City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 215.249.138.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32115
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;215.249.138.216. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025031201 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 13 06:12:58 CST 2025
;; MSG SIZE rcvd: 108Host 216.138.249.215.in-addr.arpa not found: 2(SERVFAIL)
server can't find 215.249.138.216.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 189.3.152.194 | attackbots | ssh brute force |
2019-11-04 18:14:07 |
| 201.32.178.190 | attack | Nov 4 04:58:07 debian sshd\[17015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.32.178.190 user=root Nov 4 04:58:10 debian sshd\[17015\]: Failed password for root from 201.32.178.190 port 59491 ssh2 Nov 4 05:07:20 debian sshd\[17051\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.32.178.190 user=root ... |
2019-11-04 18:19:48 |
| 35.189.253.58 | attack | ET SCAN Suspicious inbound to mySQL port 3306 - port: 3306 proto: TCP cat: Potentially Bad Traffic |
2019-11-04 18:18:20 |
| 156.194.130.10 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/156.194.130.10/ EG - 1H : (39) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EG NAME ASN : ASN8452 IP : 156.194.130.10 CIDR : 156.194.128.0/19 PREFIX COUNT : 833 UNIQUE IP COUNT : 7610368 ATTACKS DETECTED ASN8452 : 1H - 1 3H - 3 6H - 7 12H - 14 24H - 34 DateTime : 2019-11-04 07:26:36 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery |
2019-11-04 18:14:54 |
| 94.177.224.127 | attack | Nov 4 09:11:06 server sshd\[24941\]: Invalid user admin from 94.177.224.127 Nov 4 09:11:06 server sshd\[24941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.224.127 Nov 4 09:11:08 server sshd\[24941\]: Failed password for invalid user admin from 94.177.224.127 port 57702 ssh2 Nov 4 09:26:58 server sshd\[28965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.224.127 user=root Nov 4 09:27:00 server sshd\[28965\]: Failed password for root from 94.177.224.127 port 47804 ssh2 ... |
2019-11-04 18:02:34 |
| 81.22.45.116 | attackbots | Nov 4 10:54:35 h2177944 kernel: \[5736941.949317\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.116 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=15696 PROTO=TCP SPT=47923 DPT=43738 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 4 10:57:31 h2177944 kernel: \[5737118.104140\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.116 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=23861 PROTO=TCP SPT=47923 DPT=44001 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 4 10:57:47 h2177944 kernel: \[5737134.567498\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.116 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=23100 PROTO=TCP SPT=47923 DPT=43768 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 4 10:59:09 h2177944 kernel: \[5737216.123513\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.116 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=26652 PROTO=TCP SPT=47923 DPT=44250 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 4 11:10:57 h2177944 kernel: \[5737923.791706\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.116 DST=85.214.117.9 |
2019-11-04 18:20:04 |
| 178.128.85.156 | attack | SSH/22 MH Probe, BF, Hack - |
2019-11-04 18:27:48 |
| 201.182.223.59 | attack | Fail2Ban Ban Triggered |
2019-11-04 18:30:13 |
| 209.177.94.56 | attackbots | Nov 4 10:48:19 localhost sshd\[29532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.177.94.56 user=root Nov 4 10:48:21 localhost sshd\[29532\]: Failed password for root from 209.177.94.56 port 49744 ssh2 Nov 4 10:48:23 localhost sshd\[29532\]: Failed password for root from 209.177.94.56 port 49744 ssh2 |
2019-11-04 17:55:31 |
| 106.13.49.233 | attackbotsspam | Nov 4 17:02:34 webhost01 sshd[19338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.49.233 Nov 4 17:02:36 webhost01 sshd[19338]: Failed password for invalid user temp from 106.13.49.233 port 33834 ssh2 ... |
2019-11-04 18:03:16 |
| 58.87.124.196 | attackspambots | k+ssh-bruteforce |
2019-11-04 18:02:47 |
| 197.159.3.45 | attackspam | Nov 3 20:20:36 web1 sshd\[4517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.159.3.45 user=root Nov 3 20:20:38 web1 sshd\[4517\]: Failed password for root from 197.159.3.45 port 43814 ssh2 Nov 3 20:23:56 web1 sshd\[4807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.159.3.45 user=root Nov 3 20:23:58 web1 sshd\[4807\]: Failed password for root from 197.159.3.45 port 56686 ssh2 Nov 3 20:27:09 web1 sshd\[5090\]: Invalid user cstrike from 197.159.3.45 Nov 3 20:27:09 web1 sshd\[5090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.159.3.45 |
2019-11-04 17:56:15 |
| 180.106.83.17 | attack | Nov 4 10:34:08 icinga sshd[6254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.106.83.17 Nov 4 10:34:10 icinga sshd[6254]: Failed password for invalid user 7654321 from 180.106.83.17 port 48842 ssh2 ... |
2019-11-04 18:13:21 |
| 91.121.172.194 | attack | 5x Failed Password |
2019-11-04 18:13:01 |
| 142.93.57.62 | attackbots | SSH invalid-user multiple login try |
2019-11-04 18:19:11 |