City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.22.37.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3903
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.22.37.80. IN A
;; AUTHORITY SECTION:
. 284 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400
;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 13:59:13 CST 2022
;; MSG SIZE rcvd: 105Host 80.37.22.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 80.37.22.104.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 122.14.213.71 | attack | trying to hack qnap over ftp by brute-force |
2019-12-21 03:41:18 |
| 51.75.70.30 | attack | Dec 20 18:20:48 microserver sshd[51836]: Invalid user nevynn from 51.75.70.30 port 35531 Dec 20 18:20:48 microserver sshd[51836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.70.30 Dec 20 18:20:51 microserver sshd[51836]: Failed password for invalid user nevynn from 51.75.70.30 port 35531 ssh2 Dec 20 18:28:25 microserver sshd[52772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.70.30 user=root Dec 20 18:28:27 microserver sshd[52772]: Failed password for root from 51.75.70.30 port 39013 ssh2 Dec 20 18:43:05 microserver sshd[54961]: Invalid user oracle from 51.75.70.30 port 45195 Dec 20 18:43:05 microserver sshd[54961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.70.30 Dec 20 18:43:07 microserver sshd[54961]: Failed password for invalid user oracle from 51.75.70.30 port 45195 ssh2 Dec 20 18:50:34 microserver sshd[56245]: pam_unix(sshd:auth): authentication failure; |
2019-12-21 03:36:31 |
| 171.251.1.67 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:50:41. |
2019-12-21 03:30:50 |
| 129.56.75.90 | attackbotsspam | Abuse |
2019-12-21 03:52:05 |
| 185.176.27.178 | attack | Dec 20 20:43:37 debian-2gb-nbg1-2 kernel: \[523778.033969\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=718 PROTO=TCP SPT=59403 DPT=31475 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-21 03:53:51 |
| 86.238.30.51 | attackbotsspam | Lines containing failures of 86.238.30.51 Dec 17 19:37:50 HOSTNAME sshd[9510]: Failed password for invalid user r.r from 86.238.30.51 port 48840 ssh2 Dec 17 19:37:50 HOSTNAME sshd[9510]: Received disconnect from 86.238.30.51 port 48840:11: Bye Bye [preauth] Dec 17 19:37:50 HOSTNAME sshd[9510]: Disconnected from 86.238.30.51 port 48840 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=86.238.30.51 |
2019-12-21 03:52:26 |
| 134.119.179.255 | attackspambots | Dec 20 20:18:11 h2177944 kernel: \[68307.508469\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=134.119.179.255 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=20962 PROTO=TCP SPT=46670 DPT=44391 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 20 20:18:11 h2177944 kernel: \[68307.508482\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=134.119.179.255 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=20962 PROTO=TCP SPT=46670 DPT=44391 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 20 20:21:43 h2177944 kernel: \[68519.192852\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=134.119.179.255 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=18851 PROTO=TCP SPT=46670 DPT=30443 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 20 20:21:43 h2177944 kernel: \[68519.192866\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=134.119.179.255 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=18851 PROTO=TCP SPT=46670 DPT=30443 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 20 20:27:50 h2177944 kernel: \[68886.098089\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=134.119.179.255 DST=85.214.1 |
2019-12-21 03:40:20 |
| 103.81.114.80 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:50:19. |
2019-12-21 04:00:11 |
| 176.126.162.36 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:50:41. |
2019-12-21 03:29:15 |
| 113.254.45.129 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:50:22. |
2019-12-21 03:54:10 |
| 51.75.248.127 | attackspambots | 2019-12-20 15:59:17,738 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 51.75.248.127 2019-12-20 16:29:44,762 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 51.75.248.127 2019-12-20 17:08:52,745 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 51.75.248.127 2019-12-20 17:54:55,082 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 51.75.248.127 2019-12-20 18:28:03,796 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 51.75.248.127 ... |
2019-12-21 03:49:53 |
| 155.94.140.178 | attackbotsspam | Dec 20 17:32:49 mail1 sshd\[7204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.94.140.178 user=root Dec 20 17:32:52 mail1 sshd\[7204\]: Failed password for root from 155.94.140.178 port 45198 ssh2 Dec 20 17:44:24 mail1 sshd\[12448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.94.140.178 user=root Dec 20 17:44:26 mail1 sshd\[12448\]: Failed password for root from 155.94.140.178 port 53184 ssh2 Dec 20 17:52:49 mail1 sshd\[16292\]: Invalid user jaundray from 155.94.140.178 port 33870 Dec 20 17:52:49 mail1 sshd\[16292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.94.140.178 ... |
2019-12-21 03:36:18 |
| 176.174.8.13 | attack | port scan and connect, tcp 22 (ssh) |
2019-12-21 03:48:15 |
| 14.207.198.252 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:50:38. |
2019-12-21 03:35:12 |
| 125.161.143.161 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:50:34. |
2019-12-21 03:40:37 |