City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.190.102.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3663
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.190.102.149. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012600 1800 900 604800 86400
;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 16:30:29 CST 2025
;; MSG SIZE rcvd: 108Host 149.102.190.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 149.102.190.142.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 37.221.196.37 | attack | Invalid user yoyo from 37.221.196.37 port 59120 |
2019-12-26 16:15:43 |
| 87.71.80.132 | attackspambots | Unauthorized connection attempt detected from IP address 87.71.80.132 to port 445 |
2019-12-26 16:31:41 |
| 14.240.123.240 | attack | 2019-12-26 07:08:39 plain_virtual_exim authenticator failed for ([127.0.0.1]) [14.240.123.240]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.240.123.240 |
2019-12-26 15:56:48 |
| 65.98.111.218 | attackbotsspam | Invalid user ss3server from 65.98.111.218 port 57646 |
2019-12-26 16:33:31 |
| 66.240.205.34 | attackbots | Dec 26 09:15:51 debian-2gb-nbg1-2 kernel: \[1000881.263825\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=66.240.205.34 DST=195.201.40.59 LEN=44 TOS=0x10 PREC=0x00 TTL=110 ID=189 PROTO=TCP SPT=20368 DPT=60129 WINDOW=57210 RES=0x00 SYN URGP=0 |
2019-12-26 16:25:21 |
| 112.85.42.176 | attack | 2019-12-26T08:48:54.879836ns386461 sshd\[31718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root 2019-12-26T08:48:57.204040ns386461 sshd\[31718\]: Failed password for root from 112.85.42.176 port 46525 ssh2 2019-12-26T08:49:00.102461ns386461 sshd\[31718\]: Failed password for root from 112.85.42.176 port 46525 ssh2 2019-12-26T08:49:04.078531ns386461 sshd\[31718\]: Failed password for root from 112.85.42.176 port 46525 ssh2 2019-12-26T08:49:07.594524ns386461 sshd\[31718\]: Failed password for root from 112.85.42.176 port 46525 ssh2 ... |
2019-12-26 16:22:22 |
| 223.241.118.173 | attackspam | Dec 26 07:15:36 mxgate1 postfix/postscreen[11031]: CONNECT from [223.241.118.173]:52040 to [176.31.12.44]:25 Dec 26 07:15:36 mxgate1 postfix/dnsblog[11033]: addr 223.241.118.173 listed by domain cbl.abuseat.org as 127.0.0.2 Dec 26 07:15:36 mxgate1 postfix/dnsblog[11036]: addr 223.241.118.173 listed by domain zen.spamhaus.org as 127.0.0.2 Dec 26 07:15:36 mxgate1 postfix/dnsblog[11036]: addr 223.241.118.173 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 26 07:15:36 mxgate1 postfix/dnsblog[11036]: addr 223.241.118.173 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 26 07:15:36 mxgate1 postfix/dnsblog[11036]: addr 223.241.118.173 listed by domain zen.spamhaus.org as 127.0.0.3 Dec 26 07:15:36 mxgate1 postfix/dnsblog[11034]: addr 223.241.118.173 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 26 07:15:42 mxgate1 postfix/postscreen[11031]: DNSBL rank 4 for [223.241.118.173]:52040 Dec x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=223.241.118.1 |
2019-12-26 16:16:12 |
| 168.227.99.10 | attack | Invalid user server from 168.227.99.10 port 46844 |
2019-12-26 16:26:20 |
