City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 166.61.31.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29837
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;166.61.31.214. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020601 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 04:44:23 CST 2025
;; MSG SIZE rcvd: 106b';; reply from unexpected source: 100.100.2.138#53, expected 127.0.0.53#53
;; Warning: ID mismatch: expected ID 21559, got 17614
;; reply from unexpected source: 100.100.2.138#53, expected 127.0.0.53#53
;; Warning: ID mismatch: expected ID 21559, got 17614
;; reply from unexpected source: 100.100.2.138#53, expected 127.0.0.53#53
;; Warning: ID mismatch: expected ID 21559, got 17614
Host 214.31.61.166.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 166.61.31.214.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 218.98.26.184 | attackbots | Sep 7 14:45:38 OPSO sshd\[23542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.26.184 user=root Sep 7 14:45:40 OPSO sshd\[23542\]: Failed password for root from 218.98.26.184 port 64264 ssh2 Sep 7 14:45:43 OPSO sshd\[23542\]: Failed password for root from 218.98.26.184 port 64264 ssh2 Sep 7 14:45:45 OPSO sshd\[23542\]: Failed password for root from 218.98.26.184 port 64264 ssh2 Sep 7 14:45:48 OPSO sshd\[23545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.26.184 user=root |
2019-09-07 20:48:43 |
| 51.15.42.184 | attackbotsspam | firewall-block, port(s): 445/tcp |
2019-09-07 20:47:36 |
| 5.135.181.11 | attackbotsspam | SSH Brute Force, server-1 sshd[27283]: Failed password for invalid user daniel from 5.135.181.11 port 41100 ssh2 |
2019-09-07 20:41:12 |
| 77.42.124.178 | attackspambots | Automatic report - Port Scan Attack |
2019-09-07 20:01:12 |
| 78.55.128.189 | attack | Sep 7 11:24:12 extapp sshd[23656]: Failed password for r.r from 78.55.128.189 port 54475 ssh2 Sep 7 11:24:14 extapp sshd[23656]: Failed password for r.r from 78.55.128.189 port 54475 ssh2 Sep 7 11:24:17 extapp sshd[23656]: Failed password for r.r from 78.55.128.189 port 54475 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=78.55.128.189 |
2019-09-07 20:30:34 |
| 222.186.42.117 | attackbots | Sep 7 17:50:04 areeb-Workstation sshd[9814]: Failed password for root from 222.186.42.117 port 11812 ssh2 ... |
2019-09-07 20:20:49 |
| 80.211.251.174 | attackspambots | 1 pkts, ports: UDP:5060 |
2019-09-07 20:55:34 |
| 88.85.213.129 | attack | [Sat Sep 07 07:50:26.514733 2019] [:error] [pid 218970] [client 88.85.213.129:45925] [client 88.85.213.129] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 21)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "127.0.0.1"] [uri "/cgi-bin/ViewLog.asp"] [unique_id "XXOLcp4jHltEES0J5rqqlAAAAAc"] ... |
2019-09-07 20:40:13 |
| 14.247.100.136 | attack | Unauthorized connection attempt from IP address 14.247.100.136 on Port 445(SMB) |
2019-09-07 20:13:41 |
| 125.25.93.235 | attackspambots | Unauthorized connection attempt from IP address 125.25.93.235 on Port 445(SMB) |
2019-09-07 20:17:59 |
| 222.186.52.124 | attackspam | Bruteforce on SSH Honeypot |
2019-09-07 20:20:21 |
| 115.213.142.168 | attackspam | Port scan on 1 port(s): 23 |
2019-09-07 19:57:13 |
| 183.131.82.99 | attackspambots | 09/07/2019-08:20:30.372746 183.131.82.99 Protocol: 6 ET SCAN Potential SSH Scan |
2019-09-07 20:22:01 |
| 218.98.40.140 | attack | Sep 7 08:14:13 TORMINT sshd\[27493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.140 user=root Sep 7 08:14:16 TORMINT sshd\[27493\]: Failed password for root from 218.98.40.140 port 26737 ssh2 Sep 7 08:14:22 TORMINT sshd\[27497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.140 user=root ... |
2019-09-07 20:17:19 |
| 49.88.112.77 | attackspambots | 2019-09-07T11:48:54.928515abusebot-3.cloudsearch.cf sshd\[903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.77 user=root |
2019-09-07 20:06:43 |