City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.251.52.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50433
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;148.251.52.138. IN A
;; AUTHORITY SECTION:
. 512 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400
;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 04:31:41 CST 2022
;; MSG SIZE rcvd: 107138.52.251.148.in-addr.arpa domain name pointer static.138.52.251.148.clients.your-server.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
138.52.251.148.in-addr.arpa name = static.138.52.251.148.clients.your-server.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 61.183.9.191 | attack | Jul 12 12:36:23 vibhu-HP-Z238-Microtower-Workstation sshd\[9209\]: Invalid user taiga from 61.183.9.191 Jul 12 12:36:23 vibhu-HP-Z238-Microtower-Workstation sshd\[9209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.9.191 Jul 12 12:36:25 vibhu-HP-Z238-Microtower-Workstation sshd\[9209\]: Failed password for invalid user taiga from 61.183.9.191 port 50106 ssh2 Jul 12 12:40:38 vibhu-HP-Z238-Microtower-Workstation sshd\[10211\]: Invalid user user from 61.183.9.191 Jul 12 12:40:38 vibhu-HP-Z238-Microtower-Workstation sshd\[10211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.9.191 ... |
2019-07-12 15:11:13 |
| 112.198.194.243 | attackspam | Jul 12 01:58:55 aat-srv002 sshd[3745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.198.194.243 Jul 12 01:58:57 aat-srv002 sshd[3745]: Failed password for invalid user www from 112.198.194.243 port 34251 ssh2 Jul 12 02:05:21 aat-srv002 sshd[3968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.198.194.243 Jul 12 02:05:23 aat-srv002 sshd[3968]: Failed password for invalid user tushar from 112.198.194.243 port 63386 ssh2 ... |
2019-07-12 15:27:56 |
| 5.196.88.110 | attackspambots | SSH authentication failure x 6 reported by Fail2Ban ... |
2019-07-12 15:18:46 |
| 165.227.9.145 | attackbotsspam | Jul 12 09:19:07 eventyay sshd[22690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.9.145 Jul 12 09:19:09 eventyay sshd[22690]: Failed password for invalid user joe from 165.227.9.145 port 56408 ssh2 Jul 12 09:24:25 eventyay sshd[24073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.9.145 ... |
2019-07-12 15:38:11 |
| 5.95.118.146 | attackspam | port scan and connect, tcp 23 (telnet) |
2019-07-12 15:04:31 |
| 178.33.45.156 | attack | Jul 12 08:51:04 minden010 sshd[31747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.45.156 Jul 12 08:51:06 minden010 sshd[31747]: Failed password for invalid user sammy from 178.33.45.156 port 35684 ssh2 Jul 12 08:56:30 minden010 sshd[1196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.45.156 ... |
2019-07-12 15:49:04 |
| 185.234.216.206 | attack | 2019-07-11 18:54:59 dovecot_login authenticator failed for (YnFkm5V) [185.234.216.206]:26549 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=larfx@lerctr.org) 2019-07-11 18:55:16 dovecot_login authenticator failed for (V5ELVbyp) [185.234.216.206]:33602 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=larfx@lerctr.org) 2019-07-11 18:55:37 dovecot_login authenticator failed for (UEfpDrZ) [185.234.216.206]:44027 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=larfx@lerctr.org) ... |
2019-07-12 15:35:03 |
| 103.42.57.65 | attackspambots | Jul 12 08:46:18 * sshd[12811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 Jul 12 08:46:21 * sshd[12811]: Failed password for invalid user tom from 103.42.57.65 port 56648 ssh2 |
2019-07-12 15:16:41 |
| 142.93.117.249 | attackspam | Jul 11 15:05:08 voyager sshd[43035]: Disconnected from invalid user ry 142.93.117.249 port 36358 [preauth] Jul 11 15:09:36 voyager sshd[19117]: Invalid user fp from 142.93.117.249 port 36474 Jul 11 15:09:36 voyager sshd[19117]: Failed password for invalid user fp from 142.93.117.249 port 36474 ssh2 Jul 11 15:09:36 voyager sshd[19117]: Received disconnect from 142.93.117. |
2019-07-12 15:23:06 |
| 159.192.121.133 | attack | Automatic report - Web App Attack |
2019-07-12 15:12:20 |
| 185.222.211.236 | attack | postfix-gen jail [ti] |
2019-07-12 15:36:34 |
| 92.118.37.84 | attack | Jul 12 07:06:41 mail kernel: [3413047.771767] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=46443 PROTO=TCP SPT=41610 DPT=47008 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 12 07:07:34 mail kernel: [3413100.735680] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=43609 PROTO=TCP SPT=41610 DPT=18619 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 12 07:10:04 mail kernel: [3413250.975169] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=13550 PROTO=TCP SPT=41610 DPT=44448 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 12 07:11:03 mail kernel: [3413310.624647] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=18901 PROTO=TCP SPT=41610 DPT=58570 WINDOW=1024 RES=0x00 SYN |
2019-07-12 15:53:02 |
| 14.63.118.249 | attack | Lines containing failures of 14.63.118.249 Jul 12 03:23:31 shared12 sshd[21533]: Bad protocol version identification '' from 14.63.118.249 port 57406 Jul 12 03:23:38 shared12 sshd[21534]: Invalid user osboxes from 14.63.118.249 port 58140 Jul 12 03:23:39 shared12 sshd[21534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.118.249 Jul 12 03:23:41 shared12 sshd[21534]: Failed password for invalid user osboxes from 14.63.118.249 port 58140 ssh2 Jul 12 03:23:42 shared12 sshd[21534]: Connection closed by invalid user osboxes 14.63.118.249 port 58140 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.63.118.249 |
2019-07-12 15:22:01 |
| 167.99.138.153 | attack | Jul 12 08:40:49 mail sshd\[9271\]: Invalid user lena from 167.99.138.153 port 46192 Jul 12 08:40:49 mail sshd\[9271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153 Jul 12 08:40:51 mail sshd\[9271\]: Failed password for invalid user lena from 167.99.138.153 port 46192 ssh2 Jul 12 08:48:10 mail sshd\[10724\]: Invalid user jenkins from 167.99.138.153 port 48002 Jul 12 08:48:10 mail sshd\[10724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153 |
2019-07-12 14:59:17 |
| 121.67.246.132 | attackbots | Jul 12 06:56:52 ip-172-31-1-72 sshd\[13401\]: Invalid user flor from 121.67.246.132 Jul 12 06:56:52 ip-172-31-1-72 sshd\[13401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.132 Jul 12 06:56:54 ip-172-31-1-72 sshd\[13401\]: Failed password for invalid user flor from 121.67.246.132 port 43354 ssh2 Jul 12 07:02:54 ip-172-31-1-72 sshd\[13514\]: Invalid user tester from 121.67.246.132 Jul 12 07:02:54 ip-172-31-1-72 sshd\[13514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.132 |
2019-07-12 15:17:45 |