City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.199.42.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62861
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;140.199.42.157. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024120901 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 03:17:09 CST 2024
;; MSG SIZE rcvd: 107Host 157.42.199.140.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 157.42.199.140.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 192.42.116.16 | attackspam | frenzy |
2019-08-08 15:56:36 |
| 69.175.97.170 | attack | Port scan detected |
2019-08-08 15:32:46 |
| 104.210.35.133 | attackbots | 2019-08-08T07:09:05.275247abusebot-7.cloudsearch.cf sshd\[8700\]: Invalid user test from 104.210.35.133 port 22808 |
2019-08-08 15:26:38 |
| 94.23.70.116 | attackspambots | Aug 8 06:35:13 vps647732 sshd[16796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.70.116 Aug 8 06:35:14 vps647732 sshd[16796]: Failed password for invalid user frank from 94.23.70.116 port 57686 ssh2 ... |
2019-08-08 15:52:56 |
| 76.104.243.253 | attackspam | Automatic report - Banned IP Access |
2019-08-08 16:11:00 |
| 5.36.44.211 | attackspam | Telnet/23 MH Probe, BF, Hack - |
2019-08-08 15:41:57 |
| 112.85.42.178 | attackspam | Aug 8 13:01:57 itv-usvr-01 sshd[23393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Aug 8 13:01:59 itv-usvr-01 sshd[23393]: Failed password for root from 112.85.42.178 port 31940 ssh2 |
2019-08-08 16:08:08 |
| 104.248.183.0 | attack | Aug 8 10:14:18 pkdns2 sshd\[23216\]: Address 104.248.183.0 maps to ashkankamyab.de, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 8 10:14:18 pkdns2 sshd\[23216\]: Invalid user ui from 104.248.183.0Aug 8 10:14:21 pkdns2 sshd\[23216\]: Failed password for invalid user ui from 104.248.183.0 port 42488 ssh2Aug 8 10:18:50 pkdns2 sshd\[23380\]: Address 104.248.183.0 maps to ashkankamyab.de, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 8 10:18:50 pkdns2 sshd\[23380\]: Invalid user admin from 104.248.183.0Aug 8 10:18:51 pkdns2 sshd\[23380\]: Failed password for invalid user admin from 104.248.183.0 port 35602 ssh2 ... |
2019-08-08 15:34:11 |
| 216.244.66.233 | attackbots | 20 attempts against mh-misbehave-ban on pluto.magehost.pro |
2019-08-08 15:37:58 |
| 218.86.123.242 | attackspam | Aug 6 21:32:37 cp1server sshd[31580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.86.123.242 user=r.r Aug 6 21:32:39 cp1server sshd[31580]: Failed password for r.r from 218.86.123.242 port 19495 ssh2 Aug 6 21:32:39 cp1server sshd[31581]: Received disconnect from 218.86.123.242: 11: Bye Bye Aug 6 21:44:06 cp1server sshd[392]: Invalid user hostmaster from 218.86.123.242 Aug 6 21:44:06 cp1server sshd[392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.86.123.242 Aug 6 21:44:08 cp1server sshd[392]: Failed password for invalid user hostmaster from 218.86.123.242 port 15194 ssh2 Aug 6 21:44:08 cp1server sshd[393]: Received disconnect from 218.86.123.242: 11: Bye Bye Aug 6 21:47:52 cp1server sshd[1028]: Invalid user dakota from 218.86.123.242 Aug 6 21:47:52 cp1server sshd[1028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.86.1........ ------------------------------- |
2019-08-08 15:41:26 |
| 94.23.41.149 | attackbots | Aug 8 03:31:15 server02 postfix/smtpd[11617]: lost connection after EHLO from eds-004.supershostnameeserver.com[94.23.41.149]:60970 Aug 8 03:31:15 server02 postfix/smtpd[11618]: lost connection after EHLO from eds-004.supershostnameeserver.com[94.23.41.149]:60972 Aug 8 03:31:15 server02 postfix/smtpd[11616]: lost connection after EHLO from eds-004.supershostnameeserver.com[94.23.41.149]:60969 Aug 8 03:31:15 server02 postfix/smtpd[11615]: lost connection after EHLO from eds-004.supershostnameeserver.com[94.23.41.149]:60968 Aug 8 03:31:15 server02 postfix/smtpd[11614]: lost connection after EHLO from eds-004.supershostnameeserver.com[94.23.41.149]:60967 Aug 8 03:31:15 server02 postfix/smtpd[11611]: lost connection after EHLO from eds-004.supershostnameeserver.com[94.23.41.149]:60963 Aug 8 03:31:15 server02 postfix/smtpd[11554]: lost connection after RCPT from eds-004.supershostnameeserver.com[94.23.41.149]:60879 Aug 8 03:31:15 server02 postfix/smtpd[11610]: lost co........ ------------------------------ |
2019-08-08 16:08:41 |
| 218.61.70.124 | attackbots | DATE:2019-08-08 04:17:30, IP:218.61.70.124, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc) |
2019-08-08 15:58:48 |
| 167.71.186.181 | attackspam | 2019-08-08T05:47:55.6975281240 sshd\[19647\]: Invalid user pio from 167.71.186.181 port 42604 2019-08-08T05:47:55.7024771240 sshd\[19647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.186.181 2019-08-08T05:47:57.5991271240 sshd\[19647\]: Failed password for invalid user pio from 167.71.186.181 port 42604 ssh2 ... |
2019-08-08 15:42:12 |
| 212.87.9.155 | attackbots | Aug 8 06:49:04 localhost sshd\[1899\]: Invalid user usuario1 from 212.87.9.155 port 35892 Aug 8 06:49:04 localhost sshd\[1899\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.87.9.155 Aug 8 06:49:06 localhost sshd\[1899\]: Failed password for invalid user usuario1 from 212.87.9.155 port 35892 ssh2 |
2019-08-08 15:38:22 |
| 181.115.185.42 | attack | xmlrpc attack |
2019-08-08 15:35:51 |