City: unknown
Region: unknown
Country: Romania
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 86.106.27.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23688
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;86.106.27.121. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022800 1800 900 604800 86400
;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 14:53:43 CST 2025
;; MSG SIZE rcvd: 106121.27.106.86.in-addr.arpa domain name pointer 86-106-27-121-static.dcn.ro.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
121.27.106.86.in-addr.arpa name = 86-106-27-121-static.dcn.ro.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.209.0.17 | attack | Sep 14 08:26:21 h2177944 kernel: \[1318849.789272\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.17 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=48669 PROTO=TCP SPT=43175 DPT=5639 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 08:37:25 h2177944 kernel: \[1319513.679399\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.17 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=35218 PROTO=TCP SPT=43175 DPT=5675 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 08:43:12 h2177944 kernel: \[1319860.577572\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.17 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=4818 PROTO=TCP SPT=43175 DPT=5603 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 08:44:50 h2177944 kernel: \[1319959.150797\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.17 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=42707 PROTO=TCP SPT=43175 DPT=5666 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 08:53:50 h2177944 kernel: \[1320499.050022\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.17 DST=85.214.117.9 LEN=4 |
2019-09-14 15:01:53 |
| 58.254.132.239 | attackspam | ssh intrusion attempt |
2019-09-14 15:29:00 |
| 139.59.87.250 | attack | Sep 14 02:48:31 ny01 sshd[6175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.87.250 Sep 14 02:48:33 ny01 sshd[6175]: Failed password for invalid user tamonash from 139.59.87.250 port 46970 ssh2 Sep 14 02:53:52 ny01 sshd[7174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.87.250 |
2019-09-14 15:01:19 |
| 14.18.100.90 | attackspam | Sep 13 21:19:26 tdfoods sshd\[27717\]: Invalid user gregory from 14.18.100.90 Sep 13 21:19:26 tdfoods sshd\[27717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.100.90 Sep 13 21:19:28 tdfoods sshd\[27717\]: Failed password for invalid user gregory from 14.18.100.90 port 56384 ssh2 Sep 13 21:24:32 tdfoods sshd\[28198\]: Invalid user nareng from 14.18.100.90 Sep 13 21:24:32 tdfoods sshd\[28198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.100.90 |
2019-09-14 15:32:32 |
| 162.252.58.251 | attackbots | Port Scan: TCP/445 |
2019-09-14 14:39:48 |
| 49.88.112.112 | attackbotsspam | Sep 14 08:52:49 minden010 sshd[24078]: Failed password for root from 49.88.112.112 port 17738 ssh2 Sep 14 08:52:51 minden010 sshd[24078]: Failed password for root from 49.88.112.112 port 17738 ssh2 Sep 14 08:52:54 minden010 sshd[24078]: Failed password for root from 49.88.112.112 port 17738 ssh2 ... |
2019-09-14 15:21:16 |
| 51.15.58.201 | attackspam | 2019-09-14T06:53:40.389160abusebot-5.cloudsearch.cf sshd\[16274\]: Invalid user ales from 51.15.58.201 port 33218 |
2019-09-14 15:13:58 |
| 140.207.155.102 | attackbots | Port Scan: UDP/49153 |
2019-09-14 14:41:12 |
| 136.32.230.96 | attackspambots | Sep 14 07:06:14 hcbbdb sshd\[23859\]: Invalid user antivirus from 136.32.230.96 Sep 14 07:06:14 hcbbdb sshd\[23859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.32.230.96 Sep 14 07:06:16 hcbbdb sshd\[23859\]: Failed password for invalid user antivirus from 136.32.230.96 port 41032 ssh2 Sep 14 07:10:32 hcbbdb sshd\[24302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.32.230.96 user=root Sep 14 07:10:34 hcbbdb sshd\[24302\]: Failed password for root from 136.32.230.96 port 58184 ssh2 |
2019-09-14 15:22:56 |
| 107.180.109.32 | attack | Port Scan: TCP/443 |
2019-09-14 14:44:22 |
| 41.65.68.66 | attackbots | Port Scan: TCP/445 |
2019-09-14 14:56:11 |
| 102.158.181.64 | attackbots | Port Scan: TCP/60001 |
2019-09-14 14:45:47 |
| 125.167.237.204 | attackbotsspam | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 05:39:07,720 INFO [amun_request_handler] PortScan Detected on Port: 445 (125.167.237.204) |
2019-09-14 15:33:11 |
| 122.228.208.113 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 05:49:29,870 INFO [amun_request_handler] unknown vuln (Attacker: 122.228.208.113 Port: 3128, Mess: ['\x04\x01\x01\xbb\xb4e1\x0c\x00'] (9) Stages: ['MYDOOM_STAGE1']) |
2019-09-14 15:23:22 |
| 95.159.94.184 | attackspambots | Port Scan: TCP/445 |
2019-09-14 14:46:56 |