City: unknown
Region: unknown
Country: Italy
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 151.45.66.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64109
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;151.45.66.91. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020900 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 00:38:07 CST 2025
;; MSG SIZE rcvd: 10591.66.45.151.in-addr.arpa domain name pointer adsl-ull-91-66.45-151.wind.it.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
91.66.45.151.in-addr.arpa name = adsl-ull-91-66.45-151.wind.it.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 14.116.190.61 | attack | May 7 10:00:28 ny01 sshd[5136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.190.61 May 7 10:00:30 ny01 sshd[5136]: Failed password for invalid user chang from 14.116.190.61 port 43222 ssh2 May 7 10:05:46 ny01 sshd[5834]: Failed password for root from 14.116.190.61 port 41993 ssh2 |
2020-05-07 22:48:44 |
| 104.200.134.250 | attack | firewall-block, port(s): 30022/tcp |
2020-05-07 23:11:05 |
| 14.232.208.210 | attack | May 7 14:10:30 ns392434 sshd[15629]: Invalid user jeff from 14.232.208.210 port 33950 May 7 14:10:30 ns392434 sshd[15629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.208.210 May 7 14:10:30 ns392434 sshd[15629]: Invalid user jeff from 14.232.208.210 port 33950 May 7 14:10:32 ns392434 sshd[15629]: Failed password for invalid user jeff from 14.232.208.210 port 33950 ssh2 May 7 14:16:56 ns392434 sshd[15759]: Invalid user lq from 14.232.208.210 port 38060 May 7 14:16:56 ns392434 sshd[15759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.208.210 May 7 14:16:56 ns392434 sshd[15759]: Invalid user lq from 14.232.208.210 port 38060 May 7 14:16:58 ns392434 sshd[15759]: Failed password for invalid user lq from 14.232.208.210 port 38060 ssh2 May 7 14:21:22 ns392434 sshd[15961]: Invalid user dkc from 14.232.208.210 port 51120 |
2020-05-07 22:53:04 |
| 168.138.14.139 | attackbots | Lines containing failures of 168.138.14.139 May 5 07:22:51 nexus sshd[15918]: Invalid user elastic from 168.138.14.139 port 52324 May 5 07:22:51 nexus sshd[15918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.14.139 May 5 07:22:53 nexus sshd[15918]: Failed password for invalid user elastic from 168.138.14.139 port 52324 ssh2 May 5 07:22:54 nexus sshd[15918]: Connection closed by 168.138.14.139 port 52324 [preauth] May 5 09:16:45 nexus sshd[17826]: Invalid user regwag2003 from 168.138.14.139 port 47954 May 5 09:16:45 nexus sshd[17826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.14.139 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=168.138.14.139 |
2020-05-07 23:24:39 |
| 61.0.250.66 | attack | Unauthorized connection attempt from IP address 61.0.250.66 on Port 445(SMB) |
2020-05-07 23:21:39 |
| 80.82.65.74 | attack | 05/07/2020-17:00:37.357767 80.82.65.74 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-05-07 23:20:18 |
| 64.227.72.66 | attack | scans once in preceeding hours on the ports (in chronological order) 6538 resulting in total of 12 scans from 64.227.0.0/17 block. |
2020-05-07 23:21:10 |
| 84.39.244.64 | attackbots | Unauthorized connection attempt from IP address 84.39.244.64 on Port 445(SMB) |
2020-05-07 22:48:09 |
| 220.171.43.15 | attackbotsspam | May 7 15:00:43 server sshd[48910]: Failed password for invalid user lf from 220.171.43.15 port 45496 ssh2 May 7 15:06:31 server sshd[53578]: Failed password for invalid user david from 220.171.43.15 port 17534 ssh2 May 7 15:11:48 server sshd[59614]: Failed password for root from 220.171.43.15 port 46044 ssh2 |
2020-05-07 22:49:00 |
| 202.91.250.96 | attack | Unauthorised access (May 7) SRC=202.91.250.96 LEN=40 TTL=242 ID=65015 TCP DPT=1433 WINDOW=1024 SYN |
2020-05-07 23:13:16 |
| 52.26.66.228 | attackspam | 05/07/2020-16:39:01.371877 52.26.66.228 Protocol: 6 SURICATA TLS invalid record/traffic |
2020-05-07 22:48:22 |
| 122.225.62.26 | attackbots | 20/5/7@09:19:57: FAIL: Alarm-Network address from=122.225.62.26 ... |
2020-05-07 23:07:21 |
| 49.233.49.27 | attack | May 7 16:10:47 sso sshd[4810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.49.27 May 7 16:10:49 sso sshd[4810]: Failed password for invalid user vivek from 49.233.49.27 port 43240 ssh2 ... |
2020-05-07 22:51:49 |
| 185.50.149.11 | attackspambots | May 7 16:36:15 web01.agentur-b-2.de postfix/smtpd[245957]: warning: unknown[185.50.149.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 7 16:36:16 web01.agentur-b-2.de postfix/smtpd[245957]: lost connection after AUTH from unknown[185.50.149.11] May 7 16:36:24 web01.agentur-b-2.de postfix/smtpd[241183]: lost connection after AUTH from unknown[185.50.149.11] May 7 16:36:31 web01.agentur-b-2.de postfix/smtpd[244730]: lost connection after AUTH from unknown[185.50.149.11] May 7 16:36:40 web01.agentur-b-2.de postfix/smtpd[245957]: warning: unknown[185.50.149.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-05-07 23:00:23 |
| 67.230.164.130 | attackspam | 2020-05-07 07:26:32.159806-0500 localhost sshd[98981]: Failed password for invalid user django from 67.230.164.130 port 48962 ssh2 |
2020-05-07 23:28:53 |