City: unknown
Region: unknown
Country: Norway
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.167.94.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58298
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;81.167.94.241. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012100 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 21 23:59:15 CST 2025
;; MSG SIZE rcvd: 106
241.94.167.81.in-addr.arpa domain name pointer 241.81-167-94.customer.lyse.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
241.94.167.81.in-addr.arpa name = 241.81-167-94.customer.lyse.net.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 218.68.45.174 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-11-02 18:55:38 |
| 209.17.96.58 | attack | port scan and connect, tcp 8081 (blackice-icecap) |
2019-11-02 19:11:20 |
| 41.220.13.103 | attackbotsspam | Nov 1 18:40:48 tdfoods sshd\[10832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=goga.data.co.ug user=root Nov 1 18:40:50 tdfoods sshd\[10832\]: Failed password for root from 41.220.13.103 port 42300 ssh2 Nov 1 18:45:39 tdfoods sshd\[11216\]: Invalid user operator from 41.220.13.103 Nov 1 18:45:39 tdfoods sshd\[11216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=goga.data.co.ug Nov 1 18:45:40 tdfoods sshd\[11216\]: Failed password for invalid user operator from 41.220.13.103 port 53120 ssh2 |
2019-11-02 19:07:52 |
| 159.203.201.150 | attackspam | Port scan: Attack repeated for 24 hours |
2019-11-02 19:17:01 |
| 157.230.240.34 | attackbots | Invalid user ts3 from 157.230.240.34 port 53092 |
2019-11-02 19:15:14 |
| 179.104.219.150 | attackspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/179.104.219.150/ BR - 1H : (399) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN53006 IP : 179.104.219.150 CIDR : 179.104.0.0/16 PREFIX COUNT : 15 UNIQUE IP COUNT : 599808 ATTACKS DETECTED ASN53006 : 1H - 2 3H - 6 6H - 6 12H - 8 24H - 15 DateTime : 2019-11-02 06:15:01 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-02 19:08:44 |
| 37.203.208.3 | attack | Nov 2 06:52:38 tux-35-217 sshd\[32464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.203.208.3 user=root Nov 2 06:52:39 tux-35-217 sshd\[32464\]: Failed password for root from 37.203.208.3 port 37318 ssh2 Nov 2 06:56:46 tux-35-217 sshd\[32471\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.203.208.3 user=root Nov 2 06:56:48 tux-35-217 sshd\[32471\]: Failed password for root from 37.203.208.3 port 48482 ssh2 ... |
2019-11-02 19:06:11 |
| 45.141.84.38 | attackbots | 2019-11-02T10:48:46.206631mail01 postfix/smtpd[14600]: warning: unknown[45.141.84.38]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-02T10:49:02.279296mail01 postfix/smtpd[21950]: warning: unknown[45.141.84.38]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-02T10:52:30.440655mail01 postfix/smtpd[23727]: warning: unknown[45.141.84.38]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-02 19:03:33 |
| 159.203.201.12 | attackspam | Port scan: Attack repeated for 24 hours |
2019-11-02 19:18:43 |
| 45.172.171.250 | attackbotsspam | 23/tcp 23/tcp 23/tcp [2019-10-07/11-02]3pkt |
2019-11-02 19:30:17 |
| 170.106.7.216 | attack | Nov 2 10:50:39 localhost sshd\[26850\]: Invalid user support from 170.106.7.216 port 50348 Nov 2 10:50:39 localhost sshd\[26850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.7.216 Nov 2 10:50:41 localhost sshd\[26850\]: Failed password for invalid user support from 170.106.7.216 port 50348 ssh2 |
2019-11-02 18:57:47 |
| 183.30.201.16 | attackspam | Port 1433 Scan |
2019-11-02 19:27:10 |
| 217.69.7.254 | attackbotsspam | Port 1433 Scan |
2019-11-02 18:57:15 |
| 185.26.99.105 | attackspam | slow and persistent scanner |
2019-11-02 18:54:41 |
| 189.130.40.39 | attackbots | Automatic report - Port Scan Attack |
2019-11-02 19:30:42 |