City: unknown
Region: unknown
Country: Italy
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.102.84.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64928
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;212.102.84.144. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400
;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 18:14:41 CST 2025
;; MSG SIZE rcvd: 107Host 144.84.102.212.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 144.84.102.212.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.216.140.6 | attackspam | ET DROP Dshield Block Listed Source group 1 - port: 8889 proto: TCP cat: Misc Attack |
2020-04-19 05:00:58 |
| 95.85.12.122 | attackbots | Apr 18 23:42:26 ift sshd\[33533\]: Invalid user bj from 95.85.12.122Apr 18 23:42:29 ift sshd\[33533\]: Failed password for invalid user bj from 95.85.12.122 port 14546 ssh2Apr 18 23:46:16 ift sshd\[34279\]: Invalid user testftp from 95.85.12.122Apr 18 23:46:18 ift sshd\[34279\]: Failed password for invalid user testftp from 95.85.12.122 port 36005 ssh2Apr 18 23:50:14 ift sshd\[34813\]: Failed password for root from 95.85.12.122 port 57440 ssh2 ... |
2020-04-19 05:18:14 |
| 80.82.78.104 | attack | Port Scan: Events[1] countPorts[1]: 23 .. |
2020-04-19 05:27:46 |
| 152.136.36.250 | attack | Apr 18 20:34:25 ip-172-31-61-156 sshd[27683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.36.250 Apr 18 20:34:25 ip-172-31-61-156 sshd[27683]: Invalid user s from 152.136.36.250 Apr 18 20:34:27 ip-172-31-61-156 sshd[27683]: Failed password for invalid user s from 152.136.36.250 port 52777 ssh2 Apr 18 20:38:45 ip-172-31-61-156 sshd[27947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.36.250 user=root Apr 18 20:38:47 ip-172-31-61-156 sshd[27947]: Failed password for root from 152.136.36.250 port 63248 ssh2 ... |
2020-04-19 05:10:55 |
| 192.241.235.214 | attackspambots | Port Scan: Events[1] countPorts[1]: 7473 .. |
2020-04-19 05:33:48 |
| 66.98.114.87 | attackbotsspam | 2020-04-18T22:33:09.702030 sshd[18530]: Invalid user ftpuser from 66.98.114.87 port 37142 2020-04-18T22:33:09.717102 sshd[18530]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.98.114.87 2020-04-18T22:33:09.702030 sshd[18530]: Invalid user ftpuser from 66.98.114.87 port 37142 2020-04-18T22:33:11.665367 sshd[18530]: Failed password for invalid user ftpuser from 66.98.114.87 port 37142 ssh2 ... |
2020-04-19 05:31:48 |
| 112.26.92.246 | attack | firewall-block, port(s): 1433/tcp |
2020-04-19 05:32:42 |
| 112.30.129.77 | attackspambots | Lines containing failures of 112.30.129.77 Apr 13 01:16:26 neweola postfix/smtpd[6334]: connect from unknown[112.30.129.77] Apr 13 01:16:27 neweola postfix/smtpd[6334]: lost connection after CONNECT from unknown[112.30.129.77] Apr 13 01:16:27 neweola postfix/smtpd[6334]: disconnect from unknown[112.30.129.77] commands=0/0 Apr 13 01:16:50 neweola postfix/smtpd[6337]: connect from unknown[112.30.129.77] Apr 13 01:16:50 neweola postfix/smtpd[6337]: lost connection after CONNECT from unknown[112.30.129.77] Apr 13 01:16:50 neweola postfix/smtpd[6337]: disconnect from unknown[112.30.129.77] commands=0/0 Apr 13 01:17:34 neweola postfix/smtpd[6334]: connect from unknown[112.30.129.77] Apr 13 01:17:34 neweola postfix/smtpd[6334]: lost connection after CONNECT from unknown[112.30.129.77] Apr 13 01:17:34 neweola postfix/smtpd[6334]: disconnect from unknown[112.30.129.77] commands=0/0 Apr 15 00:10:12 neweola postfix/smtpd[11868]: connect from unknown[112.30.129.77] Apr 15 00:10:14 n........ ------------------------------ |
2020-04-19 05:01:27 |
| 162.243.132.5 | attack | firewall-block, port(s): 21/tcp |
2020-04-19 05:14:12 |
| 185.175.93.6 | attackspambots | 04/18/2020-17:25:25.532522 185.175.93.6 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-04-19 05:38:06 |
| 150.107.149.11 | attackspam | firewall-block, port(s): 13111/tcp |
2020-04-19 05:22:22 |
| 37.49.230.180 | attackbotsspam | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-04-19 05:39:21 |
| 52.221.207.239 | attackbotsspam | Lines containing failures of 52.221.207.239 Apr 18 22:14:23 shared05 sshd[26766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.207.239 user=r.r Apr 18 22:14:24 shared05 sshd[26766]: Failed password for r.r from 52.221.207.239 port 44846 ssh2 Apr 18 22:14:24 shared05 sshd[26766]: Received disconnect from 52.221.207.239 port 44846:11: Bye Bye [preauth] Apr 18 22:14:24 shared05 sshd[26766]: Disconnected from authenticating user r.r 52.221.207.239 port 44846 [preauth] Apr 18 22:19:44 shared05 sshd[28936]: Invalid user pu from 52.221.207.239 port 41626 Apr 18 22:19:44 shared05 sshd[28936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.207.239 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=52.221.207.239 |
2020-04-19 05:18:44 |
| 197.51.189.195 | attackbotsspam | Port probing on unauthorized port 445 |
2020-04-19 05:04:55 |
| 103.100.210.64 | attack | " " |
2020-04-19 05:36:17 |