City: unknown
Region: unknown
Country: India
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.48.95.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53950
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;157.48.95.140. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022001 1800 900 604800 86400
;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 03:51:05 CST 2025
;; MSG SIZE rcvd: 106Host 140.95.48.157.in-addr.arpa not found: 2(SERVFAIL)
server can't find 157.48.95.140.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 217.61.59.233 | attackspam | Autoban 217.61.59.233 AUTH/CONNECT |
2019-07-01 02:16:16 |
| 212.44.104.102 | attack | Jun 30 15:17:31 mxgate1 postfix/postscreen[15628]: CONNECT from [212.44.104.102]:47586 to [176.31.12.44]:25 Jun 30 15:17:31 mxgate1 postfix/dnsblog[15631]: addr 212.44.104.102 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 30 15:17:31 mxgate1 postfix/dnsblog[15630]: addr 212.44.104.102 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 30 15:17:31 mxgate1 postfix/dnsblog[15633]: addr 212.44.104.102 listed by domain bl.spamcop.net as 127.0.0.2 Jun 30 15:17:31 mxgate1 postfix/dnsblog[15632]: addr 212.44.104.102 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 30 15:17:37 mxgate1 postfix/postscreen[15628]: DNSBL rank 5 for [212.44.104.102]:47586 Jun x@x Jun 30 15:17:37 mxgate1 postfix/postscreen[15628]: HANGUP after 0.2 from [212.44.104.102]:47586 in tests after SMTP handshake Jun 30 15:17:37 mxgate1 postfix/postscreen[15628]: DISCONNECT [212.44.104.102]:47586 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=212.44.104.102 |
2019-07-01 01:36:57 |
| 69.89.23.39 | attackbotsspam | [dmarc report from google.com] |
2019-07-01 01:49:17 |
| 37.49.231.105 | attackspam | 50804/tcp 50802/tcp... [2019-06-15/30]226pkt,2pt.(tcp) |
2019-07-01 02:19:08 |
| 80.82.67.111 | attackbots | Jun 30 13:35:52 mail postfix/smtpd\[10231\]: warning: unknown\[80.82.67.111\]: SASL PLAIN authentication failed: \ Jun 30 14:04:14 mail postfix/smtpd\[10869\]: warning: unknown\[80.82.67.111\]: SASL PLAIN authentication failed: \ Jun 30 14:15:16 mail postfix/smtpd\[11088\]: warning: unknown\[80.82.67.111\]: SASL PLAIN authentication failed: \ Jun 30 15:21:57 mail postfix/smtpd\[12206\]: warning: unknown\[80.82.67.111\]: SASL PLAIN authentication failed: \ |
2019-07-01 02:00:39 |
| 106.13.9.153 | attackbots | Jun 30 15:34:15 Ubuntu-1404-trusty-64-minimal sshd\[17893\]: Invalid user user from 106.13.9.153 Jun 30 15:34:15 Ubuntu-1404-trusty-64-minimal sshd\[17893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.153 Jun 30 15:34:18 Ubuntu-1404-trusty-64-minimal sshd\[17893\]: Failed password for invalid user user from 106.13.9.153 port 35740 ssh2 Jun 30 15:39:40 Ubuntu-1404-trusty-64-minimal sshd\[20637\]: Invalid user www from 106.13.9.153 Jun 30 15:39:40 Ubuntu-1404-trusty-64-minimal sshd\[20637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.153 |
2019-07-01 02:03:59 |
| 190.110.216.186 | attackspam | Jun 30 15:49:54 localhost sshd\[130337\]: Invalid user hoge from 190.110.216.186 port 56327 Jun 30 15:49:54 localhost sshd\[130337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.110.216.186 Jun 30 15:49:56 localhost sshd\[130337\]: Failed password for invalid user hoge from 190.110.216.186 port 56327 ssh2 Jun 30 15:55:19 localhost sshd\[130665\]: Invalid user keith from 190.110.216.186 port 36628 Jun 30 15:55:19 localhost sshd\[130665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.110.216.186 ... |
2019-07-01 01:34:12 |
| 80.82.70.118 | attack | 30.06.2019 16:58:53 Connection to port 2087 blocked by firewall |
2019-07-01 01:52:09 |
| 197.232.26.32 | attack | firewall-block, port(s): 8080/tcp |
2019-07-01 02:05:08 |
| 191.53.195.54 | attackbots | SMTP-sasl brute force ... |
2019-07-01 01:53:20 |
| 188.166.1.123 | attackbotsspam | Jun 30 15:33:11 *** sshd[13261]: User root from 188.166.1.123 not allowed because not listed in AllowUsers |
2019-07-01 01:58:28 |
| 106.12.198.137 | attack | 2019-06-30T16:03:39.171317scmdmz1 sshd\[8952\]: Invalid user tex from 106.12.198.137 port 40046 2019-06-30T16:03:39.174681scmdmz1 sshd\[8952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.198.137 2019-06-30T16:03:41.113213scmdmz1 sshd\[8952\]: Failed password for invalid user tex from 106.12.198.137 port 40046 ssh2 ... |
2019-07-01 02:00:59 |
| 125.27.12.20 | attackspambots | Jun 30 19:33:00 dedicated sshd[3071]: Invalid user andy from 125.27.12.20 port 36520 |
2019-07-01 01:33:03 |
| 114.113.221.162 | attackspambots | frenzy |
2019-07-01 01:28:30 |
| 191.53.249.104 | attackbots | failed_logins |
2019-07-01 01:41:41 |