City: unknown
Region: unknown
Country: Denmark
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.131.97.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1665
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;2.131.97.49. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400
;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 19:29:20 CST 2025
;; MSG SIZE rcvd: 104
49.97.131.2.in-addr.arpa domain name pointer 002131097049.mbb.telenor.dk.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
49.97.131.2.in-addr.arpa name = 002131097049.mbb.telenor.dk.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 51.15.11.70 | attack | Oct 16 13:35:41 venus sshd\[11039\]: Invalid user Ruut from 51.15.11.70 port 59008 Oct 16 13:35:41 venus sshd\[11039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.11.70 Oct 16 13:35:43 venus sshd\[11039\]: Failed password for invalid user Ruut from 51.15.11.70 port 59008 ssh2 ... |
2019-10-16 21:46:48 |
| 192.3.140.202 | attackspam | \[2019-10-16 09:45:58\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-16T09:45:58.808-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="464748323235002",SessionID="0x7fc3ac5226d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.3.140.202/5074",ACLName="no_extension_match" \[2019-10-16 09:48:19\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-16T09:48:19.462-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="316548323235002",SessionID="0x7fc3ac999078",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.3.140.202/5073",ACLName="no_extension_match" \[2019-10-16 09:50:38\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-16T09:50:38.016-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="22748323235002",SessionID="0x7fc3ac999078",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.3.140.202/5076",ACLName="no_extensi |
2019-10-16 21:58:39 |
| 45.34.147.162 | attack | Oct 15 00:54:32 carla sshd[27170]: Address 45.34.147.162 maps to unassigned.psychz.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 15 00:54:33 carla sshd[27170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.34.147.162 user=r.r Oct 15 00:54:35 carla sshd[27170]: Failed password for r.r from 45.34.147.162 port 59806 ssh2 Oct 15 00:54:35 carla sshd[27171]: Received disconnect from 45.34.147.162: 11: Bye Bye Oct 15 01:15:57 carla sshd[27333]: Address 45.34.147.162 maps to unassigned.psychz.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 15 01:15:57 carla sshd[27333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.34.147.162 user=r.r Oct 15 01:15:59 carla sshd[27333]: Failed password for r.r from 45.34.147.162 port 39319 ssh2 Oct 15 01:15:59 carla sshd[27334]: Received disconnect from 45.34.147.162: 11: Bye Bye Oct 15 01:........ ------------------------------- |
2019-10-16 21:53:29 |
| 216.218.206.117 | attack | " " |
2019-10-16 21:53:51 |
| 109.40.2.137 | attack | Chat Spam |
2019-10-16 22:13:50 |
| 88.214.26.17 | attackbotsspam | 191016 15:26:22 \[Warning\] Access denied for user 'root'@'88.214.26.17' \(using password: YES\) 191016 16:06:03 \[Warning\] Access denied for user 'root'@'88.214.26.17' \(using password: YES\) 191016 16:24:09 \[Warning\] Access denied for user 'root'@'88.214.26.17' \(using password: YES\) ... |
2019-10-16 21:40:30 |
| 139.199.29.114 | attack | Oct 16 13:36:50 localhost sshd\[31391\]: Invalid user 4321 from 139.199.29.114 port 40434 Oct 16 13:36:50 localhost sshd\[31391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.29.114 Oct 16 13:36:52 localhost sshd\[31391\]: Failed password for invalid user 4321 from 139.199.29.114 port 40434 ssh2 Oct 16 13:43:21 localhost sshd\[31601\]: Invalid user ono from 139.199.29.114 port 50904 Oct 16 13:43:21 localhost sshd\[31601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.29.114 ... |
2019-10-16 21:59:25 |
| 118.24.99.163 | attackbots | 2019-10-16T12:55:15.603503abusebot-5.cloudsearch.cf sshd\[21968\]: Invalid user robert from 118.24.99.163 port 45117 |
2019-10-16 21:41:50 |
| 189.172.79.33 | attackbotsspam | Oct 16 04:01:46 php1 sshd\[10490\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.172.79.33 user=root Oct 16 04:01:48 php1 sshd\[10490\]: Failed password for root from 189.172.79.33 port 41874 ssh2 Oct 16 04:06:47 php1 sshd\[10922\]: Invalid user aland from 189.172.79.33 Oct 16 04:06:47 php1 sshd\[10922\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.172.79.33 Oct 16 04:06:49 php1 sshd\[10922\]: Failed password for invalid user aland from 189.172.79.33 port 53774 ssh2 |
2019-10-16 22:11:50 |
| 178.254.197.242 | attackbots | Automatic report - Port Scan Attack |
2019-10-16 21:54:56 |
| 5.196.75.47 | attackbots | 2019-10-16T13:57:28.327769abusebot-7.cloudsearch.cf sshd\[3567\]: Invalid user p@ssw0rd! from 5.196.75.47 port 40628 |
2019-10-16 22:06:45 |
| 159.203.201.100 | attackbotsspam | " " |
2019-10-16 21:39:09 |
| 5.196.70.107 | attack | $f2bV_matches |
2019-10-16 21:37:51 |
| 178.249.84.26 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2019-10-16 21:45:57 |
| 129.250.206.86 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-10-16 22:03:43 |