City: unknown
Region: unknown
Country: Germany
Internet Service Provider: Telekom
Hostname: unknown
Organization: Deutsche Telekom AG
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 217.242.194.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13535
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;217.242.194.48. IN A
;; AUTHORITY SECTION:
. 616 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019081600 1800 900 604800 86400
;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 02:47:33 CST 2019
;; MSG SIZE rcvd: 118Host 48.194.242.217.in-addr.arpa. not found: 3(NXDOMAIN)Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 48.194.242.217.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 36.75.155.216 | attackspambots | Unauthorized connection attempt from IP address 36.75.155.216 on Port 445(SMB) |
2020-06-26 07:54:08 |
| 190.83.25.211 | attack | Port probing on unauthorized port 23 |
2020-06-26 07:30:01 |
| 185.118.24.122 | attack | port 23 |
2020-06-26 07:42:13 |
| 190.200.154.107 | attack | 445/tcp [2020-06-25]1pkt |
2020-06-26 07:48:49 |
| 220.134.96.190 | attack | Unauthorized connection attempt from IP address 220.134.96.190 on Port 445(SMB) |
2020-06-26 07:24:18 |
| 65.22.196.1 | attackspam | Auto report: unwanted ports scan |
2020-06-26 07:53:09 |
| 137.74.132.175 | attackspambots | 344. On Jun 25 2020 experienced a Brute Force SSH login attempt -> 4 unique times by 137.74.132.175. |
2020-06-26 07:28:45 |
| 190.2.144.45 | attack | Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-25T22:07:28Z and 2020-06-25T22:39:13Z |
2020-06-26 07:30:24 |
| 101.116.81.170 | attackbots | WordPress brute force |
2020-06-26 07:26:48 |
| 125.214.50.153 | attack | 445/tcp [2020-06-25]1pkt |
2020-06-26 07:34:24 |
| 157.245.40.76 | attackbotsspam | 157.245.40.76 - - [25/Jun/2020:21:45:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2043 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.40.76 - - [25/Jun/2020:21:45:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.40.76 - - [25/Jun/2020:21:45:12 +0100] "POST /wp-login.php HTTP/1.1" 200 2043 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-06-26 07:51:00 |
| 212.70.149.82 | attackspambots | Jun 26 01:31:59 srv01 postfix/smtpd\[23224\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 26 01:32:06 srv01 postfix/smtpd\[28511\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 26 01:32:07 srv01 postfix/smtpd\[22780\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 26 01:32:07 srv01 postfix/smtpd\[28509\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 26 01:32:29 srv01 postfix/smtpd\[28511\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-06-26 07:41:02 |
| 43.226.146.129 | attackspambots | Jun 26 01:34:37 pkdns2 sshd\[21858\]: Invalid user courses from 43.226.146.129Jun 26 01:34:39 pkdns2 sshd\[21858\]: Failed password for invalid user courses from 43.226.146.129 port 38918 ssh2Jun 26 01:37:05 pkdns2 sshd\[22006\]: Invalid user farmacia from 43.226.146.129Jun 26 01:37:07 pkdns2 sshd\[22006\]: Failed password for invalid user farmacia from 43.226.146.129 port 43270 ssh2Jun 26 01:39:38 pkdns2 sshd\[22105\]: Failed password for root from 43.226.146.129 port 47690 ssh2Jun 26 01:42:02 pkdns2 sshd\[22248\]: Invalid user pu from 43.226.146.129 ... |
2020-06-26 07:44:05 |
| 89.175.164.2 | attackspam | Unauthorized connection attempt from IP address 89.175.164.2 on Port 445(SMB) |
2020-06-26 07:54:37 |
| 103.208.220.143 | attackbotsspam | WordPress brute force |
2020-06-26 07:25:45 |