City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.22.2.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43746
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.22.2.51. IN A
;; AUTHORITY SECTION:
. 209 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022051801 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 19 05:51:55 CST 2022
;; MSG SIZE rcvd: 104Host 51.2.22.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 51.2.22.104.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 110.169.248.8 | attack | Unauthorized connection attempt from IP address 110.169.248.8 on Port 445(SMB) |
2020-10-10 18:06:09 |
| 176.221.188.192 | attackbotsspam | Automatic report - Banned IP Access |
2020-10-10 16:59:29 |
| 27.216.182.249 | attack | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-10-10 17:26:48 |
| 217.61.126.195 | attack | Oct 8 05:57:24 kunden sshd[4306]: Address 217.61.126.195 maps to host195-126-61-217.static.arubacloud.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 05:57:24 kunden sshd[4306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.126.195 user=r.r Oct 8 05:57:26 kunden sshd[4306]: Failed password for r.r from 217.61.126.195 port 58554 ssh2 Oct 8 05:57:26 kunden sshd[4306]: Received disconnect from 217.61.126.195: 11: Bye Bye [preauth] Oct 8 06:09:00 kunden sshd[14331]: Address 217.61.126.195 maps to host195-126-61-217.static.arubacloud.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 06:09:00 kunden sshd[14331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.126.195 user=r.r Oct 8 06:09:02 kunden sshd[14331]: Failed password for r.r from 217.61.126.195 port 55922 ssh2 Oct 8 06:09:03 kunden sshd[14331]: Rec........ ------------------------------- |
2020-10-10 17:21:53 |
| 5.206.72.160 | attackspambots | Oct 8 14:00:43 *hidden* sshd[22202]: Failed password for invalid user ubuntu from 5.206.72.160 port 34565 ssh2 Oct 8 17:02:31 *hidden* sshd[15510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.206.72.160 user=root Oct 8 17:02:33 *hidden* sshd[15510]: Failed password for *hidden* from 5.206.72.160 port 36691 ssh2 |
2020-10-10 17:11:47 |
| 91.134.142.57 | attack | 91.134.142.57 - - \[10/Oct/2020:11:51:53 +0200\] "POST /wp-login.php HTTP/1.0" 200 8151 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 91.134.142.57 - - \[10/Oct/2020:11:51:54 +0200\] "POST /wp-login.php HTTP/1.0" 200 8163 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 91.134.142.57 - - \[10/Oct/2020:11:51:55 +0200\] "POST /wp-login.php HTTP/1.0" 200 8155 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-10-10 17:54:42 |
| 114.161.208.41 | attackspambots | [f2b] sshd bruteforce, retries: 1 |
2020-10-10 17:50:25 |
| 85.247.151.109 | attack | Oct 10 09:45:37 rush sshd[4352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.247.151.109 Oct 10 09:45:39 rush sshd[4352]: Failed password for invalid user karen from 85.247.151.109 port 58540 ssh2 Oct 10 09:52:33 rush sshd[4522]: Failed password for root from 85.247.151.109 port 34528 ssh2 ... |
2020-10-10 17:59:30 |
| 112.85.42.30 | attackspam | Oct 10 09:42:38 email sshd\[15272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.30 user=root Oct 10 09:42:40 email sshd\[15272\]: Failed password for root from 112.85.42.30 port 56469 ssh2 Oct 10 09:43:46 email sshd\[15468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.30 user=root Oct 10 09:43:48 email sshd\[15468\]: Failed password for root from 112.85.42.30 port 52611 ssh2 Oct 10 09:44:54 email sshd\[15668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.30 user=root ... |
2020-10-10 17:50:43 |
| 41.214.185.119 | attack | Unauthorized connection attempt from IP address 41.214.185.119 on Port 445(SMB) |
2020-10-10 18:02:57 |
| 49.235.162.29 | attackbotsspam | Oct 8 21:58:01 *hidden* sshd[3629]: Failed password for invalid user roman from 49.235.162.29 port 42554 ssh2 Oct 8 22:05:51 *hidden* sshd[8350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.162.29 user=root Oct 8 22:05:53 *hidden* sshd[8350]: Failed password for *hidden* from 49.235.162.29 port 59500 ssh2 |
2020-10-10 17:14:20 |
| 59.94.147.3 | attackbotsspam | Unauthorized connection attempt from IP address 59.94.147.3 on Port 445(SMB) |
2020-10-10 18:05:27 |
| 141.98.10.136 | attackspam | Oct 10 10:32:46 srv01 postfix/smtpd\[12654\]: warning: unknown\[141.98.10.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 10:32:50 srv01 postfix/smtpd\[15452\]: warning: unknown\[141.98.10.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 10:32:50 srv01 postfix/smtpd\[15454\]: warning: unknown\[141.98.10.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 10:32:50 srv01 postfix/smtpd\[15453\]: warning: unknown\[141.98.10.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 10:42:08 srv01 postfix/smtpd\[18147\]: warning: unknown\[141.98.10.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-10-10 17:15:16 |
| 103.69.68.6 | attackbotsspam | SSH/22 MH Probe, BF, Hack - |
2020-10-10 17:03:04 |
| 122.51.31.40 | attackspambots | $f2bV_matches |
2020-10-10 18:02:12 |