City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.5.107.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31393
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;134.5.107.253. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021500 1800 900 604800 86400
;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 14:04:40 CST 2025
;; MSG SIZE rcvd: 106Host 253.107.5.134.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 253.107.5.134.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 119.57.142.10 | attack | 1433/tcp [2019-10-30]1pkt |
2019-10-30 16:42:21 |
| 187.57.131.122 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/187.57.131.122/ BR - 1H : (418) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 187.57.131.122 CIDR : 187.57.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 ATTACKS DETECTED ASN27699 : 1H - 10 3H - 30 6H - 47 12H - 108 24H - 205 DateTime : 2019-10-30 04:50:24 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery |
2019-10-30 16:46:15 |
| 222.101.64.139 | attack | 23/tcp [2019-10-30]1pkt |
2019-10-30 16:36:49 |
| 92.245.104.154 | attackbots | Automatic report - Banned IP Access |
2019-10-30 16:41:05 |
| 139.59.22.169 | attackspambots | Oct 30 06:29:54 server sshd\[6268\]: Invalid user elsie from 139.59.22.169 Oct 30 06:29:54 server sshd\[6268\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.169 Oct 30 06:29:56 server sshd\[6268\]: Failed password for invalid user elsie from 139.59.22.169 port 35508 ssh2 Oct 30 06:50:35 server sshd\[11519\]: Invalid user ubuntu from 139.59.22.169 Oct 30 06:50:35 server sshd\[11519\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.169 ... |
2019-10-30 16:38:39 |
| 103.127.28.144 | attack | 'IP reached maximum auth failures' |
2019-10-30 16:06:42 |
| 123.31.31.68 | attackspambots | Oct 30 06:15:36 localhost sshd\[26364\]: Invalid user waterloo from 123.31.31.68 port 35126 Oct 30 06:15:36 localhost sshd\[26364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.31.68 Oct 30 06:15:39 localhost sshd\[26364\]: Failed password for invalid user waterloo from 123.31.31.68 port 35126 ssh2 |
2019-10-30 16:20:34 |
| 189.111.56.46 | attackbotsspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/189.111.56.46/ BR - 1H : (405) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 189.111.56.46 CIDR : 189.111.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 ATTACKS DETECTED ASN27699 : 1H - 5 3H - 22 6H - 49 12H - 99 24H - 201 DateTime : 2019-10-30 06:54:41 INFO : |
2019-10-30 16:17:25 |
| 37.194.229.144 | attackbots | 445/tcp [2019-10-30]1pkt |
2019-10-30 16:10:53 |
| 31.162.49.159 | attackspam | Chat Spam |
2019-10-30 16:44:16 |
| 145.239.0.81 | attack | \[2019-10-30 04:03:15\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-30T04:03:15.855-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9176390018647127882",SessionID="0x7fdf2cc7a718",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/145.239.0.81/60928",ACLName="no_extension_match" \[2019-10-30 04:03:21\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-30T04:03:21.953-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9176490018647127882",SessionID="0x7fdf2cd1cd48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/145.239.0.81/65124",ACLName="no_extension_match" \[2019-10-30 04:03:28\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-30T04:03:28.278-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9176590018647127882",SessionID="0x7fdf2cae1298",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/145.239.0.81/52976",ACLNam |
2019-10-30 16:29:31 |
| 14.249.201.15 | attack | 445/tcp 445/tcp [2019-10-30]2pkt |
2019-10-30 16:29:00 |
| 106.13.49.233 | attackspam | $f2bV_matches_ltvn |
2019-10-30 16:33:06 |
| 222.186.169.192 | attackbots | Oct 30 08:59:02 dcd-gentoo sshd[2311]: User root from 222.186.169.192 not allowed because none of user's groups are listed in AllowGroups Oct 30 08:59:05 dcd-gentoo sshd[2311]: error: PAM: Authentication failure for illegal user root from 222.186.169.192 Oct 30 08:59:02 dcd-gentoo sshd[2311]: User root from 222.186.169.192 not allowed because none of user's groups are listed in AllowGroups Oct 30 08:59:05 dcd-gentoo sshd[2311]: error: PAM: Authentication failure for illegal user root from 222.186.169.192 Oct 30 08:59:02 dcd-gentoo sshd[2311]: User root from 222.186.169.192 not allowed because none of user's groups are listed in AllowGroups Oct 30 08:59:05 dcd-gentoo sshd[2311]: error: PAM: Authentication failure for illegal user root from 222.186.169.192 Oct 30 08:59:05 dcd-gentoo sshd[2311]: Failed keyboard-interactive/pam for invalid user root from 222.186.169.192 port 33114 ssh2 ... |
2019-10-30 16:15:02 |
| 40.73.65.160 | attack | 2019-10-30T07:14:16.960200tmaserv sshd\[18631\]: Invalid user lihongmei from 40.73.65.160 port 43880 2019-10-30T07:14:16.965044tmaserv sshd\[18631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.65.160 2019-10-30T07:14:19.316656tmaserv sshd\[18631\]: Failed password for invalid user lihongmei from 40.73.65.160 port 43880 ssh2 2019-10-30T07:19:14.499449tmaserv sshd\[19002\]: Invalid user http1234 from 40.73.65.160 port 54222 2019-10-30T07:19:14.504482tmaserv sshd\[19002\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.65.160 2019-10-30T07:19:16.433651tmaserv sshd\[19002\]: Failed password for invalid user http1234 from 40.73.65.160 port 54222 ssh2 ... |
2019-10-30 16:19:11 |