City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 53.53.175.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6056
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;53.53.175.1. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020400 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 17:06:33 CST 2025
;; MSG SIZE rcvd: 104Host 1.175.53.53.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 1.175.53.53.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 187.115.165.204 | attackbots | Probing for vulnerable services |
2019-06-23 21:41:19 |
| 208.66.72.242 | attack | 445/tcp 445/tcp 445/tcp... [2019-05-30/06-23]5pkt,1pt.(tcp) |
2019-06-23 22:27:08 |
| 122.136.51.159 | attackbotsspam | Unauthorised access (Jun 23) SRC=122.136.51.159 LEN=40 TTL=49 ID=15398 TCP DPT=23 WINDOW=45558 SYN |
2019-06-23 21:50:35 |
| 200.35.53.121 | attackbotsspam | 3389/tcp 3389/tcp [2019-06-04/23]2pkt |
2019-06-23 22:23:19 |
| 139.99.114.236 | attack | 139.99.114.236 - - \[23/Jun/2019:14:09:15 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.114.236 - - \[23/Jun/2019:14:09:16 +0200\] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.114.236 - - \[23/Jun/2019:14:09:17 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.114.236 - - \[23/Jun/2019:14:09:17 +0200\] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.114.236 - - \[23/Jun/2019:14:09:18 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.114.236 - - \[23/Jun/2019:14:09:18 +0200\] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:6 |
2019-06-23 22:07:38 |
| 67.205.162.85 | attackbots | TCP port 23 (Telnet) attempt blocked by firewall. [2019-06-23 11:55:32] |
2019-06-23 22:24:27 |
| 198.23.238.17 | attack | NAME : CC-10 CIDR : 198.23.128.0/17 | STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack USA - New York - block certain countries :) IP: 198.23.238.17 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl |
2019-06-23 22:12:19 |
| 189.45.42.138 | attackspam | Mail sent to address hacked/leaked from Last.fm |
2019-06-23 22:08:09 |
| 78.107.239.234 | attackbots | category: Fake ED Pharmacy (Viagra & Cialis) owner: "Yambo Financials" recent IP address: * Use one of the following IP addresses and change frequently. 13) 38.135.122.164 _ USA _ Foxcloud Llp / Psinet, Inc 12) 80.233.134.142 _ Latvia _ Telia Latvija SIA 11) 185.225.16.xxx _ Romania _ MivoCloud Solutions SRL 10) 94.176.188.242 _ Lithuania _ Uab Esnet 9) 95.216.17.21 _ Finland _ Hetzner Online Ag 8) 95.110.232.65 _ Italy _ Aruba S.p.a 7) 185.128.43.19 _ Swiss _ Grupo Panaglobal 15 S.a 6) 185.38.15.114 _ Netherlands _ YISP B.V 5) 185.36.81.231 _ Lithuania _ UAB Host Baltic 4) 185.24.232.154 _ Ireland _ Servebyte Dedicated Servers 3) 212.34.158.133 _ Spain _ RAN Networks S.L. 2) 78.107.239.234 _ Russia _ Corbina Telecom 1) 95.31.22.193 _ Russia _ Corbina Telecom recent domain: 2019/06/23 smartherbstore.su 2019/06/23 healingherbsmart.ru 2019/06/21 fastnaturaleshop.ru : : |
2019-06-23 21:18:03 |
| 37.24.143.134 | attackbotsspam | Jun 23 11:58:40 server sshd[15097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.24.143.134 ... |
2019-06-23 21:25:09 |
| 128.199.195.139 | attackbotsspam | 128.199.195.139 - - [23/Jun/2019:11:57:20 +0200] "POST [munged]wordpress/wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000 |
2019-06-23 22:08:28 |
| 139.59.74.143 | attackspam | Jun 23 14:04:05 rpi sshd\[14001\]: Invalid user glassfish from 139.59.74.143 port 55186 Jun 23 14:04:05 rpi sshd\[14001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jun 23 14:04:06 rpi sshd\[14001\]: Failed password for invalid user glassfish from 139.59.74.143 port 55186 ssh2 |
2019-06-23 21:25:46 |
| 5.188.210.46 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2019-06-23 21:56:28 |
| 91.99.250.192 | attackspam | 91.99.250.192 - - [23/Jun/2019:11:58:01 +0200] "GET /wp-login.php HTTP/1.1" 302 576 ... |
2019-06-23 21:42:32 |
| 138.68.59.131 | attackspambots | Automatic report - Web App Attack |
2019-06-23 22:14:34 |