City: unknown
Region: unknown
Country: Mexico
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.192.45.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25957
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;189.192.45.105. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021400 1800 900 604800 86400
;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 00:56:50 CST 2025
;; MSG SIZE rcvd: 107105.45.192.189.in-addr.arpa domain name pointer customer-GDL-CGN-45-105.megared.net.mx.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
105.45.192.189.in-addr.arpa name = customer-GDL-CGN-45-105.megared.net.mx.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 192.99.34.142 | attack | 192.99.34.142 - - [15/Aug/2020:05:51:31 +0100] "POST /wp-login.php HTTP/1.1" 200 5389 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.34.142 - - [15/Aug/2020:05:53:56 +0100] "POST /wp-login.php HTTP/1.1" 200 5389 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.34.142 - - [15/Aug/2020:05:56:13 +0100] "POST /wp-login.php HTTP/1.1" 200 5389 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ... |
2020-08-15 12:58:36 |
| 49.233.134.186 | attackspambots | port scan and connect, tcp 6379 (redis) |
2020-08-15 12:24:46 |
| 212.70.149.67 | attackspambots | Aug 15 06:40:21 alpha postfix/smtps/smtpd[24578]: warning: unknown[212.70.149.67]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:42:06 alpha postfix/smtps/smtpd[24578]: warning: unknown[212.70.149.67]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:43:56 alpha postfix/smtps/smtpd[24578]: warning: unknown[212.70.149.67]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-08-15 12:46:47 |
| 178.20.140.84 | attackspambots | Aug 15 02:37:09 mail.srvfarm.net postfix/smtps/smtpd[969054]: warning: 178-20-140-84.cust.mojewifi.net[178.20.140.84]: SASL PLAIN authentication failed: Aug 15 02:37:09 mail.srvfarm.net postfix/smtps/smtpd[969054]: lost connection after AUTH from 178-20-140-84.cust.mojewifi.net[178.20.140.84] Aug 15 02:41:16 mail.srvfarm.net postfix/smtps/smtpd[967570]: warning: 178-20-140-84.cust.mojewifi.net[178.20.140.84]: SASL PLAIN authentication failed: Aug 15 02:41:16 mail.srvfarm.net postfix/smtps/smtpd[967570]: lost connection after AUTH from 178-20-140-84.cust.mojewifi.net[178.20.140.84] Aug 15 02:45:37 mail.srvfarm.net postfix/smtps/smtpd[967570]: warning: 178-20-140-84.cust.mojewifi.net[178.20.140.84]: SASL PLAIN authentication failed: |
2020-08-15 12:38:10 |
| 41.139.28.160 | attack | Aug 15 02:21:26 mail.srvfarm.net postfix/smtpd[965952]: warning: unknown[41.139.28.160]: SASL PLAIN authentication failed: Aug 15 02:21:26 mail.srvfarm.net postfix/smtpd[965952]: lost connection after AUTH from unknown[41.139.28.160] Aug 15 02:22:11 mail.srvfarm.net postfix/smtpd[965135]: warning: unknown[41.139.28.160]: SASL PLAIN authentication failed: Aug 15 02:22:11 mail.srvfarm.net postfix/smtpd[965135]: lost connection after AUTH from unknown[41.139.28.160] Aug 15 02:24:09 mail.srvfarm.net postfix/smtps/smtpd[964715]: warning: unknown[41.139.28.160]: SASL PLAIN authentication failed: |
2020-08-15 12:57:11 |
| 104.236.203.29 | attackspam | port scan and connect, tcp 80 (http) |
2020-08-15 12:26:26 |
| 51.79.86.173 | attackspambots | Fail2Ban |
2020-08-15 12:24:07 |
| 186.122.148.9 | attack | frenzy |
2020-08-15 12:34:35 |
| 186.216.70.29 | attackspambots | Aug 15 02:11:34 mail.srvfarm.net postfix/smtps/smtpd[963491]: warning: unknown[186.216.70.29]: SASL PLAIN authentication failed: Aug 15 02:11:35 mail.srvfarm.net postfix/smtps/smtpd[963491]: lost connection after AUTH from unknown[186.216.70.29] Aug 15 02:13:06 mail.srvfarm.net postfix/smtps/smtpd[950236]: warning: unknown[186.216.70.29]: SASL PLAIN authentication failed: Aug 15 02:13:07 mail.srvfarm.net postfix/smtps/smtpd[950236]: lost connection after AUTH from unknown[186.216.70.29] Aug 15 02:15:46 mail.srvfarm.net postfix/smtps/smtpd[964715]: warning: unknown[186.216.70.29]: SASL PLAIN authentication failed: |
