City: unknown
Region: unknown
Country: Colombia
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.245.4.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34257
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;201.245.4.102. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022001 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 07:47:24 CST 2025
;; MSG SIZE rcvd: 106
102.4.245.201.in-addr.arpa domain name pointer static-201-245-4-102.static.etb.net.co.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
102.4.245.201.in-addr.arpa name = static-201-245-4-102.static.etb.net.co.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 183.131.113.141 | attack | 183.131.113.141 - - \[12/Apr/2020:05:56:55 +0200\] "GET http://api.gxout.com/proxy/check.aspx HTTP/1.1" 400 666 "http://api.gxout.com/proxy/check.aspx" "Mozilla/4.0 \(compatible\; MSIE 6.0\; Windows NT 5.1\)" ... |
2020-04-12 13:36:25 |
| 210.158.48.28 | attack | Apr 12 06:45:18 localhost sshd\[1107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.158.48.28 user=root Apr 12 06:45:20 localhost sshd\[1107\]: Failed password for root from 210.158.48.28 port 38726 ssh2 Apr 12 06:49:27 localhost sshd\[1225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.158.48.28 user=root Apr 12 06:49:30 localhost sshd\[1225\]: Failed password for root from 210.158.48.28 port 40777 ssh2 Apr 12 06:53:39 localhost sshd\[1534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.158.48.28 user=root ... |
2020-04-12 13:26:38 |
| 222.186.175.202 | attack | Apr 12 01:23:31 NPSTNNYC01T sshd[24871]: Failed password for root from 222.186.175.202 port 63448 ssh2 Apr 12 01:23:34 NPSTNNYC01T sshd[24871]: Failed password for root from 222.186.175.202 port 63448 ssh2 Apr 12 01:23:37 NPSTNNYC01T sshd[24871]: Failed password for root from 222.186.175.202 port 63448 ssh2 Apr 12 01:23:41 NPSTNNYC01T sshd[24871]: Failed password for root from 222.186.175.202 port 63448 ssh2 ... |
2020-04-12 13:24:29 |
| 185.53.88.102 | attack | 185.53.88.102 was recorded 8 times by 8 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 8, 16, 251 |
2020-04-12 13:34:43 |
| 49.233.142.45 | attack | Port scan detected on ports: 1433[TCP], 1433[TCP], 1433[TCP] |
2020-04-12 13:23:06 |
| 196.74.110.1 | spam | Used to hack accounts |
2020-04-12 13:29:14 |
| 141.98.81.138 | attackbotsspam | Apr 12 05:56:52 debian64 sshd[17333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.138 Apr 12 05:56:54 debian64 sshd[17333]: Failed password for invalid user admin from 141.98.81.138 port 61298 ssh2 ... |
2020-04-12 13:38:40 |
| 119.29.227.108 | attackbots | Apr 12 00:57:12 firewall sshd[17019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.227.108 Apr 12 00:57:12 firewall sshd[17019]: Invalid user alistair from 119.29.227.108 Apr 12 00:57:14 firewall sshd[17019]: Failed password for invalid user alistair from 119.29.227.108 port 34622 ssh2 ... |
2020-04-12 13:25:55 |
| 112.35.62.225 | attackspambots | $f2bV_matches |
2020-04-12 13:48:59 |
| 80.244.179.6 | attackspambots | Apr 12 07:19:40 host01 sshd[18805]: Failed password for root from 80.244.179.6 port 50618 ssh2 Apr 12 07:23:09 host01 sshd[19406]: Failed password for root from 80.244.179.6 port 49100 ssh2 ... |
2020-04-12 13:29:31 |
| 14.18.107.61 | attack | Invalid user odoo from 14.18.107.61 port 38886 |
2020-04-12 13:32:42 |
| 175.158.233.140 | attack | IP has been reported several times for Honeypot attack, port: 445, Scanning random ports - tries to find possible vulnerable services, Unauthorized connection attempt from IP address 175.158.233.140 on Port 445(SMB) and trying to hack Google accounts |
2020-04-12 13:12:41 |
| 179.127.36.110 | attackspambots | Invalid user rakd from 179.127.36.110 port 53032 |
2020-04-12 13:43:56 |
| 114.67.75.133 | attackbotsspam | Automatic report - SSH Brute-Force Attack |
2020-04-12 13:37:32 |
| 64.225.75.103 | attackspam | Unauthorized connection attempt detected, IP banned. |
2020-04-12 13:33:29 |