City: Rome
Region: Latium
Country: Italy
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 194.243.91.192
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44645
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;194.243.91.192. IN A
;; AUTHORITY SECTION:
. 450 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020051401 1800 900 604800 86400
;; Query time: 129 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 15 05:53:24 CST 2020
;; MSG SIZE rcvd: 118192.91.243.194.in-addr.arpa domain name pointer host192-91-static.243-194-b.business.telecomitalia.it.Server: 100.100.2.138
Address: 100.100.2.138#53
Non-authoritative answer:
192.91.243.194.in-addr.arpa name = host192-91-static.243-194-b.business.telecomitalia.it.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 62.234.66.50 | attack | Jan 17 23:18:01 meumeu sshd[18160]: Failed password for root from 62.234.66.50 port 41202 ssh2 Jan 17 23:20:16 meumeu sshd[18578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.66.50 Jan 17 23:20:19 meumeu sshd[18578]: Failed password for invalid user pri from 62.234.66.50 port 50054 ssh2 ... |
2020-01-18 06:37:44 |
| 185.211.245.170 | attackspam | Jan 17 22:50:27 relay postfix/smtpd\[20366\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 17 22:50:34 relay postfix/smtpd\[17482\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 17 22:53:56 relay postfix/smtpd\[20365\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 17 22:54:03 relay postfix/smtpd\[17566\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 17 22:55:51 relay postfix/smtpd\[16998\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-01-18 06:26:05 |
| 180.76.160.148 | attack | Jan 17 23:13:02 sso sshd[21795]: Failed password for root from 180.76.160.148 port 59188 ssh2 ... |
2020-01-18 06:52:18 |
| 185.209.0.89 | attack | Multiport scan : 15 ports scanned 4155 4200 4250 4503 4506 4508 4510 4555 4600 5501 5504 5505 5506 5508 5510 |
2020-01-18 07:04:45 |
| 94.25.231.11 | attackspambots | 1579295479 - 01/17/2020 22:11:19 Host: 94.25.231.11/94.25.231.11 Port: 445 TCP Blocked |
2020-01-18 06:57:08 |
| 185.156.73.57 | attackbots | Multiport scan : 11 ports scanned 913 3333 3548 4444 4550 5190 7474 9834 9999 13388 44444 |
2020-01-18 07:05:05 |
| 114.34.222.248 | attackbotsspam | Unauthorized connection attempt detected from IP address 114.34.222.248 to port 81 [J] |
2020-01-18 06:56:44 |
| 51.68.225.51 | attackbotsspam | Detected By Fail2ban |
2020-01-18 06:45:53 |
| 80.82.70.106 | attackspam | Multiport scan : 73 ports scanned 115 151 221 332 383 393 474 588 661 775 818 876 883 890 3817 6364 7654 8182 11114 13134 14300 14389 15062 16168 17539 18754 20497 20726 21211 21802 23233 23235 24911 25472 26261 26361 26374 27013 28197 28287 30301 32320 33332 34518 35008 35354 35358 36367 37272 38294 38888 42233 43755 43794 44344 44433 45470 46462 49595 51159 51620 55544 56503 57579 58458 59597 59599 59684 60442 62036 62176 63635 ..... |
2020-01-18 06:51:11 |
| 62.4.55.219 | attackspambots | Honeypot attack, port: 1, PTR: cable-cgn.219.mtel.me. |
2020-01-18 06:16:43 |
| 210.4.99.194 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-01-18 06:20:49 |
| 67.54.157.164 | attack | Unauthorized connection attempt detected from IP address 67.54.157.164 to port 88 [J] |
2020-01-18 06:26:36 |
| 200.29.120.196 | attack | Jan 17 17:18:11 ny01 sshd[31475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.29.120.196 Jan 17 17:18:13 ny01 sshd[31475]: Failed password for invalid user adsl from 200.29.120.196 port 48264 ssh2 Jan 17 17:22:47 ny01 sshd[31893]: Failed password for root from 200.29.120.196 port 51160 ssh2 |
2020-01-18 06:24:21 |
| 103.248.20.118 | attack | 2020-01-17T11:06:33.4287591495-001 sshd[23603]: Invalid user jenkins from 103.248.20.118 port 36768 2020-01-17T11:06:33.4323941495-001 sshd[23603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.248.20.118 2020-01-17T11:06:33.4287591495-001 sshd[23603]: Invalid user jenkins from 103.248.20.118 port 36768 2020-01-17T11:06:34.6120371495-001 sshd[23603]: Failed password for invalid user jenkins from 103.248.20.118 port 36768 ssh2 2020-01-17T11:17:06.5353611495-001 sshd[24002]: Invalid user user2 from 103.248.20.118 port 43932 2020-01-17T11:17:06.5393661495-001 sshd[24002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.248.20.118 2020-01-17T11:17:06.5353611495-001 sshd[24002]: Invalid user user2 from 103.248.20.118 port 43932 2020-01-17T11:17:08.6216671495-001 sshd[24002]: Failed password for invalid user user2 from 103.248.20.118 port 43932 ssh2 2020-01-17T11:19:50.1002271495-001 sshd........ ------------------------------ |
2020-01-18 06:26:18 |
| 213.127.18.55 | attackspam | (sshd) Failed SSH login from 213.127.18.55 (NL/Netherlands/ip-213-127-18-55.ip.prioritytelecom.net): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jan 17 22:11:45 ubnt-55d23 sshd[18688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.127.18.55 user=root Jan 17 22:11:47 ubnt-55d23 sshd[18688]: Failed password for root from 213.127.18.55 port 19072 ssh2 |
2020-01-18 06:21:57 |