City: unknown
Region: unknown
Country: United States
Internet Service Provider: Charter Communications Inc
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attack | Port Scan: UDP/1234 |
2019-09-03 02:55:36 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.48.49.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56459
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.48.49.221. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019090201 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 03 02:55:31 CST 2019
;; MSG SIZE rcvd: 116221.49.48.45.in-addr.arpa domain name pointer cpe-45-48-49-221.socal.res.rr.com.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
221.49.48.45.in-addr.arpa name = cpe-45-48-49-221.socal.res.rr.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 222.186.173.215 | attackspambots | Jun 10 14:25:37 firewall sshd[6122]: Failed password for root from 222.186.173.215 port 50204 ssh2 Jun 10 14:25:41 firewall sshd[6122]: Failed password for root from 222.186.173.215 port 50204 ssh2 Jun 10 14:25:44 firewall sshd[6122]: Failed password for root from 222.186.173.215 port 50204 ssh2 ... |
2020-06-11 01:27:06 |
| 187.176.188.98 | attackbots | Port probing on unauthorized port 23 |
2020-06-11 01:36:22 |
| 142.93.112.41 | attackbotsspam | firewall-block, port(s): 30117/tcp |
2020-06-11 01:15:45 |
| 165.22.93.7 | attackbots | Invalid user ynwang from 165.22.93.7 port 42802 |
2020-06-11 01:22:23 |
| 190.120.249.17 | attack | Honeypot attack, port: 445, PTR: 190-120-249-17.tvcablelitoral.com. |
2020-06-11 00:55:52 |
| 92.118.161.13 | attackbotsspam | Fail2Ban Ban Triggered |
2020-06-11 01:18:10 |
| 190.85.50.62 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-06-11 01:25:14 |
| 92.118.161.29 | attackspambots | Jun 11 01:04:20 localhost sshd[3475279]: Connection closed by 92.118.161.29 port 48683 [preauth] ... |
2020-06-11 01:14:09 |
| 193.56.28.205 | attackspambots | smtp auth brute force |
2020-06-11 01:35:52 |
| 36.235.131.153 | attack | Honeypot attack, port: 445, PTR: 36-235-131-153.dynamic-ip.hinet.net. |
2020-06-11 01:09:42 |
| 192.241.249.53 | attackbots | SSH brute-force: detected 3 distinct username(s) / 13 distinct password(s) within a 24-hour window. |
2020-06-11 01:12:57 |
| 103.244.245.254 | attackbots | Honeypot attack, port: 445, PTR: PTR record not found |
2020-06-11 01:04:16 |
| 113.59.224.45 | attackbots | Brute-force attempt banned |
2020-06-11 01:07:04 |
| 92.63.197.61 | attackbotsspam | 06/10/2020-10:15:58.262151 92.63.197.61 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-06-11 01:05:39 |
| 106.13.133.190 | attackbots | Jun 10 12:52:02 server sshd[8319]: Failed password for invalid user xn from 106.13.133.190 port 50306 ssh2 Jun 10 12:55:19 server sshd[10970]: Failed password for invalid user raffaele from 106.13.133.190 port 41320 ssh2 Jun 10 12:58:36 server sshd[13504]: Failed password for invalid user jzapata from 106.13.133.190 port 60562 ssh2 |
2020-06-11 01:01:33 |