City: Oslo
Region: Oslo
Country: Norway
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.252.72.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20360
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;85.252.72.199. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024120901 1800 900 604800 86400
;; Query time: 168 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 12:03:02 CST 2024
;; MSG SIZE rcvd: 106199.72.252.85.in-addr.arpa domain name pointer static199.banetele-cust.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
199.72.252.85.in-addr.arpa name = static199.banetele-cust.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 13.210.177.21 | attack | Fail2Ban Ban Triggered |
2019-08-15 03:49:46 |
| 183.111.125.172 | attackspam | Aug 14 21:38:44 eventyay sshd[16593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.111.125.172 Aug 14 21:38:46 eventyay sshd[16593]: Failed password for invalid user network1 from 183.111.125.172 port 40112 ssh2 Aug 14 21:46:19 eventyay sshd[18726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.111.125.172 ... |
2019-08-15 03:52:38 |
| 112.205.68.179 | attackbotsspam | localhost 112.205.68.179 - - [14/Aug/2019:21:07:23 +0800] "GET /mysql/admin/index.php?lang=en HTTP/1.1" 404 284 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" VLOG=- localhost 112.205.68.179 - - [14/Aug/2019:21:07:23 +0800] "GET /mysql/dbadmin/index.php?lang=en HTTP/1.1" 404 286 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" VLOG=- localhost 112.205.68.179 - - [14/Aug/2019:21:07:23 +0800] "GET /mysql/sqlmanager/index.php?lang=en HTTP/1.1" 404 289 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" VLOG=- localhost 112.205.68.179 - - [14/Aug/2019:21:07:24 +0800] "GET /mysql/mysqlmanager/index.php?lang=en HTTP/1.1" 404 291 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" VLOG=- localhost 112.205.68.1 ... |
2019-08-15 03:57:09 |
| 43.250.186.150 | attackbotsspam | SMB Server BruteForce Attack |
2019-08-15 03:44:52 |
| 104.248.10.36 | attackbots | C1,WP GET /suche/wp-login.php |
2019-08-15 04:19:29 |
| 89.133.103.216 | attackbotsspam | Aug 14 17:22:05 MK-Soft-VM5 sshd\[20816\]: Invalid user b from 89.133.103.216 port 47184 Aug 14 17:22:05 MK-Soft-VM5 sshd\[20816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.133.103.216 Aug 14 17:22:07 MK-Soft-VM5 sshd\[20816\]: Failed password for invalid user b from 89.133.103.216 port 47184 ssh2 ... |
2019-08-15 04:07:54 |
| 181.117.123.94 | attackspam | Automatic report - Port Scan Attack |
2019-08-15 04:18:58 |
| 185.24.235.146 | attackbots | Aug 14 14:41:43 XXX sshd[6266]: Invalid user testadmin from 185.24.235.146 port 40050 |
2019-08-15 03:58:47 |
| 191.184.12.198 | attackspambots | fail2ban |
2019-08-15 03:47:26 |
| 91.221.109.251 | attackspambots | Invalid user aba from 91.221.109.251 port 32857 |
2019-08-15 04:06:19 |
| 31.172.80.89 | attack | Aug 14 14:54:53 XXX sshd[6965]: Invalid user mhlee from 31.172.80.89 port 60482 |
2019-08-15 04:12:09 |
| 188.64.78.226 | attackbots | Aug 14 20:00:50 dedicated sshd[18303]: Invalid user javed from 188.64.78.226 port 40326 |
2019-08-15 04:00:17 |
| 36.103.245.31 | attackbotsspam | Aug 14 15:32:54 webmail sshd\[40490\]: Invalid user gamer from 36.103.245.31Aug 14 15:32:57 webmail sshd\[40490\]: Failed password for invalid user gamer from 36.103.245.31 port 40684 ssh2Aug 14 15:52:03 webmail sshd\[38921\]: Invalid user gnbc from 36.103.245.31Aug 14 15:52:05 webmail sshd\[38921\]: Failed password for invalid user gnbc from 36.103.245.31 port 34850 ssh2Aug 14 15:53:54 webmail sshd\[1735\]: Invalid user debbie from 36.103.245.31Aug 14 15:53:56 webmail sshd\[1735\]: Failed password for invalid user debbie from 36.103.245.31 port 51390 ssh2Aug 14 15:55:46 webmail sshd\[4927\]: Invalid user julia from 36.103.245.31Aug 14 15:55:48 webmail sshd\[4927\]: Failed password for invalid user julia from 36.103.245.31 port 39698 ssh2Aug 14 15:57:32 webmail sshd\[8209\]: Invalid user pgbouncer from 36.103.245.31Aug 14 15:57:34 webmail sshd\[8209\]: Failed password for invalid user pgbouncer from 36.103.245.31 port 56238 ssh2Aug 14 15:59:21 webmail sshd\[11629\]: Invalid user anthon ... |
2019-08-15 04:18:00 |
| 108.62.202.220 | attackspam | Splunk® : port scan detected: Aug 14 15:30:39 testbed kernel: Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=108.62.202.220 DST=104.248.11.191 LEN=40 TOS=0x08 PREC=0x20 TTL=244 ID=54321 PROTO=TCP SPT=59329 DPT=985 WINDOW=65535 RES=0x00 SYN URGP=0 |
2019-08-15 03:45:40 |
| 200.37.95.43 | attackspam | 2019-08-14T15:13:21.093036Z a24eba3e15e5 New connection: 200.37.95.43:51988 (172.17.0.3:2222) [session: a24eba3e15e5] 2019-08-14T15:32:11.629875Z b635a1953a27 New connection: 200.37.95.43:58508 (172.17.0.3:2222) [session: b635a1953a27] |
2019-08-15 03:51:44 |