City: Heidelberg
Region: Baden-Württemberg
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.142.90.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57299
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;147.142.90.50. IN A
;; AUTHORITY SECTION:
. 438 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022010702 1800 900 604800 86400
;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 08 09:58:51 CST 2022
;; MSG SIZE rcvd: 10650.90.142.147.in-addr.arpa domain name pointer dhcp050.laptop-kapla.uni-heidelberg.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
50.90.142.147.in-addr.arpa name = dhcp050.laptop-kapla.uni-heidelberg.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 2.42.57.234 | attack | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-09-28 21:24:26 |
| 223.71.1.209 | attackbotsspam | Sep 28 02:54:50 xeon sshd[48121]: Failed password for invalid user user from 223.71.1.209 port 50164 ssh2 |
2020-09-28 21:37:19 |
| 39.101.67.145 | attackspam | Speculative search for admin folders |
2020-09-28 21:38:27 |
| 109.116.41.238 | attack | 2020-09-28T13:16:38.194696randservbullet-proofcloud-66.localdomain sshd[27576]: Invalid user test from 109.116.41.238 port 56004 2020-09-28T13:16:38.199204randservbullet-proofcloud-66.localdomain sshd[27576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.116.41.238 2020-09-28T13:16:38.194696randservbullet-proofcloud-66.localdomain sshd[27576]: Invalid user test from 109.116.41.238 port 56004 2020-09-28T13:16:40.995016randservbullet-proofcloud-66.localdomain sshd[27576]: Failed password for invalid user test from 109.116.41.238 port 56004 ssh2 ... |
2020-09-28 21:18:26 |
| 151.236.59.142 | attackspam | Sep 28 15:10:07 minden010 sshd[13090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.236.59.142 Sep 28 15:10:09 minden010 sshd[13090]: Failed password for invalid user andrew from 151.236.59.142 port 59526 ssh2 Sep 28 15:13:37 minden010 sshd[14269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.236.59.142 ... |
2020-09-28 21:30:58 |
| 103.114.208.198 | attack | SSH Bruteforce Attempt on Honeypot |
2020-09-28 21:15:14 |
| 106.12.38.133 | attackspam | $f2bV_matches |
2020-09-28 21:15:43 |
| 61.132.227.16 | attack | [H1] Blocked by UFW |
2020-09-28 21:14:35 |
| 167.71.237.73 | attackspam | Sep 27 22:04:17 NPSTNNYC01T sshd[3584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.237.73 Sep 27 22:04:19 NPSTNNYC01T sshd[3584]: Failed password for invalid user postgres from 167.71.237.73 port 48690 ssh2 Sep 27 22:08:28 NPSTNNYC01T sshd[4094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.237.73 ... |
2020-09-28 21:46:25 |
| 110.49.71.143 | attack | Time: Sat Sep 26 22:27:00 2020 +0000 IP: 110.49.71.143 (TH/Thailand/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 26 22:03:39 activeserver sshd[8448]: Invalid user user from 110.49.71.143 port 57852 Sep 26 22:03:40 activeserver sshd[8448]: Failed password for invalid user user from 110.49.71.143 port 57852 ssh2 Sep 26 22:21:30 activeserver sshd[19243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.143 user=root Sep 26 22:21:31 activeserver sshd[19243]: Failed password for root from 110.49.71.143 port 36130 ssh2 Sep 26 22:26:59 activeserver sshd[323]: Invalid user admin from 110.49.71.143 port 40808 |
2020-09-28 21:52:12 |
| 194.246.74.170 | attackspambots | Automatic report - Banned IP Access |
2020-09-28 21:40:19 |
| 178.62.52.150 | attack | Sep 28 12:17:11 sshgateway sshd\[22990\]: Invalid user bootcamp from 178.62.52.150 Sep 28 12:17:11 sshgateway sshd\[22990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.52.150 Sep 28 12:17:13 sshgateway sshd\[22990\]: Failed password for invalid user bootcamp from 178.62.52.150 port 51134 ssh2 |
2020-09-28 21:24:45 |
| 103.8.119.166 | attack | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-28T12:51:19Z and 2020-09-28T13:03:04Z |
2020-09-28 21:44:39 |
| 211.239.124.237 | attack | 2020-09-28T08:28:10.5709231495-001 sshd[338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.239.124.237 user=root 2020-09-28T08:28:12.1480061495-001 sshd[338]: Failed password for root from 211.239.124.237 port 40820 ssh2 2020-09-28T08:30:18.3165711495-001 sshd[407]: Invalid user martin from 211.239.124.237 port 43958 2020-09-28T08:30:18.3200931495-001 sshd[407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.239.124.237 2020-09-28T08:30:18.3165711495-001 sshd[407]: Invalid user martin from 211.239.124.237 port 43958 2020-09-28T08:30:20.4690721495-001 sshd[407]: Failed password for invalid user martin from 211.239.124.237 port 43958 ssh2 ... |
2020-09-28 21:33:11 |
| 167.172.201.94 | attackspam | (sshd) Failed SSH login from 167.172.201.94 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 28 12:44:03 server2 sshd[703]: Invalid user jeffrey from 167.172.201.94 port 54364 Sep 28 12:44:05 server2 sshd[703]: Failed password for invalid user jeffrey from 167.172.201.94 port 54364 ssh2 Sep 28 12:54:28 server2 sshd[2451]: Invalid user www-data from 167.172.201.94 port 43738 Sep 28 12:54:29 server2 sshd[2451]: Failed password for invalid user www-data from 167.172.201.94 port 43738 ssh2 Sep 28 12:57:30 server2 sshd[2959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.201.94 user=root |
2020-09-28 21:14:50 |