City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.27.161.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40625
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;81.27.161.149. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 17:46:21 CST 2025
;; MSG SIZE rcvd: 106Host 149.161.27.81.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 149.161.27.81.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 42.119.231.211 | attackspam | 1596457240 - 08/03/2020 14:20:40 Host: 42.119.231.211/42.119.231.211 Port: 445 TCP Blocked |
2020-08-04 02:54:55 |
| 191.47.60.182 | attack | 191.47.60.182 - - [03/Aug/2020:14:07:34 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 191.47.60.182 - - [03/Aug/2020:14:07:36 +0100] "POST /wp-login.php HTTP/1.1" 200 5695 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 191.47.60.182 - - [03/Aug/2020:14:19:34 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ... |
2020-08-04 02:53:07 |
| 134.209.102.130 | attackbotsspam | Aug 3 14:20:37 debian-2gb-nbg1-2 kernel: \[18715708.698407\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.209.102.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=14318 PROTO=TCP SPT=57050 DPT=7203 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-08-04 02:55:14 |
| 94.191.107.157 | attackbotsspam | Aug 3 12:20:51 *** sshd[7743]: User root from 94.191.107.157 not allowed because not listed in AllowUsers |
2020-08-04 02:44:19 |
| 45.132.193.18 | attackspam | Referer Spam |
2020-08-04 02:33:51 |
| 176.74.89.129 | attackbots | firewall-block, port(s): 445/tcp |
2020-08-04 03:05:25 |
| 111.229.227.184 | attackspambots | Aug 3 16:34:08 IngegnereFirenze sshd[17799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.227.184 user=root ... |
2020-08-04 02:32:36 |
| 190.132.245.117 | attackspambots | Email rejected due to spam filtering |
2020-08-04 03:06:37 |
| 24.165.33.38 | attack | Brute-Force reported by Fail2Ban |
2020-08-04 03:00:17 |
| 124.156.196.246 | attack | [Sat Jul 25 08:19:48 2020] - DDoS Attack From IP: 124.156.196.246 Port: 48518 |
2020-08-04 02:57:34 |
| 154.113.1.142 | attack | 154.113.1.142 (NG/Nigeria/-), 12 distributed sshd attacks on account [root] in the last 3600 secs |
2020-08-04 02:34:20 |
| 159.117.78.254 | attackspambots | IP 159.117.78.254 attacked honeypot on port: 5555 at 8/3/2020 5:19:39 AM |
2020-08-04 03:04:44 |
| 178.62.187.136 | attackbotsspam | 2020-08-03T13:28:00.459209hostname sshd[68340]: Failed password for root from 178.62.187.136 port 59882 ssh2 ... |
2020-08-04 02:48:47 |
| 113.89.12.21 | attackbots | Aug 3 14:15:02 v22019038103785759 sshd\[10424\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.89.12.21 user=root Aug 3 14:15:04 v22019038103785759 sshd\[10424\]: Failed password for root from 113.89.12.21 port 39722 ssh2 Aug 3 14:18:13 v22019038103785759 sshd\[10507\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.89.12.21 user=root Aug 3 14:18:16 v22019038103785759 sshd\[10507\]: Failed password for root from 113.89.12.21 port 56182 ssh2 Aug 3 14:20:58 v22019038103785759 sshd\[10562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.89.12.21 user=root ... |
2020-08-04 02:40:28 |
| 69.58.1.30 | attackbotsspam | Registration form abuse |
2020-08-04 02:58:03 |