City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.53.50.174
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58479
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;137.53.50.174. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022001 1800 900 604800 86400
;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 05:08:18 CST 2025
;; MSG SIZE rcvd: 106Host 174.50.53.137.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 174.50.53.137.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 123.59.62.57 | attackspam | Sep 30 10:09:01 ws12vmsma01 sshd[26317]: Invalid user unifi from 123.59.62.57 Sep 30 10:09:03 ws12vmsma01 sshd[26317]: Failed password for invalid user unifi from 123.59.62.57 port 46085 ssh2 Sep 30 10:15:19 ws12vmsma01 sshd[27252]: Invalid user ubuntu from 123.59.62.57 ... |
2020-09-30 22:24:39 |
| 37.59.141.40 | attack | 37.59.141.40 - - [30/Sep/2020:02:27:32 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.59.141.40 - - [30/Sep/2020:02:27:33 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.59.141.40 - - [30/Sep/2020:02:27:34 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-09-30 22:54:53 |
| 12.32.37.130 | attackspam | (sshd) Failed SSH login from 12.32.37.130 (US/United States/-): 10 in the last 3600 secs |
2020-09-30 22:20:50 |
| 193.27.228.157 | attack |
|
2020-09-30 22:59:19 |
| 106.13.233.4 | attackspambots | $f2bV_matches |
2020-09-30 22:25:52 |
| 142.93.247.238 | attackspam | Time: Wed Sep 30 14:01:06 2020 +0000 IP: 142.93.247.238 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 30 13:43:03 16-1 sshd[73385]: Invalid user edu from 142.93.247.238 port 53456 Sep 30 13:43:05 16-1 sshd[73385]: Failed password for invalid user edu from 142.93.247.238 port 53456 ssh2 Sep 30 13:57:04 16-1 sshd[75172]: Invalid user samba from 142.93.247.238 port 54508 Sep 30 13:57:06 16-1 sshd[75172]: Failed password for invalid user samba from 142.93.247.238 port 54508 ssh2 Sep 30 14:01:04 16-1 sshd[75752]: Invalid user pgsql from 142.93.247.238 port 34488 |
2020-09-30 22:57:17 |
| 146.148.112.54 | attackbotsspam | Lines containing failures of 146.148.112.54 Sep 29 16:35:16 www sshd[26405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.148.112.54 user=r.r Sep 29 16:35:18 www sshd[26405]: Failed password for r.r from 146.148.112.54 port 40079 ssh2 Sep 29 16:35:18 www sshd[26405]: Received disconnect from 146.148.112.54 port 40079:11: Bye Bye [preauth] Sep 29 16:35:18 www sshd[26405]: Disconnected from authenticating user r.r 146.148.112.54 port 40079 [preauth] Sep 29 16:50:24 www sshd[28568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.148.112.54 user=postfix Sep 29 16:50:26 www sshd[28568]: Failed password for postfix from 146.148.112.54 port 48611 ssh2 Sep 29 16:50:26 www sshd[28568]: Received disconnect from 146.148.112.54 port 48611:11: Bye Bye [preauth] Sep 29 16:50:26 www sshd[28568]: Disconnected from authenticating user postfix 146.148.112.54 port 48611 [preauth] Sep 29 16:54:28 w........ ------------------------------ |
2020-09-30 22:36:06 |
| 202.98.203.20 | attackbotsspam | [N3.H3.VM3] Port Scanner Detected Blocked by UFW |
2020-09-30 22:59:03 |
| 195.191.12.33 | attackbotsspam | Port Scan detected! ... |
2020-09-30 22:29:49 |
| 103.133.109.40 | attackbots | Postfix Brute-Force reported by Fail2Ban |
2020-09-30 22:17:25 |
| 180.76.96.55 | attackbotsspam | (sshd) Failed SSH login from 180.76.96.55 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 30 09:57:43 optimus sshd[31429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.96.55 user=root Sep 30 09:57:46 optimus sshd[31429]: Failed password for root from 180.76.96.55 port 38960 ssh2 Sep 30 10:05:40 optimus sshd[1304]: Invalid user test from 180.76.96.55 Sep 30 10:05:40 optimus sshd[1304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.96.55 Sep 30 10:05:42 optimus sshd[1304]: Failed password for invalid user test from 180.76.96.55 port 56084 ssh2 |
2020-09-30 22:51:16 |
| 51.38.130.242 | attackbotsspam | Sep 30 15:31:30 * sshd[19990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.130.242 Sep 30 15:31:32 * sshd[19990]: Failed password for invalid user micha from 51.38.130.242 port 42142 ssh2 |
2020-09-30 22:28:06 |
| 148.72.23.247 | attackbotsspam | wp-login.php |
2020-09-30 22:47:03 |
| 167.172.25.74 | attack | Sep 30 17:27:38 ift sshd\[14903\]: Failed password for root from 167.172.25.74 port 52550 ssh2Sep 30 17:27:43 ift sshd\[14906\]: Failed password for root from 167.172.25.74 port 33066 ssh2Sep 30 17:27:48 ift sshd\[14910\]: Failed password for root from 167.172.25.74 port 41856 ssh2Sep 30 17:27:53 ift sshd\[14912\]: Failed password for invalid user admin from 167.172.25.74 port 50606 ssh2Sep 30 17:27:58 ift sshd\[14914\]: Failed password for invalid user admin from 167.172.25.74 port 59402 ssh2 ... |
2020-09-30 22:56:19 |
| 108.190.31.236 | attackspam | Automatic report - Banned IP Access |
2020-09-30 22:27:12 |