City: Wuppertal
Region: North Rhine-Westphalia
Country: Germany
Internet Service Provider: Vodafone
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.221.217.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30766
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.221.217.139. IN A
;; AUTHORITY SECTION:
. 238 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019091902 1800 900 604800 86400
;; Query time: 366 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 20 02:44:41 CST 2019
;; MSG SIZE rcvd: 118139.217.221.94.in-addr.arpa domain name pointer dslb-094-221-217-139.094.221.pools.vodafone-ip.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
139.217.221.94.in-addr.arpa name = dslb-094-221-217-139.094.221.pools.vodafone-ip.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.51.39.234 | attack | Unauthorized connection attempt from IP address 106.51.39.234 on Port 445(SMB) |
2019-12-18 20:47:29 |
| 5.180.245.244 | attackbots | Wordpress login attempts |
2019-12-18 20:46:44 |
| 36.71.69.58 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 18-12-2019 06:25:14. |
2019-12-18 20:53:19 |
| 106.13.9.153 | attackspam | Dec 18 10:46:49 server sshd\[9259\]: Invalid user shuto from 106.13.9.153 Dec 18 10:46:49 server sshd\[9259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.153 Dec 18 10:46:51 server sshd\[9259\]: Failed password for invalid user shuto from 106.13.9.153 port 42482 ssh2 Dec 18 10:54:55 server sshd\[11273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.153 user=root Dec 18 10:54:57 server sshd\[11273\]: Failed password for root from 106.13.9.153 port 57844 ssh2 ... |
2019-12-18 20:54:40 |
| 45.238.122.207 | attack | Brute force attack to crack SMTP password (port 25 / 587) |
2019-12-18 21:06:11 |
| 14.189.75.213 | attackspambots | 1576650285 - 12/18/2019 07:24:45 Host: 14.189.75.213/14.189.75.213 Port: 445 TCP Blocked |
2019-12-18 20:42:51 |
| 119.28.105.127 | attackspam | Dec 18 02:29:17 php1 sshd\[22350\]: Invalid user ple from 119.28.105.127 Dec 18 02:29:17 php1 sshd\[22350\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.105.127 Dec 18 02:29:19 php1 sshd\[22350\]: Failed password for invalid user ple from 119.28.105.127 port 42304 ssh2 Dec 18 02:36:31 php1 sshd\[23041\]: Invalid user barmeier from 119.28.105.127 Dec 18 02:36:31 php1 sshd\[23041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.105.127 |
2019-12-18 20:38:39 |
| 64.34.49.230 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-18 21:11:24 |
| 117.64.234.119 | attackbots | SSH invalid-user multiple login try |
2019-12-18 20:32:06 |
| 14.166.169.108 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 18-12-2019 06:25:12. |
2019-12-18 20:58:04 |
| 185.163.47.181 | attackspambots | Honeypot attack, port: 81, PTR: 185-163-47-181.mivocloud.com. |
2019-12-18 20:31:41 |
| 120.131.3.144 | attack | detected by Fail2Ban |
2019-12-18 20:41:52 |
| 182.191.90.99 | attackspambots | 1576650315 - 12/18/2019 07:25:15 Host: 182.191.90.99/182.191.90.99 Port: 445 TCP Blocked |
2019-12-18 20:33:23 |
| 218.92.0.184 | attack | Dec 18 13:29:57 jane sshd[5396]: Failed password for root from 218.92.0.184 port 65474 ssh2 Dec 18 13:30:02 jane sshd[5396]: Failed password for root from 218.92.0.184 port 65474 ssh2 ... |
2019-12-18 21:02:00 |
| 121.159.227.159 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-18 21:05:13 |