| 104.248.126.170 | attackspambots | Dec 26 08:36:35 srv-ubuntu-dev3 sshd[89227]: Invalid user heys from 104.248.126.170 Dec 26 08:36:35 srv-ubuntu-dev3 sshd[89227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.126.170 Dec 26 08:36:35 srv-ubuntu-dev3 sshd[89227]: Invalid user heys from 104.248.126.170 Dec 26 08:36:37 srv-ubuntu-dev3 sshd[89227]: Failed password for invalid user heys from 104.248.126.170 port 46728 ssh2 Dec 26 08:39:38 srv-ubuntu-dev3 sshd[89685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.126.170 user=sync Dec 26 08:39:40 srv-ubuntu-dev3 sshd[89685]: Failed password for sync from 104.248.126.170 port 51912 ssh2 Dec 26 08:42:49 srv-ubuntu-dev3 sshd[89951]: Invalid user kyte from 104.248.126.170 Dec 26 08:42:49 srv-ubuntu-dev3 sshd[89951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.126.170 Dec 26 08:42:49 srv-ubuntu-dev3 sshd[89951]: Invalid user kyte ... |
2019-12-26 16:30:24 |
| 201.161.58.95 | attackbots | SSH bruteforce |
2019-12-26 16:03:06 |
| 212.232.25.224 | attack | Dec 26 07:39:13 DAAP sshd[3602]: Invalid user rotpunk from 212.232.25.224 port 38298 Dec 26 07:39:13 DAAP sshd[3602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.232.25.224 Dec 26 07:39:13 DAAP sshd[3602]: Invalid user rotpunk from 212.232.25.224 port 38298 Dec 26 07:39:14 DAAP sshd[3602]: Failed password for invalid user rotpunk from 212.232.25.224 port 38298 ssh2 Dec 26 07:44:14 DAAP sshd[3696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.232.25.224 user=root Dec 26 07:44:16 DAAP sshd[3696]: Failed password for root from 212.232.25.224 port 54557 ssh2 ... |
2019-12-26 16:17:06 |
| 83.149.44.145 | attackbots | Unauthorized connection attempt detected from IP address 83.149.44.145 to port 445 |
2019-12-26 16:19:46 |
| 31.210.211.114 | attackbotsspam | Dec 26 08:45:29 srv-ubuntu-dev3 sshd[90174]: Invalid user ven0m from 31.210.211.114 Dec 26 08:45:29 srv-ubuntu-dev3 sshd[90174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.210.211.114 Dec 26 08:45:29 srv-ubuntu-dev3 sshd[90174]: Invalid user ven0m from 31.210.211.114 Dec 26 08:45:31 srv-ubuntu-dev3 sshd[90174]: Failed password for invalid user ven0m from 31.210.211.114 port 50112 ssh2 Dec 26 08:50:23 srv-ubuntu-dev3 sshd[90594]: Invalid user saadiyah from 31.210.211.114 Dec 26 08:50:23 srv-ubuntu-dev3 sshd[90594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.210.211.114 Dec 26 08:50:23 srv-ubuntu-dev3 sshd[90594]: Invalid user saadiyah from 31.210.211.114 Dec 26 08:50:25 srv-ubuntu-dev3 sshd[90594]: Failed password for invalid user saadiyah from 31.210.211.114 port 41635 ssh2 Dec 26 08:54:40 srv-ubuntu-dev3 sshd[91089]: Invalid user wangtingting from 31.210.211.114 ... |
2019-12-26 16:28:21 |
| 182.53.96.198 | attack | Unauthorized connection attempt detected from IP address 182.53.96.198 to port 445 |
2019-12-26 16:25:50 |
| 186.122.148.9 | attack | 2019-12-26T07:11:39.265905abusebot-2.cloudsearch.cf sshd[12780]: Invalid user jagan from 186.122.148.9 port 36318 2019-12-26T07:11:39.272763abusebot-2.cloudsearch.cf sshd[12780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.9 2019-12-26T07:11:39.265905abusebot-2.cloudsearch.cf sshd[12780]: Invalid user jagan from 186.122.148.9 port 36318 2019-12-26T07:11:41.105582abusebot-2.cloudsearch.cf sshd[12780]: Failed password for invalid user jagan from 186.122.148.9 port 36318 ssh2 2019-12-26T07:16:42.423487abusebot-2.cloudsearch.cf sshd[12782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.9 user=bin 2019-12-26T07:16:44.853364abusebot-2.cloudsearch.cf sshd[12782]: Failed password for bin from 186.122.148.9 port 40220 ssh2 2019-12-26T07:19:12.289525abusebot-2.cloudsearch.cf sshd[12788]: Invalid user naci from 186.122.148.9 port 59074 ... |
2019-12-26 15:51:34 |