City: Oklahoma City
Region: Oklahoma
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.142.135.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46668
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;157.142.135.99. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024113001 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 01 02:47:29 CST 2024
;; MSG SIZE rcvd: 107Host 99.135.142.157.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 99.135.142.157.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 222.69.134.18 | attackbotsspam | Unauthorized connection attempt detected from IP address 222.69.134.18 to port 1433 |
2020-04-10 21:04:14 |
| 217.182.252.63 | attack | Apr 10 13:58:58 dev0-dcde-rnet sshd[24278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.252.63 Apr 10 13:59:00 dev0-dcde-rnet sshd[24278]: Failed password for invalid user rsync from 217.182.252.63 port 39432 ssh2 Apr 10 14:11:19 dev0-dcde-rnet sshd[24406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.252.63 |
2020-04-10 21:04:38 |
| 185.173.35.45 | attackspam | SNORT TCP Port: 110 Classtype misc-attack - ET DROP Dshield Block Listed Source group 1 - - Destination xx.xx.4.1 Port: 110 - - Source 185.173.35.45 Port: 58173 (Listed on abuseat-org zen-spamhaus) (124) |
2020-04-10 21:08:46 |
| 140.143.236.227 | attackbots | Apr 10 14:15:51 ncomp sshd[12627]: Invalid user postgres from 140.143.236.227 Apr 10 14:15:51 ncomp sshd[12627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.236.227 Apr 10 14:15:51 ncomp sshd[12627]: Invalid user postgres from 140.143.236.227 Apr 10 14:15:53 ncomp sshd[12627]: Failed password for invalid user postgres from 140.143.236.227 port 52036 ssh2 |
2020-04-10 21:11:37 |
| 104.40.197.196 | attackbots | Apr 10 08:21:40 Tower sshd[3810]: Connection from 104.40.197.196 port 42132 on 192.168.10.220 port 22 rdomain "" Apr 10 08:21:41 Tower sshd[3810]: Invalid user linuxacademy from 104.40.197.196 port 42132 Apr 10 08:21:41 Tower sshd[3810]: error: Could not get shadow information for NOUSER Apr 10 08:21:41 Tower sshd[3810]: Failed password for invalid user linuxacademy from 104.40.197.196 port 42132 ssh2 Apr 10 08:21:41 Tower sshd[3810]: Received disconnect from 104.40.197.196 port 42132:11: Bye Bye [preauth] Apr 10 08:21:41 Tower sshd[3810]: Disconnected from invalid user linuxacademy 104.40.197.196 port 42132 [preauth] |
2020-04-10 21:34:09 |
| 143.202.70.124 | attackbotsspam | Email rejected due to spam filtering |
2020-04-10 21:18:47 |
| 106.13.23.105 | attackspam | Apr 10 14:37:12 eventyay sshd[4077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.23.105 Apr 10 14:37:13 eventyay sshd[4077]: Failed password for invalid user user2 from 106.13.23.105 port 58692 ssh2 Apr 10 14:40:44 eventyay sshd[4221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.23.105 ... |
2020-04-10 20:55:23 |
| 190.202.32.2 | attackspambots | $f2bV_matches |
2020-04-10 20:57:01 |
| 78.128.113.98 | attackspam | Apr 10 15:18:14 web01.agentur-b-2.de postfix/smtps/smtpd[591494]: lost connection after CONNECT from unknown[78.128.113.98] Apr 10 15:18:22 web01.agentur-b-2.de postfix/smtps/smtpd[591498]: warning: unknown[78.128.113.98]: SASL PLAIN authentication failed: Apr 10 15:18:23 web01.agentur-b-2.de postfix/smtps/smtpd[591498]: lost connection after AUTH from unknown[78.128.113.98] Apr 10 15:18:36 web01.agentur-b-2.de postfix/smtps/smtpd[591494]: lost connection after AUTH from unknown[78.128.113.98] Apr 10 15:18:47 web01.agentur-b-2.de postfix/smtps/smtpd[591498]: lost connection after CONNECT from unknown[78.128.113.98] |
2020-04-10 21:39:19 |
| 176.113.115.210 | attack | 04/10/2020-08:11:06.006518 176.113.115.210 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-04-10 21:22:49 |
| 185.202.2.152 | attackspam | RDP brute forcing (d) |
2020-04-10 20:57:54 |
| 181.174.160.20 | attack | Apr 10 15:01:27 host01 sshd[6777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.174.160.20 Apr 10 15:01:29 host01 sshd[6777]: Failed password for invalid user cisco from 181.174.160.20 port 45654 ssh2 Apr 10 15:06:05 host01 sshd[7790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.174.160.20 ... |
2020-04-10 21:17:52 |
| 203.122.11.34 | attackspambots | fail2ban/Apr 10 14:10:24 h1962932 sshd[20107]: Invalid user t from 203.122.11.34 port 49409 Apr 10 14:10:24 h1962932 sshd[20107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.122.11.34 Apr 10 14:10:24 h1962932 sshd[20107]: Invalid user t from 203.122.11.34 port 49409 Apr 10 14:10:25 h1962932 sshd[20107]: Failed password for invalid user t from 203.122.11.34 port 49409 ssh2 Apr 10 14:11:17 h1962932 sshd[20352]: Invalid user zte from 203.122.11.34 port 54520 |
2020-04-10 21:06:45 |
| 51.77.140.36 | attackspam | Brute-force attempt banned |
2020-04-10 21:05:50 |
| 88.218.17.228 | attack | Apr 10 15:27:06 debian-2gb-nbg1-2 kernel: \[8784234.051743\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=88.218.17.228 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=29600 PROTO=TCP SPT=49995 DPT=3374 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-10 21:34:37 |