City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 48.76.99.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26625
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;48.76.99.246. IN A
;; AUTHORITY SECTION:
. 301 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2021122601 1800 900 604800 86400
;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 27 06:43:12 CST 2021
;; MSG SIZE rcvd: 105Host 246.99.76.48.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 246.99.76.48.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 171.239.166.239 | attackbots | " " |
2020-02-29 01:11:50 |
| 128.199.81.66 | attackbotsspam | firewall-block, port(s): 12047/tcp |
2020-02-29 01:04:03 |
| 42.116.224.36 | attack | Port scan on 1 port(s): 23 |
2020-02-29 01:17:14 |
| 46.229.168.143 | attackbots | The IP has triggered Cloudflare WAF. CF-Ray: 56be0e37dafb9fd6 | WAF_Rule_ID: asn | WAF_Kind: firewall | CF_Action: challenge | Country: US | CF_IPClass: searchEngine | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.0 (compatible; SemrushBot/6~bl; +http://www.semrush.com/bot.html) | CF_DC: IAD. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB). |
2020-02-29 01:37:10 |
| 124.119.208.60 | attackbots | Netgear DGN Device Remote Command Execution Vulnerability |
2020-02-29 01:19:15 |
| 113.181.169.189 | attack | Unauthorized connection attempt from IP address 113.181.169.189 on Port 445(SMB) |
2020-02-29 01:05:18 |
| 145.239.139.57 | attackbotsspam | IP: 145.239.139.57
Ports affected
http protocol over TLS/SSL (443)
Abuse Confidence rating 27%
ASN Details
AS16276 OVH SAS
France (FR)
CIDR 145.239.0.0/16
Log Date: 28/02/2020 1:31:48 PM UTC |
2020-02-29 01:47:37 |
| 45.125.65.35 | attackspam | Feb 28 17:47:18 web01.agentur-b-2.de postfix/smtpd[210605]: warning: unknown[45.125.65.35]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 28 17:51:58 web01.agentur-b-2.de postfix/smtpd[210605]: warning: unknown[45.125.65.35]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 28 17:56:35 web01.agentur-b-2.de postfix/smtpd[210606]: warning: unknown[45.125.65.35]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-02-29 01:08:11 |
| 93.37.83.11 | attackbotsspam | Spammer |
2020-02-29 01:47:54 |
| 78.157.35.52 | attackspambots | Unauthorized connection attempt from IP address 78.157.35.52 on Port 445(SMB) |
2020-02-29 01:10:17 |
| 120.25.69.4 | attackbots | firewall-block, port(s): 445/tcp |
2020-02-29 01:34:29 |
| 49.7.20.96 | attackspambots | IP: 49.7.20.96
Ports affected
World Wide Web HTTP (80)
Found in DNSBL('s)
ASN Details
AS23724 IDC China Telecommunications Corporation
China (CN)
CIDR 49.7.0.0/16
Log Date: 28/02/2020 4:42:31 PM UTC |
2020-02-29 01:36:31 |
| 113.183.19.73 | attack | firewall-block, port(s): 23/tcp |
2020-02-29 01:39:17 |
| 212.95.137.242 | attack | (sshd) Failed SSH login from 212.95.137.242 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 28 18:10:07 ubnt-55d23 sshd[20438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.242 user=www-data Feb 28 18:10:09 ubnt-55d23 sshd[20438]: Failed password for www-data from 212.95.137.242 port 58926 ssh2 |
2020-02-29 01:49:15 |
| 80.38.139.178 | attackspam | firewall-block, port(s): 445/tcp |
2020-02-29 01:44:49 |