City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.64.85.38
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54950
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;91.64.85.38. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012802 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 09:31:14 CST 2025
;; MSG SIZE rcvd: 10438.85.64.91.in-addr.arpa domain name pointer ip5b405526.dynamic.kabel-deutschland.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
38.85.64.91.in-addr.arpa name = ip5b405526.dynamic.kabel-deutschland.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 49.204.86.2 | attackspambots | Unauthorized connection attempt from IP address 49.204.86.2 on Port 445(SMB) |
2019-12-10 05:09:08 |
| 181.48.116.50 | attackbots | Dec 9 18:55:09 sauna sshd[83301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.116.50 Dec 9 18:55:11 sauna sshd[83301]: Failed password for invalid user sr from 181.48.116.50 port 60224 ssh2 ... |
2019-12-10 05:02:30 |
| 123.185.202.218 | attack | Mon Dec 9 17:00:43 2019 \[pid 17105\] \[lexgold\] FTP response: Client "123.185.202.218", "530 Permission denied." Mon Dec 9 17:00:48 2019 \[pid 17115\] \[lexgold\] FTP response: Client "123.185.202.218", "530 Permission denied." Mon Dec 9 17:01:06 2019 \[pid 17201\] \[lexgold\] FTP response: Client "123.185.202.218", "530 Permission denied." |
2019-12-10 04:55:38 |
| 103.1.209.245 | attackspambots | $f2bV_matches |
2019-12-10 04:44:48 |
| 180.76.97.86 | attackbotsspam | SSH Brute-Force reported by Fail2Ban |
2019-12-10 04:53:49 |
| 45.65.222.158 | attackbotsspam | Unauthorized connection attempt from IP address 45.65.222.158 on Port 445(SMB) |
2019-12-10 04:42:07 |
| 119.28.29.169 | attack | Dec 9 19:50:18 server sshd\[27079\]: Invalid user rasimah from 119.28.29.169 Dec 9 19:50:18 server sshd\[27079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.29.169 Dec 9 19:50:20 server sshd\[27079\]: Failed password for invalid user rasimah from 119.28.29.169 port 38850 ssh2 Dec 9 20:01:10 server sshd\[30309\]: Invalid user gmodserv3 from 119.28.29.169 Dec 9 20:01:10 server sshd\[30309\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.29.169 ... |
2019-12-10 05:06:14 |
| 132.232.38.247 | attackbotsspam | Dec 9 21:12:48 localhost sshd\[7598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.38.247 user=root Dec 9 21:12:51 localhost sshd\[7598\]: Failed password for root from 132.232.38.247 port 25659 ssh2 Dec 9 21:19:13 localhost sshd\[8267\]: Invalid user mailtest from 132.232.38.247 port 31616 Dec 9 21:19:13 localhost sshd\[8267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.38.247 |
2019-12-10 04:33:11 |
| 35.206.156.221 | attackspambots | Dec 9 21:50:17 vps691689 sshd[544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.206.156.221 Dec 9 21:50:20 vps691689 sshd[544]: Failed password for invalid user bycenko from 35.206.156.221 port 49174 ssh2 Dec 9 21:55:16 vps691689 sshd[632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.206.156.221 ... |
2019-12-10 05:09:34 |
| 178.32.211.153 | attackspam | WordPress wp-login brute force :: 178.32.211.153 0.088 BYPASS [09/Dec/2019:15:26:01 0000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 2099 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-12-10 04:44:29 |
| 106.13.233.102 | attack | Dec 9 14:35:34 Tower sshd[25521]: Connection from 106.13.233.102 port 36062 on 192.168.10.220 port 22 Dec 9 14:35:36 Tower sshd[25521]: Invalid user test from 106.13.233.102 port 36062 Dec 9 14:35:36 Tower sshd[25521]: error: Could not get shadow information for NOUSER Dec 9 14:35:36 Tower sshd[25521]: Failed password for invalid user test from 106.13.233.102 port 36062 ssh2 Dec 9 14:35:36 Tower sshd[25521]: Received disconnect from 106.13.233.102 port 36062:11: Bye Bye [preauth] Dec 9 14:35:36 Tower sshd[25521]: Disconnected from invalid user test 106.13.233.102 port 36062 [preauth] |
2019-12-10 04:43:17 |
| 139.59.247.114 | attackspam | Dec 9 15:42:05 Tower sshd[16619]: Connection from 139.59.247.114 port 33288 on 192.168.10.220 port 22 Dec 9 15:42:06 Tower sshd[16619]: Invalid user testing from 139.59.247.114 port 33288 Dec 9 15:42:06 Tower sshd[16619]: error: Could not get shadow information for NOUSER Dec 9 15:42:06 Tower sshd[16619]: Failed password for invalid user testing from 139.59.247.114 port 33288 ssh2 Dec 9 15:42:07 Tower sshd[16619]: Received disconnect from 139.59.247.114 port 33288:11: Bye Bye [preauth] Dec 9 15:42:07 Tower sshd[16619]: Disconnected from invalid user testing 139.59.247.114 port 33288 [preauth] |
2019-12-10 04:59:02 |
| 45.67.14.163 | attackspam | --- report --- Dec 9 11:15:52 sshd: Connection from 45.67.14.163 port 51364 Dec 9 11:15:52 sshd: Disconnected from 45.67.14.163 port 51364 [preauth] Dec 9 11:15:52 sshd: Received disconnect from 45.67.14.163 port 51364:11: Bye Bye [preauth] |
2019-12-10 04:43:34 |
| 185.156.73.34 | attack | Dec 9 22:44:58 debian-2gb-vpn-nbg1-1 kernel: [299085.269356] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.34 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=41570 PROTO=TCP SPT=53144 DPT=43570 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-10 04:35:57 |
| 203.147.64.147 | attack | mail auth brute force |
2019-12-10 04:51:32 |