City: Tennevollen
Region: Troms og Finnmark
Country: Norway
Internet Service Provider: Telenor
Hostname: unknown
Organization: unknown
Usage Type: unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 193.213.192.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10611
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;193.213.192.42. IN A
;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 17:46:23 CST 2021
;; MSG SIZE rcvd: 43
'42.192.213.193.in-addr.arpa domain name pointer 42.192.213.193.static.cust.telenor.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
42.192.213.193.in-addr.arpa name = 42.192.213.193.static.cust.telenor.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.56.79.2 | attackbots | 2019-09-29T18:23:24.3853601495-001 sshd\[52120\]: Failed password for invalid user quincy from 103.56.79.2 port 39848 ssh2 2019-09-29T18:35:57.7310081495-001 sshd\[53101\]: Invalid user marie from 103.56.79.2 port 35393 2019-09-29T18:35:57.7340761495-001 sshd\[53101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.79.2 2019-09-29T18:35:59.7141431495-001 sshd\[53101\]: Failed password for invalid user marie from 103.56.79.2 port 35393 ssh2 2019-09-29T18:39:16.9181751495-001 sshd\[53309\]: Invalid user ying from 103.56.79.2 port 36744 2019-09-29T18:39:16.9211461495-001 sshd\[53309\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.79.2 ... |
2019-09-30 06:51:20 |
| 142.4.19.163 | attack | Automatc Report - XMLRPC Attack |
2019-09-30 06:41:26 |
| 77.88.47.31 | attackbots | port scan and connect, tcp 80 (http) |
2019-09-30 06:39:51 |
| 27.72.59.240 | attackbots | 445/tcp 445/tcp [2019-09-19/29]2pkt |
2019-09-30 06:43:41 |
| 89.163.242.239 | attack | 20 attempts against mh-misbehave-ban on milky.magehost.pro |
2019-09-30 06:50:16 |
| 5.239.68.243 | attack | Honeypot attack, port: 23, PTR: PTR record not found |
2019-09-30 06:45:14 |
| 222.186.180.6 | attackspambots | Sep 29 18:34:27 debian sshd\[8346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Sep 29 18:34:29 debian sshd\[8346\]: Failed password for root from 222.186.180.6 port 53734 ssh2 Sep 29 18:34:32 debian sshd\[8346\]: Failed password for root from 222.186.180.6 port 53734 ssh2 ... |
2019-09-30 06:38:25 |
| 185.46.171.25 | attackspam | 185.46.171.25 - - [29/Sep/2019:22:50:58 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.46.171.25 - - [29/Sep/2019:22:50:58 +0200] "POST /wp-login.php HTTP/1.1" 200 1651 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.46.171.25 - - [29/Sep/2019:22:50:59 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.46.171.25 - - [29/Sep/2019:22:50:59 +0200] "POST /wp-login.php HTTP/1.1" 200 1650 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.46.171.25 - - [29/Sep/2019:22:51:00 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.46.171.25 - - [29/Sep/2019:22:51:00 +0200] "POST /wp-login.php HTTP/1.1" 200 1631 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-09-30 06:35:47 |
| 165.22.76.39 | attackspambots | Sep 29 11:22:50 lcdev sshd\[12612\]: Invalid user web from 165.22.76.39 Sep 29 11:22:50 lcdev sshd\[12612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.76.39 Sep 29 11:22:52 lcdev sshd\[12612\]: Failed password for invalid user web from 165.22.76.39 port 46678 ssh2 Sep 29 11:26:45 lcdev sshd\[12923\]: Invalid user range from 165.22.76.39 Sep 29 11:26:45 lcdev sshd\[12923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.76.39 |
2019-09-30 06:23:46 |
| 106.12.241.109 | attack | ssh failed login |
2019-09-30 06:17:42 |
| 94.23.208.211 | attackbotsspam | Sep 30 04:06:09 areeb-Workstation sshd[22650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.208.211 Sep 30 04:06:11 areeb-Workstation sshd[22650]: Failed password for invalid user indigo from 94.23.208.211 port 55026 ssh2 ... |
2019-09-30 06:38:05 |
| 162.246.44.229 | attackspam | 7002/tcp [2019-09-29]1pkt |
2019-09-30 06:18:48 |
| 197.55.224.174 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/197.55.224.174/ EG - 1H : (71) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EG NAME ASN : ASN8452 IP : 197.55.224.174 CIDR : 197.55.224.0/19 PREFIX COUNT : 833 UNIQUE IP COUNT : 7610368 WYKRYTE ATAKI Z ASN8452 : 1H - 3 3H - 8 6H - 18 12H - 29 24H - 53 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-09-30 06:42:50 |
| 49.88.112.111 | attack | Sep 30 00:21:00 vps647732 sshd[20627]: Failed password for root from 49.88.112.111 port 58972 ssh2 Sep 30 00:21:02 vps647732 sshd[20627]: Failed password for root from 49.88.112.111 port 58972 ssh2 ... |
2019-09-30 06:29:53 |
| 185.105.238.199 | attackspam | Sep 30 01:42:32 www sshd\[34253\]: Invalid user yb from 185.105.238.199 Sep 30 01:42:32 www sshd\[34253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.105.238.199 Sep 30 01:42:33 www sshd\[34253\]: Failed password for invalid user yb from 185.105.238.199 port 42754 ssh2 ... |
2019-09-30 06:49:08 |