City: unknown
Region: unknown
Country: Japan
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.105.66.25
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57197
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;157.105.66.25. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400
;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 14:13:43 CST 2025
;; MSG SIZE rcvd: 106Host 25.66.105.157.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 25.66.105.157.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 80.82.64.127 | attackspambots | Port scan on 16 port(s): 9968 9982 10037 10040 10046 10049 10053 10058 10066 45012 45061 45150 45199 45535 45589 45698 |
2019-07-31 08:50:18 |
| 142.93.47.125 | attackbots | Jul 31 02:22:23 dedicated sshd[13556]: Invalid user chase from 142.93.47.125 port 60406 |
2019-07-31 08:24:01 |
| 51.158.124.108 | attackbots | Jul 31 00:36:12 **** sshd[7833]: Invalid user oracle from 51.158.124.108 port 41406 |
2019-07-31 08:40:36 |
| 49.234.74.45 | attack | Jul 31 00:00:30 ip-172-31-62-245 sshd\[21509\]: Invalid user lliam from 49.234.74.45\ Jul 31 00:00:33 ip-172-31-62-245 sshd\[21509\]: Failed password for invalid user lliam from 49.234.74.45 port 42936 ssh2\ Jul 31 00:05:11 ip-172-31-62-245 sshd\[21544\]: Invalid user mcm from 49.234.74.45\ Jul 31 00:05:13 ip-172-31-62-245 sshd\[21544\]: Failed password for invalid user mcm from 49.234.74.45 port 35872 ssh2\ Jul 31 00:09:53 ip-172-31-62-245 sshd\[21656\]: Invalid user portal_user from 49.234.74.45\ |
2019-07-31 08:41:41 |
| 42.112.20.100 | attack | 42.112.20.100 - - \[31/Jul/2019:01:10:49 +0200\] "POST /wp-login.php HTTP/1.1" 200 2110 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 42.112.20.100 - - \[31/Jul/2019:01:10:51 +0200\] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ... |
2019-07-31 08:43:22 |
| 40.73.65.160 | attackspam | Jul 30 23:44:28 MK-Soft-VM5 sshd\[23954\]: Invalid user deploy from 40.73.65.160 port 49962 Jul 30 23:44:28 MK-Soft-VM5 sshd\[23954\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.65.160 Jul 30 23:44:29 MK-Soft-VM5 sshd\[23954\]: Failed password for invalid user deploy from 40.73.65.160 port 49962 ssh2 ... |
2019-07-31 08:47:35 |
| 209.86.89.65 | attack | Trying to act as an employment recruiter. |
2019-07-31 08:54:19 |
| 190.85.48.102 | attack | Jul 31 01:39:55 srv-4 sshd\[11257\]: Invalid user daniel from 190.85.48.102 Jul 31 01:39:55 srv-4 sshd\[11257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.48.102 Jul 31 01:39:57 srv-4 sshd\[11257\]: Failed password for invalid user daniel from 190.85.48.102 port 56188 ssh2 ... |
2019-07-31 08:52:43 |
| 217.182.253.230 | attackspam | Jul 31 02:47:52 vps691689 sshd[20253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.253.230 Jul 31 02:47:54 vps691689 sshd[20253]: Failed password for invalid user smb from 217.182.253.230 port 40926 ssh2 Jul 31 02:52:02 vps691689 sshd[20266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.253.230 ... |
2019-07-31 08:55:23 |
| 144.217.164.104 | attack | Jul 31 00:39:28 bouncer sshd\[13615\]: Invalid user NetLinx from 144.217.164.104 port 54412 Jul 31 00:39:28 bouncer sshd\[13615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.164.104 Jul 31 00:39:30 bouncer sshd\[13615\]: Failed password for invalid user NetLinx from 144.217.164.104 port 54412 ssh2 ... |
2019-07-31 09:04:02 |
| 119.27.189.158 | attack | Jul 31 03:22:14 server sshd\[18394\]: Invalid user ldap from 119.27.189.158 port 43344 Jul 31 03:22:14 server sshd\[18394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.189.158 Jul 31 03:22:16 server sshd\[18394\]: Failed password for invalid user ldap from 119.27.189.158 port 43344 ssh2 Jul 31 03:27:31 server sshd\[8640\]: Invalid user memuser from 119.27.189.158 port 38300 Jul 31 03:27:31 server sshd\[8640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.189.158 |
2019-07-31 08:37:03 |
| 92.118.160.25 | attack | " " |
2019-07-31 08:49:51 |
| 202.75.216.136 | attack | Jul 31 00:13:07 **** sshd[6447]: User root from 202.75.216.136 not allowed because not listed in AllowUsers |
2019-07-31 08:50:39 |
| 5.196.88.127 | attackbots | Jul 31 01:44:11 SilenceServices sshd[21006]: Failed password for root from 5.196.88.127 port 50728 ssh2 Jul 31 01:53:29 SilenceServices sshd[27710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.88.127 Jul 31 01:53:30 SilenceServices sshd[27710]: Failed password for invalid user administrator from 5.196.88.127 port 41216 ssh2 |
2019-07-31 08:26:40 |
| 222.72.140.18 | attackspam | Jul 30 16:27:18 cac1d2 sshd\[7956\]: Invalid user friends from 222.72.140.18 port 1630 Jul 30 16:27:18 cac1d2 sshd\[7956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.72.140.18 Jul 30 16:27:21 cac1d2 sshd\[7956\]: Failed password for invalid user friends from 222.72.140.18 port 1630 ssh2 ... |
2019-07-31 08:28:11 |