City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.42.21.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29440
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;110.42.21.41. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012801 1800 900 604800 86400
;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 03:22:42 CST 2025
;; MSG SIZE rcvd: 105Host 41.21.42.110.in-addr.arpa not found: 2(SERVFAIL);; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 41.21.42.110.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 62.151.177.85 | attackbotsspam | 2020-08-17T08:59:53.6681001495-001 sshd[25449]: Failed password for invalid user designer from 62.151.177.85 port 57692 ssh2 2020-08-17T09:03:45.7313411495-001 sshd[25723]: Invalid user b2 from 62.151.177.85 port 39044 2020-08-17T09:03:45.7343851495-001 sshd[25723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.151.177.85 2020-08-17T09:03:45.7313411495-001 sshd[25723]: Invalid user b2 from 62.151.177.85 port 39044 2020-08-17T09:03:48.0369741495-001 sshd[25723]: Failed password for invalid user b2 from 62.151.177.85 port 39044 ssh2 2020-08-17T09:07:47.8748811495-001 sshd[25973]: Invalid user lhs from 62.151.177.85 port 48624 ... |
2020-08-17 22:02:02 |
| 144.76.118.82 | attackspam | 20 attempts against mh-misbehave-ban on wood |
2020-08-17 21:52:57 |
| 106.75.7.92 | attackbots | 2020-08-17T12:05:19.984548randservbullet-proofcloud-66.localdomain sshd[27972]: Invalid user webmaster from 106.75.7.92 port 55442 2020-08-17T12:05:19.988910randservbullet-proofcloud-66.localdomain sshd[27972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.7.92 2020-08-17T12:05:19.984548randservbullet-proofcloud-66.localdomain sshd[27972]: Invalid user webmaster from 106.75.7.92 port 55442 2020-08-17T12:05:22.311932randservbullet-proofcloud-66.localdomain sshd[27972]: Failed password for invalid user webmaster from 106.75.7.92 port 55442 ssh2 ... |
2020-08-17 22:01:49 |
| 175.24.42.136 | attack | Aug 17 15:20:23 server sshd[3295]: Failed password for invalid user stefan from 175.24.42.136 port 52370 ssh2 Aug 17 15:23:16 server sshd[4631]: Failed password for invalid user df from 175.24.42.136 port 55788 ssh2 Aug 17 15:26:10 server sshd[6079]: Failed password for invalid user dixie from 175.24.42.136 port 59224 ssh2 |
2020-08-17 21:30:35 |
| 77.55.208.221 | attackspam | Aug 17 14:42:42 rocket sshd[8476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.55.208.221 Aug 17 14:42:44 rocket sshd[8476]: Failed password for invalid user test_1 from 77.55.208.221 port 43882 ssh2 ... |
2020-08-17 21:49:07 |
| 159.65.119.25 | attackspambots | Lines containing failures of 159.65.119.25 (max 1000) Aug 17 09:49:59 UTC__SANYALnet-Labs__cac12 sshd[16382]: Connection from 159.65.119.25 port 55818 on 64.137.176.96 port 22 Aug 17 09:50:01 UTC__SANYALnet-Labs__cac12 sshd[16382]: reveeclipse mapping checking getaddrinfo for ubuntu-18.04 [159.65.119.25] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 17 09:50:01 UTC__SANYALnet-Labs__cac12 sshd[16382]: Invalid user ghostname from 159.65.119.25 port 55818 Aug 17 09:50:01 UTC__SANYALnet-Labs__cac12 sshd[16382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.119.25 Aug 17 09:50:03 UTC__SANYALnet-Labs__cac12 sshd[16382]: Failed password for invalid user ghostname from 159.65.119.25 port 55818 ssh2 Aug 17 09:50:03 UTC__SANYALnet-Labs__cac12 sshd[16382]: Received disconnect from 159.65.119.25 port 55818:11: Bye Bye [preauth] Aug 17 09:50:03 UTC__SANYALnet-Labs__cac12 sshd[16382]: Disconnected from 159.65.119.25 port 55818 [preauth] ........ --------------------------------- |
