton from 129.146.250.102 port 41744 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.250.102 user=root Failed password for root from 129.146.250.102 port 43232 ssh2 |
2020-06-11 00:52:59 |
| 129.226.134.65 | attack | Invalid user ln from 129.226.134.65 port 47776 |
2020-06-11 01:26:07 |
| 45.227.253.190 | attackbots | 5 attempts against mh-modsecurity-ban on milky |
2020-06-11 01:04:29 |
| 36.71.29.249 | attackbotsspam | Honeypot attack, port: 445, PTR: PTR record not found |
2020-06-11 01:20:44 |
| 187.178.87.159 | attackbots | Honeypot attack, port: 81, PTR: 187-178-87-159.dynamic.axtel.net. |
2020-06-11 00:59:00 |
| 92.63.197.55 | attackbots | scans 4 times in preceeding hours on the ports (in chronological order) 4889 4777 4689 4789 resulting in total of 21 scans from 92.63.192.0/20 block. |
2020-06-11 01:07:58 |
| 59.127.152.158 | attackbots | Jun 10 13:58:50 debian kernel: [689285.164017] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=59.127.152.158 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=2359 PROTO=TCP SPT=8885 DPT=23 WINDOW=21965 RES=0x00 SYN URGP=0 |
2020-06-11 00:45:05 |
| 103.92.24.240 | attackspam | Jun 10 18:44:06 abendstille sshd\[22043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.24.240 user=root Jun 10 18:44:07 abendstille sshd\[22043\]: Failed password for root from 103.92.24.240 port 45464 ssh2 Jun 10 18:47:45 abendstille sshd\[25706\]: Invalid user jianghh from 103.92.24.240 Jun 10 18:47:45 abendstille sshd\[25706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.24.240 Jun 10 18:47:47 abendstille sshd\[25706\]: Failed password for invalid user jianghh from 103.92.24.240 port 60596 ssh2 ... |
2020-06-11 01:13:48 |
| 171.247.15.163 | attackspam | Automatic report - Port Scan Attack |
2020-06-11 01:21:39 |
| 88.102.244.211 | attackbotsspam | 2020-06-10T11:09:16.441568dmca.cloudsearch.cf sshd[24566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.244.broadband7.iol.cz user=root 2020-06-10T11:09:18.454096dmca.cloudsearch.cf sshd[24566]: Failed password for root from 88.102.244.211 port 44012 ssh2 2020-06-10T11:13:57.181038dmca.cloudsearch.cf sshd[24968]: Invalid user ignacy from 88.102.244.211 port 44600 2020-06-10T11:13:57.187371dmca.cloudsearch.cf sshd[24968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.244.broadband7.iol.cz 2020-06-10T11:13:57.181038dmca.cloudsearch.cf sshd[24968]: Invalid user ignacy from 88.102.244.211 port 44600 2020-06-10T11:13:59.109503dmca.cloudsearch.cf sshd[24968]: Failed password for invalid user ignacy from 88.102.244.211 port 44600 ssh2 2020-06-10T11:18:23.027213dmca.cloudsearch.cf sshd[25386]: Invalid user nxautomation from 88.102.244.211 port 45192 ... |
2020-06-11 01:24:02 |
| 178.125.126.125 | attackbotsspam | Jun 10 13:55:44 master sshd[17724]: Failed password for invalid user admin from 178.125.126.125 port 53150 ssh2 |
2020-06-11 00:59:52 |
| 192.241.249.53 | attackbots | SSH brute-force: detected 3 distinct username(s) / 13 distinct password(s) within a 24-hour window. |
2020-06-11 01:12:57 |
| 120.29.157.118 | attack | DATE:2020-06-10 15:19:59, IP:120.29.157.118, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-06-11 01:11:26 |