City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.194.141.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33760
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;148.194.141.71. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012802 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 08:36:27 CST 2025
;; MSG SIZE rcvd: 107Host 71.141.194.148.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 71.141.194.148.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 118.189.74.228 | attack | SSH Brute-Forcing (server2) |
2020-08-20 22:05:09 |
| 45.176.213.241 | attack | Aug 20 13:54:18 mail.srvfarm.net postfix/smtpd[859962]: warning: unknown[45.176.213.241]: SASL PLAIN authentication failed: Aug 20 13:54:18 mail.srvfarm.net postfix/smtpd[859962]: lost connection after AUTH from unknown[45.176.213.241] Aug 20 14:01:50 mail.srvfarm.net postfix/smtpd[861543]: warning: unknown[45.176.213.241]: SASL PLAIN authentication failed: Aug 20 14:01:51 mail.srvfarm.net postfix/smtpd[861543]: lost connection after AUTH from unknown[45.176.213.241] Aug 20 14:03:02 mail.srvfarm.net postfix/smtpd[874028]: warning: unknown[45.176.213.241]: SASL PLAIN authentication failed: |
2020-08-20 22:34:09 |
| 3.125.68.134 | attack | Aug 20 16:05:37 abendstille sshd\[16295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.125.68.134 user=root Aug 20 16:05:39 abendstille sshd\[16295\]: Failed password for root from 3.125.68.134 port 40524 ssh2 Aug 20 16:09:37 abendstille sshd\[20078\]: Invalid user ct from 3.125.68.134 Aug 20 16:09:37 abendstille sshd\[20078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.125.68.134 Aug 20 16:09:39 abendstille sshd\[20078\]: Failed password for invalid user ct from 3.125.68.134 port 49858 ssh2 ... |
2020-08-20 22:14:43 |
| 138.128.10.137 | attack | Automatic report - Banned IP Access |
2020-08-20 22:00:18 |
| 116.227.23.255 | attack | Aug 20 14:06:42 sshgateway sshd\[21152\]: Invalid user ghost from 116.227.23.255 Aug 20 14:06:42 sshgateway sshd\[21152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.227.23.255 Aug 20 14:06:44 sshgateway sshd\[21152\]: Failed password for invalid user ghost from 116.227.23.255 port 15669 ssh2 |
2020-08-20 21:56:51 |
| 201.209.169.158 | attack | Port Scan ... |
2020-08-20 21:59:15 |
| 43.226.34.171 | attack | Aug 20 12:06:20 marvibiene sshd[36021]: Invalid user xflow from 43.226.34.171 port 35004 Aug 20 12:06:20 marvibiene sshd[36021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.34.171 Aug 20 12:06:20 marvibiene sshd[36021]: Invalid user xflow from 43.226.34.171 port 35004 Aug 20 12:06:23 marvibiene sshd[36021]: Failed password for invalid user xflow from 43.226.34.171 port 35004 ssh2 |
2020-08-20 22:14:30 |
| 36.156.153.112 | attackspam | Aug 20 19:10:16 dhoomketu sshd[2517517]: Invalid user xbmc from 36.156.153.112 port 51886 Aug 20 19:10:16 dhoomketu sshd[2517517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.153.112 Aug 20 19:10:16 dhoomketu sshd[2517517]: Invalid user xbmc from 36.156.153.112 port 51886 Aug 20 19:10:18 dhoomketu sshd[2517517]: Failed password for invalid user xbmc from 36.156.153.112 port 51886 ssh2 Aug 20 19:13:26 dhoomketu sshd[2517560]: Invalid user adam from 36.156.153.112 port 48126 ... |
2020-08-20 21:57:32 |
| 31.47.99.50 | attack | Aug 20 13:55:43 mail.srvfarm.net postfix/smtps/smtpd[860656]: warning: unknown[31.47.99.50]: SASL PLAIN authentication failed: Aug 20 13:55:43 mail.srvfarm.net postfix/smtps/smtpd[860656]: lost connection after AUTH from unknown[31.47.99.50] Aug 20 13:59:26 mail.srvfarm.net postfix/smtps/smtpd[860656]: warning: unknown[31.47.99.50]: SASL PLAIN authentication failed: Aug 20 13:59:26 mail.srvfarm.net postfix/smtps/smtpd[860656]: lost connection after AUTH from unknown[31.47.99.50] Aug 20 14:04:13 mail.srvfarm.net postfix/smtpd[861543]: warning: unknown[31.47.99.50]: SASL PLAIN authentication failed: |
2020-08-20 22:34:29 |
| 182.61.40.124 | attack | invalid user |
2020-08-20 22:30:07 |
| 40.85.145.122 | attackspam | 40.85.145.122 - - [20/Aug/2020:13:46:44 +0100] "POST //xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 40.85.145.122 - - [20/Aug/2020:13:46:44 +0100] "POST //xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 40.85.145.122 - - [20/Aug/2020:13:46:45 +0100] "POST //xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" ... |
2020-08-20 22:27:15 |
| 222.186.30.76 | attack | Aug 20 19:22:13 gw1 sshd[32356]: Failed password for root from 222.186.30.76 port 41771 ssh2 ... |
2020-08-20 22:28:12 |
| 114.104.134.156 | attackbots | Aug 20 16:05:39 srv01 postfix/smtpd\[2488\]: warning: unknown\[114.104.134.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 20 16:05:51 srv01 postfix/smtpd\[2488\]: warning: unknown\[114.104.134.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 20 16:06:08 srv01 postfix/smtpd\[2488\]: warning: unknown\[114.104.134.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 20 16:06:27 srv01 postfix/smtpd\[2488\]: warning: unknown\[114.104.134.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 20 16:06:39 srv01 postfix/smtpd\[2488\]: warning: unknown\[114.104.134.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-08-20 22:15:32 |
| 188.40.194.205 | attackbotsspam | SpamScore above: 10.0 |
2020-08-20 22:08:18 |
| 151.236.59.142 | attack | Aug 20 07:00:37 dignus sshd[12380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.236.59.142 user=root Aug 20 07:00:39 dignus sshd[12380]: Failed password for root from 151.236.59.142 port 43754 ssh2 Aug 20 07:04:14 dignus sshd[12874]: Invalid user micro from 151.236.59.142 port 51396 Aug 20 07:04:14 dignus sshd[12874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.236.59.142 Aug 20 07:04:16 dignus sshd[12874]: Failed password for invalid user micro from 151.236.59.142 port 51396 ssh2 ... |
2020-08-20 22:05:55 |