City: unknown
Region: unknown
Country: Spain
Internet Service Provider: unknown
Hostname: unknown
Organization: Walhalla Data Center Services SL
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 185.4.245.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44268
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;185.4.245.54. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019041400 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 14 21:11:43 +08 2019
;; MSG SIZE rcvd: 116
54.245.4.185.in-addr.arpa domain name pointer 185-4-245-54.nefeles.es.
Server: 67.207.67.3
Address: 67.207.67.3#53
Non-authoritative answer:
54.245.4.185.in-addr.arpa name = 185-4-245-54.nefeles.es.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 141.98.83.12 | attack | ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 1000 proto: TCP cat: Attempted Information Leak |
2019-12-11 06:12:49 |
| 78.128.112.114 | attackspam | 12/10/2019-15:25:36.972804 78.128.112.114 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-12-11 06:21:16 |
| 95.9.232.92 | attack | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2019-12-11 06:14:17 |
| 185.176.27.30 | attackbotsspam | Dec 11 01:06:10 debian-2gb-vpn-nbg1-1 kernel: [393954.674779] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.30 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=32867 PROTO=TCP SPT=50855 DPT=6666 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-11 06:33:06 |
| 124.6.158.62 | attackbotsspam | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2019-12-11 06:39:21 |
| 89.248.174.201 | attackspam | Blocked for recurring port scan. Time: Tue Dec 10. 15:44:25 2019 +0100 IP: 89.248.174.201 (NL/Netherlands/-) Temporary blocks that triggered the permanent block: Tue Dec 10 11:43:00 2019 *Port Scan* detected from 89.248.174.201 (NL/Netherlands/-). 11 hits in the last 150 seconds Tue Dec 10 12:43:23 2019 *Port Scan* detected from 89.248.174.201 (NL/Netherlands/-). 11 hits in the last 170 seconds Tue Dec 10 13:43:42 2019 *Port Scan* detected from 89.248.174.201 (NL/Netherlands/-). 11 hits in the last 185 seconds Tue Dec 10 14:44:00 2019 *Port Scan* detected from 89.248.174.201 (NL/Netherlands/-). 11 hits in the last 200 seconds Tue Dec 10 15:44:24 2019 *Port Scan* detected from 89.248.174.201 (NL/Netherlands/-). 11 hits in the last 220 seconds |
2019-12-11 06:46:15 |
| 115.238.45.162 | attackspambots | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2019-12-11 06:13:20 |
| 89.248.172.16 | attack | Port scan: Attack repeated for 24 hours |
2019-12-11 06:46:39 |
| 185.216.140.252 | attackspambots | Fail2Ban Ban Triggered |
2019-12-11 06:30:18 |
| 162.125.36.1 | attackbots | ET POLICY Dropbox.com Offsite File Backup in Use - port: 28530 proto: TCP cat: Potential Corporate Privacy Violation |
2019-12-11 06:12:07 |
| 185.156.73.21 | attackbotsspam | Dec 11 01:25:47 debian-2gb-vpn-nbg1-1 kernel: [395131.390210] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.21 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=4303 PROTO=TCP SPT=50665 DPT=47396 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-11 06:35:06 |
| 46.161.27.150 | attackbotsspam | Dec 10 23:08:42 debian-2gb-vpn-nbg1-1 kernel: [386906.814637] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=46.161.27.150 DST=78.46.192.101 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=63069 PROTO=TCP SPT=48149 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0 |
2019-12-11 06:24:37 |
| 178.211.51.222 | attackbotsspam | SIP Server BruteForce Attack |
2019-12-11 06:36:51 |
| 185.175.93.104 | attack | 12/10/2019-17:22:54.510519 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-12-11 06:33:28 |
| 154.223.136.126 | attack | ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 1000 proto: TCP cat: Attempted Information Leak |
2019-12-11 06:37:58 |