City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.83.25.25
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56014
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;158.83.25.25. IN A
;; AUTHORITY SECTION:
. 599 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 13:35:52 CST 2022
;; MSG SIZE rcvd: 105
25.25.83.158.in-addr.arpa domain name pointer cwis.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer desire2learn.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer eventphotos.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer cms.gcportal.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer dev.gcportal.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer www.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer scheduler.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer www.gcportal.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer parking.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer surveys.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer prodou.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer banner.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer cutv.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer m.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer wcal.calu.edu.
25.25.83.158.in-addr.arpa domain name pointer calucenter.ca
b';; Truncated, retrying in TCP mode.
25.25.83.158.in-addr.arpa name = calu.edu.
25.25.83.158.in-addr.arpa name = eventphotos.calu.edu.
25.25.83.158.in-addr.arpa name = www.gcportal.calu.edu.
25.25.83.158.in-addr.arpa name = desire2learn.calu.edu.
25.25.83.158.in-addr.arpa name = m.calu.edu.
25.25.83.158.in-addr.arpa name = www.calu.edu.
25.25.83.158.in-addr.arpa name = cms.gcportal.calu.edu.
25.25.83.158.in-addr.arpa name = scheduler.calu.edu.
25.25.83.158.in-addr.arpa name = prodou.calu.edu.
25.25.83.158.in-addr.arpa name = cwis.calu.edu.
25.25.83.158.in-addr.arpa name = calucenter.calu.edu.
25.25.83.158.in-addr.arpa name = parking.calu.edu.
25.25.83.158.in-addr.arpa name = gameregister.calu.edu.
25.25.83.158.in-addr.arpa name = wcal.calu.edu.
25.25.83.158.in-addr.arpa name = cutv.calu.edu.
25.25.83.158.in-addr.arpa name = banner.calu.edu.
25.25.83.158.in-addr.arpa name = devou.calu.edu.
25.25.83.158.in-addr.arpa name = dev.calu.edu.
25.25.83.158.in-addr.arpa name = sai.calu.edu.
25.25.83.158.in-addr.arpa name = bannertest.calu.edu.
25.25.83.158.in-addr.arpa name = surveys.calu.edu.
25.25.83.158.in-addr.arpa name = dev.gcportal.calu.edu.
25.25.83.158.in-addr.arpa name = archive.calu.edu.
25.25.83.158.in-addr.arpa name = institutes.calu.edu.
25.25.83.158.in-addr.arpa name = d2l.calu.edu.
Authoritative answers can be found from:
'
| IP | Type | Details | Datetime |
|---|---|---|---|
| 92.118.37.61 | attackspambots | Mar 6 21:51:10 debian-2gb-nbg1-2 kernel: \[5787033.910873\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.61 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=57470 PROTO=TCP SPT=56634 DPT=5577 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-07 04:59:13 |
| 192.241.207.208 | attack | Automatic report - Port Scan Attack |
2020-03-07 04:39:27 |
| 183.134.169.19 | attackbotsspam | suspicious action Fri, 06 Mar 2020 10:28:10 -0300 |
2020-03-07 04:26:50 |
| 49.234.12.123 | attack | Mar 6 10:15:50 tdfoods sshd\[25126\]: Invalid user william from 49.234.12.123 Mar 6 10:15:50 tdfoods sshd\[25126\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.12.123 Mar 6 10:15:52 tdfoods sshd\[25126\]: Failed password for invalid user william from 49.234.12.123 port 42438 ssh2 Mar 6 10:20:26 tdfoods sshd\[25464\]: Invalid user nexus from 49.234.12.123 Mar 6 10:20:26 tdfoods sshd\[25464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.12.123 |
2020-03-07 04:38:18 |
| 168.90.91.171 | attackbots | Port probing on unauthorized port 445 |
2020-03-07 04:53:40 |
| 51.38.83.164 | attack | Mar 6 19:30:24 areeb-Workstation sshd[7813]: Failed password for root from 51.38.83.164 port 46418 ssh2 ... |
2020-03-07 04:29:34 |
| 171.225.248.209 | attack | Honeypot attack, port: 445, PTR: dynamic-adsl.viettel.vn. |
2020-03-07 04:28:27 |
| 92.240.207.149 | attackbotsspam | Chat Spam |
2020-03-07 04:44:36 |
| 193.32.161.31 | attackspambots | 03/06/2020-13:13:26.735704 193.32.161.31 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-03-07 04:18:47 |
| 25.13.60.157 | attackspambots | Scan detected and blocked 2020.03.06 14:27:37 |
2020-03-07 04:52:16 |
| 107.170.249.6 | attackbots | Mar 6 15:27:05 localhost sshd\[27907\]: Invalid user yamamichi from 107.170.249.6 Mar 6 15:27:05 localhost sshd\[27907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.6 Mar 6 15:27:07 localhost sshd\[27907\]: Failed password for invalid user yamamichi from 107.170.249.6 port 44251 ssh2 Mar 6 15:32:28 localhost sshd\[28180\]: Invalid user bot from 107.170.249.6 Mar 6 15:32:28 localhost sshd\[28180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.6 ... |
2020-03-07 04:22:13 |
| 206.189.47.166 | attackbotsspam | Mar 6 03:51:37 web1 sshd\[11149\]: Invalid user gitlab-prometheus from 206.189.47.166 Mar 6 03:51:37 web1 sshd\[11149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.47.166 Mar 6 03:51:39 web1 sshd\[11149\]: Failed password for invalid user gitlab-prometheus from 206.189.47.166 port 49338 ssh2 Mar 6 03:54:16 web1 sshd\[11399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.47.166 user=root Mar 6 03:54:18 web1 sshd\[11399\]: Failed password for root from 206.189.47.166 port 51148 ssh2 |
2020-03-07 04:30:24 |
| 14.188.199.58 | attackbotsspam | Honeypot attack, port: 5555, PTR: static.vnpt.vn. |
2020-03-07 04:27:13 |
| 190.6.204.123 | attackbotsspam | Honeypot attack, port: 81, PTR: 190-6-204-123.reverse.cablecolor.hn. |
2020-03-07 04:58:52 |
| 112.85.42.182 | attack | SSH-bruteforce attempts |
2020-03-07 05:01:01 |