2020-08-17 21:25:22 |
| 54.37.154.113 | attackspambots | Aug 17 13:06:59 jumpserver sshd[185637]: Invalid user chan from 54.37.154.113 port 39288 Aug 17 13:07:01 jumpserver sshd[185637]: Failed password for invalid user chan from 54.37.154.113 port 39288 ssh2 Aug 17 13:11:08 jumpserver sshd[185667]: Invalid user jessica from 54.37.154.113 port 48670 ... |
2020-08-17 21:43:14 |
| 220.130.10.13 | attackbots | Aug 17 15:24:33 vps639187 sshd\[25677\]: Invalid user hyperic from 220.130.10.13 port 43472 Aug 17 15:24:33 vps639187 sshd\[25677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.10.13 Aug 17 15:24:35 vps639187 sshd\[25677\]: Failed password for invalid user hyperic from 220.130.10.13 port 43472 ssh2 ... |
2020-08-17 21:46:51 |
| 36.37.157.250 | attackspam | 2020-08-17T19:28:18.907884billing sshd[19623]: Invalid user dev from 36.37.157.250 port 40700 2020-08-17T19:28:20.882010billing sshd[19623]: Failed password for invalid user dev from 36.37.157.250 port 40700 ssh2 2020-08-17T19:32:44.135721billing sshd[29594]: Invalid user vpn from 36.37.157.250 port 49462 ... |
2020-08-17 21:23:29 |
| 61.153.14.115 | attackbots | Aug 17 06:05:38 Host-KLAX-C sshd[31256]: Disconnected from invalid user hadoop 61.153.14.115 port 37444 [preauth] ... |
2020-08-17 21:44:14 |
| 68.183.239.53 | attack | Lines containing failures of 68.183.239.53 Aug 17 12:08:16 www sshd[7260]: Invalid user em3-user from 68.183.239.53 port 36678 Aug 17 12:08:16 www sshd[7260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.239.53 Aug 17 12:08:18 www sshd[7260]: Failed password for invalid user em3-user from 68.183.239.53 port 36678 ssh2 Aug 17 12:08:19 www sshd[7260]: Received disconnect from 68.183.239.53 port 36678:11: Bye Bye [preauth] Aug 17 12:08:19 www sshd[7260]: Disconnected from invalid user em3-user 68.183.239.53 port 36678 [preauth] Aug 17 12:23:31 www sshd[10464]: Invalid user adam from 68.183.239.53 port 32703 Aug 17 12:23:31 www sshd[10464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.239.53 Aug 17 12:23:34 www sshd[10464]: Failed password for invalid user adam from 68.183.239.53 port 32703 ssh2 Aug 17 12:23:34 www sshd[10464]: Received disconnect from 68.183.239.53 port 32703........ ------------------------------ |
2020-08-17 21:39:29 |
| 54.37.205.241 | attackbots | $f2bV_matches |
2020-08-17 21:41:34 |
| 185.176.27.38 | attack | [H1.VM6] Blocked by UFW |
2020-08-17 21:26:28 |
| 54.38.185.131 | attack | Aug 17 14:06:06 *hidden* sshd[14045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.185.131 Aug 17 14:06:08 *hidden* sshd[14045]: Failed password for invalid user logview from 54.38.185.131 port 53776 ssh2 Aug 17 14:10:16 *hidden* sshd[24628]: Invalid user installer from 54.38.185.131 port 34182 Aug 17 14:10:16 *hidden* sshd[24628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.185.131 Aug 17 14:10:18 *hidden* sshd[24628]: Failed password for invalid user installer from 54.38.185.131 port 34182 ssh2 |
2020-08-17 21:33:43 |
| 182.61.173.94 | attackbots | Aug 17 13:08:31 ip-172-31-16-56 sshd\[3627\]: Failed password for root from 182.61.173.94 port 49370 ssh2\ Aug 17 13:12:44 ip-172-31-16-56 sshd\[3755\]: Invalid user test from 182.61.173.94\ Aug 17 13:12:46 ip-172-31-16-56 sshd\[3755\]: Failed password for invalid user test from 182.61.173.94 port 57576 ssh2\ Aug 17 13:17:05 ip-172-31-16-56 sshd\[3832\]: Invalid user wp from 182.61.173.94\ Aug 17 13:17:07 ip-172-31-16-56 sshd\[3832\]: Failed password for invalid user wp from 182.61.173.94 port 37544 ssh2\ |
2020-08-17 21:52:15 |