City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.166.96.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30841
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;152.166.96.164. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400
;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 06:08:20 CST 2025
;; MSG SIZE rcvd: 107Host 164.96.166.152.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 164.96.166.152.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.148.122.20 | attackspam | 2020-10-02T14:10:59.694909galaxy.wi.uni-potsdam.de sshd[13455]: Failed password for invalid user admin from 45.148.122.20 port 39096 ssh2 2020-10-02T14:11:00.030410galaxy.wi.uni-potsdam.de sshd[13459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.122.20 user=root 2020-10-02T14:11:02.262588galaxy.wi.uni-potsdam.de sshd[13459]: Failed password for root from 45.148.122.20 port 42870 ssh2 2020-10-02T14:11:02.523205galaxy.wi.uni-potsdam.de sshd[13466]: Invalid user ubnt from 45.148.122.20 port 45006 2020-10-02T14:11:02.527737galaxy.wi.uni-potsdam.de sshd[13466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.122.20 2020-10-02T14:11:02.523205galaxy.wi.uni-potsdam.de sshd[13466]: Invalid user ubnt from 45.148.122.20 port 45006 2020-10-02T14:11:04.502738galaxy.wi.uni-potsdam.de sshd[13466]: Failed password for invalid user ubnt from 45.148.122.20 port 45006 ssh2 2020-10-02T14:11:04.811413galaxy.w ... |
2020-10-02 20:16:17 |
| 45.55.36.216 | attack | pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.36.216 Invalid user personal from 45.55.36.216 port 51844 Failed password for invalid user personal from 45.55.36.216 port 51844 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.36.216 user=root Failed password for root from 45.55.36.216 port 57184 ssh2 |
2020-10-02 20:05:40 |
| 114.104.135.56 | attack | Oct 2 01:01:11 srv01 postfix/smtpd\[27252\]: warning: unknown\[114.104.135.56\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 01:01:22 srv01 postfix/smtpd\[27252\]: warning: unknown\[114.104.135.56\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 01:01:38 srv01 postfix/smtpd\[27252\]: warning: unknown\[114.104.135.56\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 01:01:57 srv01 postfix/smtpd\[27252\]: warning: unknown\[114.104.135.56\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 01:02:09 srv01 postfix/smtpd\[27252\]: warning: unknown\[114.104.135.56\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-10-02 19:57:05 |
| 118.25.12.187 | attackspam | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found |
2020-10-02 19:50:41 |
| 163.172.44.194 | attackbotsspam | Invalid user wang from 163.172.44.194 port 54124 |
2020-10-02 20:12:53 |
| 125.121.135.81 | attackspam | Oct 1 20:37:50 CT3029 sshd[7789]: Invalid user ubuntu from 125.121.135.81 port 39566 Oct 1 20:37:50 CT3029 sshd[7789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.121.135.81 Oct 1 20:37:52 CT3029 sshd[7789]: Failed password for invalid user ubuntu from 125.121.135.81 port 39566 ssh2 Oct 1 20:37:53 CT3029 sshd[7789]: Received disconnect from 125.121.135.81 port 39566:11: Bye Bye [preauth] Oct 1 20:37:53 CT3029 sshd[7789]: Disconnected from 125.121.135.81 port 39566 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.121.135.81 |
2020-10-02 20:20:31 |
| 165.227.46.89 | attackbotsspam | sshd: Failed password for invalid user .... from 165.227.46.89 port 46752 ssh2 |
2020-10-02 19:54:33 |
| 35.239.60.149 | attackbots | Brute-force attempt banned |
2020-10-02 20:13:49 |
| 170.83.198.240 | attackbots | Lines containing failures of 170.83.198.240 (max 1000) Oct 1 22:33:44 HOSTNAME sshd[22226]: Did not receive identification string from 170.83.198.240 port 18375 Oct 1 22:33:48 HOSTNAME sshd[22230]: Address 170.83.198.240 maps to 170-83-198-240.starnetbandalarga.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 1 22:33:48 HOSTNAME sshd[22230]: Invalid user avanthi from 170.83.198.240 port 18421 Oct 1 22:33:48 HOSTNAME sshd[22230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.83.198.240 Oct 1 22:33:50 HOSTNAME sshd[22230]: Failed password for invalid user avanthi from 170.83.198.240 port 18421 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=170.83.198.240 |
2020-10-02 19:58:45 |
| 222.186.30.76 | attack | Oct 2 07:57:13 NPSTNNYC01T sshd[32424]: Failed password for root from 222.186.30.76 port 24703 ssh2 Oct 2 07:57:25 NPSTNNYC01T sshd[32437]: Failed password for root from 222.186.30.76 port 64729 ssh2 ... |
2020-10-02 20:07:25 |
| 157.230.42.76 | attackspambots | repeated SSH login attempts |
2020-10-02 20:07:42 |
| 3.129.90.48 | attack | mue-0 : Trying access unauthorized files=>/images/jdownloads/screenshots/update.php() |
2020-10-02 20:00:02 |
| 195.58.38.143 | attackbots | [SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically. |
2020-10-02 20:17:17 |
| 222.185.231.246 | attackbots | (sshd) Failed SSH login from 222.185.231.246 (CN/China/-): 5 in the last 3600 secs |
2020-10-02 19:51:04 |
| 111.231.223.216 | attackbotsspam | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found |
2020-10-02 20:01:53 |