City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.214.48.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63609
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.214.48.243. IN A
;; AUTHORITY SECTION:
. 342 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020091500 1800 900 604800 86400
;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 15 18:23:00 CST 2020
;; MSG SIZE rcvd: 116Host 243.48.214.2.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 243.48.214.2.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 196.29.186.6 | attackbots | Unauthorized connection attempt from IP address 196.29.186.6 on Port 445(SMB) |
2020-03-09 07:53:06 |
| 185.137.233.164 | attack | Mar 9 00:24:22 debian-2gb-nbg1-2 kernel: \[5969016.198448\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.137.233.164 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=5203 PROTO=TCP SPT=48214 DPT=14992 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-09 07:51:25 |
| 218.38.4.153 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/218.38.4.153/ KR - 1H : (7) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN9318 IP : 218.38.4.153 CIDR : 218.38.0.0/18 PREFIX COUNT : 2487 UNIQUE IP COUNT : 14360064 ATTACKS DETECTED ASN9318 : 1H - 3 3H - 3 6H - 3 12H - 3 24H - 3 DateTime : 2020-03-08 22:31:41 INFO : DNS DENIED Scan Detected and Blocked by ADMIN - data recovery |
2020-03-09 07:41:35 |
| 74.136.37.178 | attackspambots | Unauthorized connection attempt from IP address 74.136.37.178 on Port 445(SMB) |
2020-03-09 07:44:23 |
| 103.139.45.215 | attackspam | Unauthorized connection attempt from IP address 103.139.45.215 on Port 3389(RDP) |
2020-03-09 07:32:18 |
| 94.28.112.165 | attackbotsspam | Unauthorized connection attempt from IP address 94.28.112.165 on Port 445(SMB) |
2020-03-09 07:34:29 |
| 122.97.216.52 | attackbots | 1433/tcp 1433/tcp [2020-01-31/03-08]2pkt |
2020-03-09 07:42:30 |
| 192.241.222.126 | attackbots | SSH-bruteforce attempts |
2020-03-09 07:47:25 |
| 49.88.112.112 | attackbots | Mar 9 00:32:45 jane sshd[3925]: Failed password for root from 49.88.112.112 port 60106 ssh2 Mar 9 00:32:47 jane sshd[3925]: Failed password for root from 49.88.112.112 port 60106 ssh2 ... |
2020-03-09 07:46:15 |
| 51.161.34.34 | attackspam | Mar 8 12:55:30 server sshd\[9006\]: Failed password for invalid user admin from 51.161.34.34 port 56608 ssh2 Mar 9 01:15:14 server sshd\[22138\]: Invalid user fake from 51.161.34.34 Mar 9 01:15:14 server sshd\[22138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.ip-51-161-34.net Mar 9 01:15:16 server sshd\[22138\]: Failed password for invalid user fake from 51.161.34.34 port 51310 ssh2 Mar 9 01:15:17 server sshd\[22141\]: Invalid user ubnt from 51.161.34.34 Mar 9 01:15:17 server sshd\[22141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.ip-51-161-34.net ... |
2020-03-09 07:55:55 |
| 95.124.149.153 | attack | Scan detected and blocked 2020.03.08 22:31:31 |
2020-03-09 07:58:18 |
| 187.102.51.151 | attackbots | DATE:2020-03-08 22:28:58, IP:187.102.51.151, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-03-09 07:31:05 |
| 46.201.229.122 | attackbotsspam | 1433/tcp 445/tcp... [2020-01-20/03-08]6pkt,2pt.(tcp) |
2020-03-09 07:30:50 |
| 78.85.20.218 | attack | Unauthorized connection attempt from IP address 78.85.20.218 on Port 445(SMB) |
2020-03-09 08:07:10 |
| 195.2.92.151 | attackbotsspam | 5498/tcp [2020-03-08]1pkt |
2020-03-09 08:09:59 |