City: Guaymate
Region: Provincia de La Romana
Country: Dominican Republic
Internet Service Provider: unknown
Hostname: unknown
Organization: Compañía Dominicana de Teléfonos, C. por A. - CODETEL
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.0.110.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55558
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.0.110.239. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019082900 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 30 01:25:28 CST 2019
;; MSG SIZE rcvd: 117239.110.0.148.in-addr.arpa domain name pointer 239.110.0.148.d.dyn.claro.net.do.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
239.110.0.148.in-addr.arpa name = 239.110.0.148.d.dyn.claro.net.do.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 124.70.66.245 | attack | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-10-02 13:17:39 |
| 58.33.84.251 | attackbotsspam | Invalid user samba1 from 58.33.84.251 port 61653 |
2020-10-02 13:11:15 |
| 222.186.31.166 | attackspam | Oct 2 06:37:33 vps647732 sshd[13413]: Failed password for root from 222.186.31.166 port 62194 ssh2 Oct 2 06:37:35 vps647732 sshd[13413]: Failed password for root from 222.186.31.166 port 62194 ssh2 ... |
2020-10-02 12:38:43 |
| 106.53.220.103 | attackbotsspam | Oct 2 00:16:30 dignus sshd[8408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Oct 2 00:16:32 dignus sshd[8408]: Failed password for invalid user user3 from 106.53.220.103 port 45420 ssh2 Oct 2 00:19:48 dignus sshd[8801]: Invalid user ftpuser from 106.53.220.103 port 40432 Oct 2 00:19:48 dignus sshd[8801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Oct 2 00:19:50 dignus sshd[8801]: Failed password for invalid user ftpuser from 106.53.220.103 port 40432 ssh2 ... |
2020-10-02 13:14:09 |
| 213.39.55.13 | attack | Invalid user rpm from 213.39.55.13 port 53874 |
2020-10-02 13:19:16 |
| 45.77.176.234 | attack | Oct 2 06:17:53 vps8769 sshd[18562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.77.176.234 Oct 2 06:17:54 vps8769 sshd[18562]: Failed password for invalid user hdfs from 45.77.176.234 port 11230 ssh2 ... |
2020-10-02 13:15:01 |
| 117.5.152.161 | attackspambots | Oct 1 20:33:40 XXX sshd[13822]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13824]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13823]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13825]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13826]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13827]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:44 XXX sshd[13845]: Address 117.5.152.161 maps to localhost, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 1 20:33:44 XXX sshd[13845]: Invalid user nagesh from 117.5.152.161 Oct 1 20:33:44 XXX sshd[13844]: Address 117.5.152.161 maps to localhost, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 1 20:33:44 XXX sshd[13844]: Invalid user nagesh from 117.5.152.161 Oct 1 20:........ ------------------------------- |
2020-10-02 13:05:15 |
| 113.184.19.94 | attackspambots | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: static.vnpt.vn. |
2020-10-02 12:46:13 |
| 115.159.152.188 | attack | Invalid user oracle from 115.159.152.188 port 33576 |
2020-10-02 13:08:47 |
| 1.235.192.218 | attackspambots | Invalid user contabilidad from 1.235.192.218 port 44068 |
2020-10-02 13:20:29 |
| 46.105.31.249 | attackspam | Invalid user apache2 from 46.105.31.249 port 45928 |
2020-10-02 13:18:36 |
| 218.108.186.218 | attackbotsspam | ssh intrusion attempt |
2020-10-02 12:39:56 |
| 125.121.169.12 | attackbots | Oct 1 20:36:27 CT3029 sshd[7768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.121.169.12 user=r.r Oct 1 20:36:30 CT3029 sshd[7768]: Failed password for r.r from 125.121.169.12 port 35924 ssh2 Oct 1 20:36:30 CT3029 sshd[7768]: Received disconnect from 125.121.169.12 port 35924:11: Bye Bye [preauth] Oct 1 20:36:30 CT3029 sshd[7768]: Disconnected from 125.121.169.12 port 35924 [preauth] Oct 1 20:36:54 CT3029 sshd[7770]: Invalid user tiago from 125.121.169.12 port 39270 Oct 1 20:36:54 CT3029 sshd[7770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.121.169.12 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.121.169.12 |
2020-10-02 13:10:29 |
| 174.138.52.50 | attack | Oct 1 23:39:01 lanister sshd[23430]: Invalid user jessica from 174.138.52.50 Oct 1 23:39:02 lanister sshd[23430]: Failed password for invalid user jessica from 174.138.52.50 port 52480 ssh2 Oct 1 23:44:04 lanister sshd[23552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.52.50 user=root Oct 1 23:44:07 lanister sshd[23552]: Failed password for root from 174.138.52.50 port 60178 ssh2 |
2020-10-02 12:42:15 |
| 54.177.211.200 | attackspam | port scan and connect, tcp 23 (telnet) |
2020-10-02 13:00:33 |