2020-08-15 12:52:19 |
| 181.114.208.13 | attackspambots | Aug 15 02:46:17 mail.srvfarm.net postfix/smtpd[965947]: warning: unknown[181.114.208.13]: SASL PLAIN authentication failed: Aug 15 02:46:18 mail.srvfarm.net postfix/smtpd[965947]: lost connection after AUTH from unknown[181.114.208.13] Aug 15 02:49:45 mail.srvfarm.net postfix/smtps/smtpd[970013]: warning: unknown[181.114.208.13]: SASL PLAIN authentication failed: Aug 15 02:49:46 mail.srvfarm.net postfix/smtps/smtpd[970013]: lost connection after AUTH from unknown[181.114.208.13] Aug 15 02:50:49 mail.srvfarm.net postfix/smtps/smtpd[968949]: warning: unknown[181.114.208.13]: SASL PLAIN authentication failed: |
2020-08-15 12:37:14 |
| 186.219.242.48 | attackbotsspam | Aug 15 02:40:19 mail.srvfarm.net postfix/smtpd[965955]: warning: unknown[186.219.242.48]: SASL PLAIN authentication failed: Aug 15 02:40:20 mail.srvfarm.net postfix/smtpd[965955]: lost connection after AUTH from unknown[186.219.242.48] Aug 15 02:44:34 mail.srvfarm.net postfix/smtpd[966738]: warning: unknown[186.219.242.48]: SASL PLAIN authentication failed: Aug 15 02:44:35 mail.srvfarm.net postfix/smtpd[966738]: lost connection after AUTH from unknown[186.219.242.48] Aug 15 02:45:45 mail.srvfarm.net postfix/smtpd[970729]: warning: unknown[186.219.242.48]: SASL PLAIN authentication failed: |
2020-08-15 12:33:43 |
| 193.169.253.48 | attackbots | Aug 15 02:18:10 web01.agentur-b-2.de postfix/smtpd[3365196]: warning: unknown[193.169.253.48]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 02:18:10 web01.agentur-b-2.de postfix/smtpd[3365196]: lost connection after AUTH from unknown[193.169.253.48] Aug 15 02:18:44 web01.agentur-b-2.de postfix/smtpd[3365196]: warning: unknown[193.169.253.48]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 02:18:44 web01.agentur-b-2.de postfix/smtpd[3365196]: lost connection after AUTH from unknown[193.169.253.48] Aug 15 02:19:17 web01.agentur-b-2.de postfix/smtpd[3350846]: warning: unknown[193.169.253.48]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-08-15 12:49:09 |
| 172.82.239.22 | attack | Aug 15 02:49:17 mail.srvfarm.net postfix/smtpd[966773]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 15 02:51:26 mail.srvfarm.net postfix/smtpd[970941]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 15 02:52:28 mail.srvfarm.net postfix/smtpd[971000]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 15 02:54:34 mail.srvfarm.net postfix/smtpd[972706]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 15 02:55:46 mail.srvfarm.net postfix/smtpd[972632]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] |
2020-08-15 12:25:21 |
| 170.81.19.23 | attackspam | Aug 15 02:40:55 mail.srvfarm.net postfix/smtps/smtpd[968949]: warning: unknown[170.81.19.23]: SASL PLAIN authentication failed: Aug 15 02:40:55 mail.srvfarm.net postfix/smtps/smtpd[968949]: lost connection after AUTH from unknown[170.81.19.23] Aug 15 02:42:23 mail.srvfarm.net postfix/smtps/smtpd[967571]: warning: unknown[170.81.19.23]: SASL PLAIN authentication failed: Aug 15 02:42:23 mail.srvfarm.net postfix/smtps/smtpd[967571]: lost connection after AUTH from unknown[170.81.19.23] Aug 15 02:49:42 mail.srvfarm.net postfix/smtpd[970729]: warning: unknown[170.81.19.23]: SASL PLAIN authentication failed: |
2020-08-15 12:39:54 |
| 114.33.24.219 | attackbotsspam | Telnet Server BruteForce Attack |
2020-08-15 12:59:41 |