City: unknown
Region: unknown
Country: Multicast Address
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 239.72.75.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36555
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;239.72.75.149. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020601 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 04:43:45 CST 2025
;; MSG SIZE rcvd: 106Host 149.75.72.239.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 149.75.72.239.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 78.188.222.90 | attackspambots | postfix (unknown user, SPF fail or relay access denied) |
2019-10-30 15:38:35 |
| 196.13.207.52 | attack | Oct 30 04:47:50 ovpn sshd\[26547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.13.207.52 user=root Oct 30 04:47:52 ovpn sshd\[26547\]: Failed password for root from 196.13.207.52 port 38672 ssh2 Oct 30 05:02:20 ovpn sshd\[29334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.13.207.52 user=root Oct 30 05:02:22 ovpn sshd\[29334\]: Failed password for root from 196.13.207.52 port 39426 ssh2 Oct 30 05:06:35 ovpn sshd\[30157\]: Invalid user oper from 196.13.207.52 Oct 30 05:06:35 ovpn sshd\[30157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.13.207.52 |
2019-10-30 15:01:50 |
| 191.9.182.127 | attackspambots | Oct 30 04:51:56 arianus sshd\[4381\]: Invalid user admin from 191.9.182.127 port 38418 ... |
2019-10-30 15:31:53 |
| 187.217.199.20 | attackspambots | Oct 30 07:23:52 work-partkepr sshd\[12781\]: Invalid user common from 187.217.199.20 port 55398 Oct 30 07:23:52 work-partkepr sshd\[12781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.217.199.20 ... |
2019-10-30 15:38:18 |
| 43.252.159.78 | attackspambots | Unauthorized connection attempt from IP address 43.252.159.78 on Port 445(SMB) |
2019-10-30 15:37:11 |
| 145.131.32.100 | attack | 1433/tcp 445/tcp... [2019-09-01/10-30]15pkt,2pt.(tcp) |
2019-10-30 15:06:00 |
| 104.168.167.192 | attack | Fail2Ban Ban Triggered |
2019-10-30 15:06:41 |
| 62.234.152.96 | attackbots | Oct 29 09:31:49 server sshd\[26377\]: Failed password for invalid user pi from 62.234.152.96 port 57272 ssh2 Oct 30 06:43:38 server sshd\[9598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.152.96 user=root Oct 30 06:43:40 server sshd\[9598\]: Failed password for root from 62.234.152.96 port 39354 ssh2 Oct 30 06:52:01 server sshd\[11754\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.152.96 user=root Oct 30 06:52:03 server sshd\[11754\]: Failed password for root from 62.234.152.96 port 35882 ssh2 ... |
2019-10-30 15:26:46 |
| 89.187.164.157 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/89.187.164.157/ HK - 1H : (21) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN60068 IP : 89.187.164.157 CIDR : 89.187.164.0/24 PREFIX COUNT : 83 UNIQUE IP COUNT : 32768 ATTACKS DETECTED ASN60068 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 2 DateTime : 2019-10-30 04:52:20 INFO : Looking for resource vulnerabilities 403 Detected and Blocked by ADMIN - data recovery |
2019-10-30 15:16:58 |
| 103.56.62.161 | attackbotsspam | 3433/tcp 3341/tcp 14330/tcp... [2019-10-19/30]7pkt,5pt.(tcp) |
2019-10-30 15:18:17 |
| 185.11.204.34 | attack | 185.11.204.34 - - [30/Oct/2019:15:27:58 +0800] "POST /check-ip/194.78.11.42 HTTP/1.1" 400 142 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.17 (KHTML, like Gecko) Chrome/24.0.1312.27 Safari/537.17" 185.11.204.34 - - [30/Oct/2019:15:28:04 +0800] "POST /check-ip/194.78.11.42 HTTP/1.1" 400 142 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.17 (KHTML, like Gecko) Chrome/24.0.1312.27 Safari/537.17" 185.11.204.34 - - [30/Oct/2019:15:28:10 +0800] "POST /check-ip/194.78.11.42 HTTP/1.1" 400 142 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.17 (KHTML, like Gecko) Chrome/24.0.1312.27 Safari/537.17" 185.11.204.34 - - [30/Oct/2019:15:28:17 +0800] "POST /check-ip/194.78.11.42 HTTP/1.1" 400 142 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.17 (KHTML, like Gecko) Chrome/24.0.1312.27 Safari/537.17" 185.11.204.34 - - [30/Oct/2019:15:28:25 +0800] "POST /check-ip/194.78.11.42 HTTP/1.1" 400 142 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.17 (KHTML, like Gecko) Chrome/24.0.1312.27 Safari/537.17" |
2019-10-30 15:30:14 |
| 201.222.94.202 | attackspam | 445/tcp 445/tcp 445/tcp [2019-10-23/30]3pkt |
2019-10-30 15:32:42 |
| 182.72.0.250 | attackspam | Oct 30 07:03:44 nextcloud sshd\[21990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.72.0.250 user=root Oct 30 07:03:46 nextcloud sshd\[21990\]: Failed password for root from 182.72.0.250 port 38534 ssh2 Oct 30 07:09:00 nextcloud sshd\[27927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.72.0.250 user=root ... |
2019-10-30 15:39:42 |
| 51.37.83.104 | attackbots | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/51.37.83.104/ IE - 1H : (5) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IE NAME ASN : ASN15502 IP : 51.37.83.104 CIDR : 51.37.64.0/18 PREFIX COUNT : 29 UNIQUE IP COUNT : 468992 ATTACKS DETECTED ASN15502 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 3 DateTime : 2019-10-30 07:37:43 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery |
2019-10-30 15:41:44 |
| 96.45.179.236 | attackbots | 2019-10-30T07:09:08.327391abusebot-4.cloudsearch.cf sshd\[30573\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.45.179.236.16clouds.com user=root |
2019-10-30 15:18:44 |