City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 163.150.75.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34406
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;163.150.75.114. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021500 1800 900 604800 86400
;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 23:04:24 CST 2025
;; MSG SIZE rcvd: 107Host 114.75.150.163.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 114.75.150.163.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 111.230.241.90 | attackbots | Oct 8 14:56:35 xeon sshd[50469]: Failed password for root from 111.230.241.90 port 42324 ssh2 |
2019-10-08 22:39:30 |
| 46.0.206.163 | attackspam | port scan and connect, tcp 80 (http) |
2019-10-08 22:49:29 |
| 46.176.55.28 | attackspam | Telnet Server BruteForce Attack |
2019-10-08 22:09:18 |
| 167.71.90.216 | attack | Unauthorised access (Oct 8) SRC=167.71.90.216 LEN=40 TTL=54 ID=14227 TCP DPT=8080 WINDOW=10069 SYN Unauthorised access (Oct 8) SRC=167.71.90.216 LEN=40 TTL=54 ID=62698 TCP DPT=8080 WINDOW=60076 SYN Unauthorised access (Oct 7) SRC=167.71.90.216 LEN=40 TTL=54 ID=62916 TCP DPT=8080 WINDOW=10069 SYN Unauthorised access (Oct 7) SRC=167.71.90.216 LEN=40 TTL=54 ID=52172 TCP DPT=8080 WINDOW=10069 SYN |
2019-10-08 22:36:46 |
| 93.62.165.114 | attack | Automatic report - Port Scan Attack |
2019-10-08 22:40:05 |
| 195.88.66.108 | attackbots | 2019-10-08T13:08:28.289230abusebot-6.cloudsearch.cf sshd\[2545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.88.66.108 user=root |
2019-10-08 22:42:29 |
| 202.152.0.14 | attackspambots | Oct 8 17:20:35 site3 sshd\[111532\]: Invalid user Cleaner@2017 from 202.152.0.14 Oct 8 17:20:35 site3 sshd\[111532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.0.14 Oct 8 17:20:37 site3 sshd\[111532\]: Failed password for invalid user Cleaner@2017 from 202.152.0.14 port 42014 ssh2 Oct 8 17:24:46 site3 sshd\[111598\]: Invalid user Party@123 from 202.152.0.14 Oct 8 17:24:46 site3 sshd\[111598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.0.14 ... |
2019-10-08 22:33:36 |
| 222.186.175.140 | attackspambots | Oct816:16:17server6sshd[27160]:refusedconnectfrom222.186.175.140\(222.186.175.140\)Oct816:16:17server6sshd[27161]:refusedconnectfrom222.186.175.140\(222.186.175.140\)Oct816:16:17server6sshd[27162]:refusedconnectfrom222.186.175.140\(222.186.175.140\)Oct816:16:18server6sshd[27163]:refusedconnectfrom222.186.175.140\(222.186.175.140\)Oct816:25:03server6sshd[27800]:refusedconnectfrom222.186.175.140\(222.186.175.140\) |
2019-10-08 22:28:53 |
| 51.83.98.52 | attackspambots | Oct 8 13:44:53 venus sshd\[12277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.98.52 user=root Oct 8 13:44:55 venus sshd\[12277\]: Failed password for root from 51.83.98.52 port 43758 ssh2 Oct 8 13:48:57 venus sshd\[12320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.98.52 user=root ... |
2019-10-08 22:50:48 |
| 159.65.153.102 | attackspam | Lines containing failures of 159.65.153.102 (max 1000) Oct 5 18:08:35 localhost sshd[22020]: User r.r from 159.65.153.102 not allowed because listed in DenyUsers Oct 5 18:08:35 localhost sshd[22020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.153.102 user=r.r Oct 5 18:08:36 localhost sshd[22020]: Failed password for invalid user r.r from 159.65.153.102 port 50670 ssh2 Oct 5 18:08:37 localhost sshd[22020]: Received disconnect from 159.65.153.102 port 50670:11: Bye Bye [preauth] Oct 5 18:08:37 localhost sshd[22020]: Disconnected from invalid user r.r 159.65.153.102 port 50670 [preauth] Oct 5 18:21:12 localhost sshd[24655]: User r.r from 159.65.153.102 not allowed because listed in DenyUsers Oct 5 18:21:12 localhost sshd[24655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.153.102 user=r.r Oct 5 18:21:14 localhost sshd[24655]: Failed password for invalid user r.r ........ ------------------------------ |
2019-10-08 22:29:56 |
| 102.141.72.50 | attackbotsspam | Oct 8 03:18:56 php1 sshd\[12717\]: Invalid user o0i9u8y7t6r5e4 from 102.141.72.50 Oct 8 03:18:56 php1 sshd\[12717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.141.72.50 Oct 8 03:18:58 php1 sshd\[12717\]: Failed password for invalid user o0i9u8y7t6r5e4 from 102.141.72.50 port 49287 ssh2 Oct 8 03:25:05 php1 sshd\[13267\]: Invalid user 123Snow from 102.141.72.50 Oct 8 03:25:05 php1 sshd\[13267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.141.72.50 |
2019-10-08 22:30:53 |
| 51.38.95.12 | attackbotsspam | Oct 8 16:05:32 vps01 sshd[12723]: Failed password for root from 51.38.95.12 port 53948 ssh2 |
2019-10-08 22:25:58 |
| 117.63.14.91 | attackspam | SASL broute force |
2019-10-08 22:53:44 |
| 181.48.68.54 | attack | 2019-10-08T13:11:02.836783abusebot-5.cloudsearch.cf sshd\[4104\]: Invalid user khwanjung from 181.48.68.54 port 47862 |
2019-10-08 22:20:54 |
| 92.116.120.125 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/92.116.120.125/ DE - 1H : (64) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : DE NAME ASN : ASN8881 IP : 92.116.120.125 CIDR : 92.116.64.0/18 PREFIX COUNT : 472 UNIQUE IP COUNT : 1347328 WYKRYTE ATAKI Z ASN8881 : 1H - 1 3H - 1 6H - 1 12H - 3 24H - 4 DateTime : 2019-10-08 13:54:10 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-10-08 22:30:19 |