City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 166.158.198.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36902
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;166.158.198.54. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 05:13:47 CST 2025
;; MSG SIZE rcvd: 107
54.198.158.166.in-addr.arpa domain name pointer 54.sub-166-158-198.myvzw.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
54.198.158.166.in-addr.arpa name = 54.sub-166-158-198.myvzw.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 49.235.37.232 | attackspam | Aug 17 14:05:58 h2427292 sshd\[26436\]: Invalid user ftpuser from 49.235.37.232 Aug 17 14:05:58 h2427292 sshd\[26436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.37.232 Aug 17 14:06:00 h2427292 sshd\[26436\]: Failed password for invalid user ftpuser from 49.235.37.232 port 51966 ssh2 ... |
2020-08-17 21:14:48 |
| 187.32.7.108 | attack | Aug 17 13:52:53 havingfunrightnow sshd[24454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.32.7.108 Aug 17 13:52:55 havingfunrightnow sshd[24454]: Failed password for invalid user ubuntu from 187.32.7.108 port 57430 ssh2 Aug 17 14:06:20 havingfunrightnow sshd[25099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.32.7.108 ... |
2020-08-17 20:47:16 |
| 106.245.228.122 | attackbots | Aug 17 13:57:06 server sshd[32546]: Failed password for root from 106.245.228.122 port 24308 ssh2 Aug 17 14:01:41 server sshd[34705]: Failed password for root from 106.245.228.122 port 57811 ssh2 Aug 17 14:06:20 server sshd[36864]: Failed password for invalid user linuxacademy from 106.245.228.122 port 27322 ssh2 |
2020-08-17 20:50:12 |
| 190.15.213.19 | attackspam | Aug 17 12:54:28 rush sshd[695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.15.213.19 Aug 17 12:54:31 rush sshd[695]: Failed password for invalid user user from 190.15.213.19 port 22530 ssh2 Aug 17 12:55:31 rush sshd[756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.15.213.19 ... |
2020-08-17 21:02:40 |
| 139.130.13.204 | attackbotsspam | Aug 17 17:28:57 gw1 sshd[19020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.130.13.204 Aug 17 17:28:59 gw1 sshd[19020]: Failed password for invalid user klaudia from 139.130.13.204 port 39062 ssh2 ... |
2020-08-17 20:54:09 |
| 193.169.255.40 | attackspambots | Aug 17 13:54:09 srv01 postfix/smtpd\[31254\]: warning: unknown\[193.169.255.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 13:54:38 srv01 postfix/smtpd\[31254\]: warning: unknown\[193.169.255.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 13:55:42 srv01 postfix/smtpd\[5133\]: warning: unknown\[193.169.255.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 14:05:24 srv01 postfix/smtpd\[13226\]: warning: unknown\[193.169.255.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 14:05:52 srv01 postfix/smtpd\[12566\]: warning: unknown\[193.169.255.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-08-17 21:21:33 |
| 93.174.93.68 | attack | Port Scan |
2020-08-17 20:56:13 |
| 159.89.88.119 | attack | Aug 17 14:34:12 ip106 sshd[6105]: Failed password for root from 159.89.88.119 port 52138 ssh2 ... |
2020-08-17 20:56:32 |
| 159.65.119.25 | attackspambots | Lines containing failures of 159.65.119.25 (max 1000) Aug 17 09:49:59 UTC__SANYALnet-Labs__cac12 sshd[16382]: Connection from 159.65.119.25 port 55818 on 64.137.176.96 port 22 Aug 17 09:50:01 UTC__SANYALnet-Labs__cac12 sshd[16382]: reveeclipse mapping checking getaddrinfo for ubuntu-18.04 [159.65.119.25] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 17 09:50:01 UTC__SANYALnet-Labs__cac12 sshd[16382]: Invalid user ghostname from 159.65.119.25 port 55818 Aug 17 09:50:01 UTC__SANYALnet-Labs__cac12 sshd[16382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.119.25 Aug 17 09:50:03 UTC__SANYALnet-Labs__cac12 sshd[16382]: Failed password for invalid user ghostname from 159.65.119.25 port 55818 ssh2 Aug 17 09:50:03 UTC__SANYALnet-Labs__cac12 sshd[16382]: Received disconnect from 159.65.119.25 port 55818:11: Bye Bye [preauth] Aug 17 09:50:03 UTC__SANYALnet-Labs__cac12 sshd[16382]: Disconnected from 159.65.119.25 port 55818 [preauth] ........ --------------------------------- |
2020-08-17 21:25:22 |
| 121.142.87.218 | attackbots | Aug 17 14:37:33 vps1 sshd[15174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.142.87.218 user=root Aug 17 14:37:35 vps1 sshd[15174]: Failed password for invalid user root from 121.142.87.218 port 47516 ssh2 Aug 17 14:39:10 vps1 sshd[15241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.142.87.218 Aug 17 14:39:12 vps1 sshd[15241]: Failed password for invalid user mongo from 121.142.87.218 port 43078 ssh2 Aug 17 14:40:54 vps1 sshd[15288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.142.87.218 Aug 17 14:40:55 vps1 sshd[15288]: Failed password for invalid user wq from 121.142.87.218 port 38640 ssh2 ... |
2020-08-17 20:45:56 |
| 36.37.157.250 | attackspam | 2020-08-17T19:28:18.907884billing sshd[19623]: Invalid user dev from 36.37.157.250 port 40700 2020-08-17T19:28:20.882010billing sshd[19623]: Failed password for invalid user dev from 36.37.157.250 port 40700 ssh2 2020-08-17T19:32:44.135721billing sshd[29594]: Invalid user vpn from 36.37.157.250 port 49462 ... |
2020-08-17 21:23:29 |
| 106.75.249.8 | attackspam | Aug 17 06:00:37 dignus sshd[30982]: Failed password for invalid user lxj from 106.75.249.8 port 59076 ssh2 Aug 17 06:05:50 dignus sshd[31722]: Invalid user gm from 106.75.249.8 port 37326 Aug 17 06:05:50 dignus sshd[31722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.249.8 Aug 17 06:05:52 dignus sshd[31722]: Failed password for invalid user gm from 106.75.249.8 port 37326 ssh2 Aug 17 06:11:01 dignus sshd[32363]: Invalid user admin from 106.75.249.8 port 43808 ... |
2020-08-17 21:19:21 |
| 202.179.76.187 | attackbots | Aug 17 14:58:25 ip106 sshd[7496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.179.76.187 Aug 17 14:58:26 ip106 sshd[7496]: Failed password for invalid user humberto from 202.179.76.187 port 49962 ssh2 ... |
2020-08-17 21:23:51 |
| 192.158.42.9 | attackbotsspam | Unauthorised access (Aug 17) SRC=192.158.42.9 LEN=52 TTL=108 ID=22729 DF TCP DPT=445 WINDOW=8192 SYN |
2020-08-17 21:02:23 |
| 51.158.190.54 | attack | Aug 17 13:56:51 *hidden* sshd[16950]: Failed password for invalid user deployer from 51.158.190.54 port 47678 ssh2 Aug 17 14:06:07 *hidden* sshd[18791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.190.54 user=root Aug 17 14:06:09 *hidden* sshd[18791]: Failed password for *hidden* from 51.158.190.54 port 59574 ssh2 |
2020-08-17 21:01:51 |