City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.25.76.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14154
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;148.25.76.42. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020400 1800 900 604800 86400
;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 22:28:27 CST 2025
;; MSG SIZE rcvd: 105Host 42.76.25.148.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 42.76.25.148.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 2001:470:1:31b:461e:a1ff:fe47:cf08 | attackspam | xmlrpc attack |
2020-05-05 01:04:57 |
| 167.99.88.132 | attackbots | Path traversal "miner.exe" malware |
2020-05-05 00:47:35 |
| 106.52.40.48 | attackspambots | May 4 16:05:20 ArkNodeAT sshd\[3334\]: Invalid user nifi from 106.52.40.48 May 4 16:05:20 ArkNodeAT sshd\[3334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.40.48 May 4 16:05:21 ArkNodeAT sshd\[3334\]: Failed password for invalid user nifi from 106.52.40.48 port 39862 ssh2 |
2020-05-05 01:08:42 |
| 113.141.166.197 | attackspambots | May 4 22:00:08 web1 sshd[25148]: Invalid user wifi from 113.141.166.197 port 34556 May 4 22:00:08 web1 sshd[25148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.166.197 May 4 22:00:08 web1 sshd[25148]: Invalid user wifi from 113.141.166.197 port 34556 May 4 22:00:09 web1 sshd[25148]: Failed password for invalid user wifi from 113.141.166.197 port 34556 ssh2 May 4 22:07:09 web1 sshd[26818]: Invalid user admin from 113.141.166.197 port 50270 May 4 22:07:09 web1 sshd[26818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.166.197 May 4 22:07:09 web1 sshd[26818]: Invalid user admin from 113.141.166.197 port 50270 May 4 22:07:11 web1 sshd[26818]: Failed password for invalid user admin from 113.141.166.197 port 50270 ssh2 May 4 22:10:46 web1 sshd[27979]: Invalid user brother from 113.141.166.197 port 36938 ... |
2020-05-05 00:52:59 |
| 120.53.3.4 | attack | May 4 19:16:52 gw1 sshd[15819]: Failed password for root from 120.53.3.4 port 52712 ssh2 ... |
2020-05-05 01:01:32 |
| 118.89.135.162 | attackbots | May 5 00:57:59 localhost sshd[1186192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.135.162 user=mysql May 5 00:58:00 localhost sshd[1186192]: Failed password for mysql from 118.89.135.162 port 52824 ssh2 ... |
2020-05-05 01:11:55 |
| 218.92.0.205 | attack | 2020-05-04T12:33:04.369597xentho-1 sshd[94019]: Failed password for root from 218.92.0.205 port 31603 ssh2 2020-05-04T12:33:02.802057xentho-1 sshd[94019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.205 user=root 2020-05-04T12:33:04.369597xentho-1 sshd[94019]: Failed password for root from 218.92.0.205 port 31603 ssh2 2020-05-04T12:33:08.386573xentho-1 sshd[94019]: Failed password for root from 218.92.0.205 port 31603 ssh2 2020-05-04T12:33:02.802057xentho-1 sshd[94019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.205 user=root 2020-05-04T12:33:04.369597xentho-1 sshd[94019]: Failed password for root from 218.92.0.205 port 31603 ssh2 2020-05-04T12:33:08.386573xentho-1 sshd[94019]: Failed password for root from 218.92.0.205 port 31603 ssh2 2020-05-04T12:33:10.519414xentho-1 sshd[94019]: Failed password for root from 218.92.0.205 port 31603 ssh2 2020-05-04T12:34:46.851531xentho-1 ssh ... |
2020-05-05 00:56:41 |
| 5.14.10.31 | attack | port scan and connect, tcp 80 (http) |
2020-05-05 00:38:46 |
| 59.61.83.118 | attackspam | 2020-05-04 18:14:45,406 fail2ban.actions: WARNING [ssh] Ban 59.61.83.118 |
2020-05-05 00:59:16 |
| 190.193.177.22 | attackspam | May 4 12:21:48 vlre-nyc-1 sshd\[26277\]: Invalid user duke from 190.193.177.22 May 4 12:21:48 vlre-nyc-1 sshd\[26277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.193.177.22 May 4 12:21:51 vlre-nyc-1 sshd\[26277\]: Failed password for invalid user duke from 190.193.177.22 port 54922 ssh2 May 4 12:30:05 vlre-nyc-1 sshd\[26630\]: Invalid user hadoop from 190.193.177.22 May 4 12:30:05 vlre-nyc-1 sshd\[26630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.193.177.22 ... |
2020-05-05 00:51:11 |
| 134.209.90.139 | attack | May 4 16:49:59 ip-172-31-62-245 sshd\[8676\]: Invalid user nom from 134.209.90.139\ May 4 16:50:01 ip-172-31-62-245 sshd\[8676\]: Failed password for invalid user nom from 134.209.90.139 port 36914 ssh2\ May 4 16:53:32 ip-172-31-62-245 sshd\[8710\]: Invalid user anil from 134.209.90.139\ May 4 16:53:34 ip-172-31-62-245 sshd\[8710\]: Failed password for invalid user anil from 134.209.90.139 port 46554 ssh2\ May 4 16:57:18 ip-172-31-62-245 sshd\[8744\]: Failed password for root from 134.209.90.139 port 56162 ssh2\ |
2020-05-05 01:22:39 |
| 206.189.173.75 | attackbots | Port scan(s) denied |
2020-05-05 01:16:14 |
| 212.92.107.245 | attackspambots | scan r |
2020-05-05 01:03:43 |
| 95.110.154.101 | attackspambots | May 4 18:41:49 plex sshd[16998]: Invalid user auction from 95.110.154.101 port 48680 |
2020-05-05 00:49:24 |
| 186.214.162.90 | attackspambots | Automatic report - Port Scan Attack |
2020-05-05 01:07:09 |