City: unknown
Region: unknown
Country: United Kingdom of Great Britain and Northern Ireland (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.53.232.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26196
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;148.53.232.45. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012902 1800 900 604800 86400
;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 10:25:08 CST 2025
;; MSG SIZE rcvd: 106Host 45.232.53.148.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 45.232.53.148.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 89.42.252.124 | attack | Unauthorized SSH login attempts |
2019-10-07 19:25:26 |
| 103.228.55.79 | attack | web-1 [ssh] SSH Attack |
2019-10-07 19:21:34 |
| 79.7.207.99 | attack | Oct 6 18:25:14 kapalua sshd\[9132\]: Invalid user qwer@12 from 79.7.207.99 Oct 6 18:25:14 kapalua sshd\[9132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host99-207-static.7-79-b.business.telecomitalia.it Oct 6 18:25:16 kapalua sshd\[9132\]: Failed password for invalid user qwer@12 from 79.7.207.99 port 57794 ssh2 Oct 6 18:29:02 kapalua sshd\[9530\]: Invalid user P@\$\$@2020 from 79.7.207.99 Oct 6 18:29:02 kapalua sshd\[9530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host99-207-static.7-79-b.business.telecomitalia.it |
2019-10-07 19:06:50 |
| 58.218.66.177 | attackbotsspam | Port 1433 Scan |
2019-10-07 19:35:10 |
| 60.189.144.121 | attackbots | Port 1433 Scan |
2019-10-07 19:32:03 |
| 92.63.194.240 | attackspambots | RDP Brute-Force (Grieskirchen RZ2) |
2019-10-07 19:21:16 |
| 192.99.166.179 | attackbotsspam | SSH/22 MH Probe, BF, Hack - |
2019-10-07 19:10:08 |
| 58.221.60.49 | attack | Oct 7 12:17:54 server sshd\[8127\]: User root from 58.221.60.49 not allowed because listed in DenyUsers Oct 7 12:17:54 server sshd\[8127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.221.60.49 user=root Oct 7 12:17:56 server sshd\[8127\]: Failed password for invalid user root from 58.221.60.49 port 54784 ssh2 Oct 7 12:21:30 server sshd\[31267\]: User root from 58.221.60.49 not allowed because listed in DenyUsers Oct 7 12:21:30 server sshd\[31267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.221.60.49 user=root |
2019-10-07 19:03:32 |
| 202.75.62.141 | attack | Oct 7 15:34:33 lcl-usvr-01 sshd[2253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.75.62.141 user=root Oct 7 15:39:05 lcl-usvr-01 sshd[3863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.75.62.141 user=root Oct 7 15:43:31 lcl-usvr-01 sshd[5729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.75.62.141 user=root |
2019-10-07 19:05:28 |
| 51.91.193.116 | attackspambots | 2019-10-07 10:08:25,520 fail2ban.actions: WARNING [ssh] Ban 51.91.193.116 |
2019-10-07 18:58:23 |
| 50.62.176.116 | attack | fail2ban honeypot |
2019-10-07 19:24:11 |
| 106.225.129.108 | attackspambots | Lines containing failures of 106.225.129.108 Oct 6 00:08:43 vps9 sshd[22354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.129.108 user=r.r Oct 6 00:08:45 vps9 sshd[22354]: Failed password for r.r from 106.225.129.108 port 38957 ssh2 Oct 6 00:08:45 vps9 sshd[22354]: Received disconnect from 106.225.129.108 port 38957:11: Bye Bye [preauth] Oct 6 00:08:45 vps9 sshd[22354]: Disconnected from authenticating user r.r 106.225.129.108 port 38957 [preauth] Oct 6 00:35:19 vps9 sshd[3046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.129.108 user=r.r Oct 6 00:35:21 vps9 sshd[3046]: Failed password for r.r from 106.225.129.108 port 50989 ssh2 Oct 6 00:35:21 vps9 sshd[3046]: Received disconnect from 106.225.129.108 port 50989:11: Bye Bye [preauth] Oct 6 00:35:21 vps9 sshd[3046]: Disconnected from authenticating user r.r 106.225.129.108 port 50989 [preauth] Oct 6 00:39:27 ........ ------------------------------ |
2019-10-07 19:20:52 |
| 178.62.12.192 | attackbotsspam | Lines containing failures of 178.62.12.192 Oct 6 14:26:08 shared06 sshd[1879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.12.192 user=r.r Oct 6 14:26:10 shared06 sshd[1879]: Failed password for r.r from 178.62.12.192 port 59536 ssh2 Oct 6 14:26:10 shared06 sshd[1879]: Received disconnect from 178.62.12.192 port 59536:11: Bye Bye [preauth] Oct 6 14:26:10 shared06 sshd[1879]: Disconnected from authenticating user r.r 178.62.12.192 port 59536 [preauth] Oct 6 14:32:36 shared06 sshd[3663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.12.192 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.62.12.192 |
2019-10-07 19:08:49 |
| 46.175.243.9 | attackspam | $f2bV_matches |
2019-10-07 19:12:15 |
| 101.109.83.140 | attackbotsspam | Oct 7 12:03:57 bouncer sshd\[22007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.109.83.140 user=root Oct 7 12:03:59 bouncer sshd\[22007\]: Failed password for root from 101.109.83.140 port 34560 ssh2 Oct 7 12:21:33 bouncer sshd\[22081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.109.83.140 user=root ... |
2019-10-07 19:12:31 |