City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.100.42.151
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56570
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;214.100.42.151. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025052601 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 27 13:16:41 CST 2025
;; MSG SIZE rcvd: 107Host 151.42.100.214.in-addr.arpa not found: 2(SERVFAIL)
server can't find 214.100.42.151.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 93.113.134.133 | attack | (Aug 12) LEN=40 TTL=246 ID=41127 DF TCP DPT=23 WINDOW=14600 SYN (Aug 12) LEN=40 TTL=246 ID=16525 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=38490 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=38838 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=5341 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=50302 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=6016 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=26133 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=20065 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=20300 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=20981 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=21960 DF TCP DPT=23 WINDOW=14600 SYN (Aug 11) LEN=40 TTL=246 ID=55856 DF TCP DPT=23 WINDOW=14600 SYN |
2019-08-12 08:13:33 |
| 218.61.16.144 | attack | 08/11/2019-15:27:10.845391 218.61.16.144 Protocol: 6 ET SCAN Suspicious inbound to mySQL port 3306 |
2019-08-12 07:54:29 |
| 167.114.192.162 | attack | Aug 12 01:29:08 nextcloud sshd\[31157\]: Invalid user worker1 from 167.114.192.162 Aug 12 01:29:08 nextcloud sshd\[31157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.192.162 Aug 12 01:29:10 nextcloud sshd\[31157\]: Failed password for invalid user worker1 from 167.114.192.162 port 37581 ssh2 ... |
2019-08-12 07:51:25 |
| 92.222.234.228 | attackbotsspam | Aug 11 21:03:49 www1 sshd\[37711\]: Invalid user vala from 92.222.234.228Aug 11 21:03:51 www1 sshd\[37711\]: Failed password for invalid user vala from 92.222.234.228 port 47696 ssh2Aug 11 21:04:56 www1 sshd\[37775\]: Invalid user cacti from 92.222.234.228Aug 11 21:04:58 www1 sshd\[37775\]: Failed password for invalid user cacti from 92.222.234.228 port 49476 ssh2Aug 11 21:05:58 www1 sshd\[38053\]: Invalid user joe from 92.222.234.228Aug 11 21:06:00 www1 sshd\[38053\]: Failed password for invalid user joe from 92.222.234.228 port 51258 ssh2 ... |
2019-08-12 07:47:48 |
| 116.203.88.37 | attackbots | 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.203.88.37 - - [12/Aug/2019:01:45:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-08-12 08:24:24 |
| 66.249.79.121 | attackbotsspam | Automatic report - Banned IP Access |
2019-08-12 08:02:47 |
| 116.62.217.151 | attackspam | Port scan on 1 port(s): 53 |
2019-08-12 08:22:35 |
| 47.254.170.9 | attackbotsspam | Aug 11 18:23:56 localhost sshd\[79303\]: Invalid user fred from 47.254.170.9 port 58368 Aug 11 18:23:56 localhost sshd\[79303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.254.170.9 Aug 11 18:23:58 localhost sshd\[79303\]: Failed password for invalid user fred from 47.254.170.9 port 58368 ssh2 Aug 11 18:27:35 localhost sshd\[79413\]: Invalid user yale from 47.254.170.9 port 49320 Aug 11 18:27:35 localhost sshd\[79413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.254.170.9 ... |
2019-08-12 08:06:09 |
| 115.56.48.45 | attackspambots | " " |
2019-08-12 07:45:35 |
| 41.215.63.138 | attackspam | 41.215.63.138 - - [11/Aug/2019:19:05:25 +0100] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) CriOS/31.0.1650.18 Mobile/11B554a Safari/8536.25" |
2019-08-12 08:03:48 |
| 83.191.163.20 | attackbots | 23/tcp 23/tcp [2019-08-09/11]2pkt |
2019-08-12 08:14:20 |
| 218.92.0.174 | attackspam | Reported by AbuseIPDB proxy server. |
2019-08-12 08:16:03 |
| 178.128.171.243 | attackspambots | Automated report - ssh fail2ban: Aug 11 23:36:25 wrong password, user=giacomini, port=39532, ssh2 Aug 12 00:08:01 authentication failure Aug 12 00:08:03 wrong password, user=anni, port=58486, ssh2 |
2019-08-12 08:02:08 |
| 115.207.6.178 | attackbotsspam | Port Scan: TCP/21 |
2019-08-12 08:16:39 |
| 1.9.46.177 | attack | Aug 12 01:07:03 server01 sshd\[29697\]: Invalid user anne from 1.9.46.177 Aug 12 01:07:03 server01 sshd\[29697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.9.46.177 Aug 12 01:07:06 server01 sshd\[29697\]: Failed password for invalid user anne from 1.9.46.177 port 34558 ssh2 ... |
2019-08-12 08:07:51 |