City: unknown
Region: unknown
Country: Egypt
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.164.142.37
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36324
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;197.164.142.37. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021601 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 05:30:45 CST 2025
;; MSG SIZE rcvd: 107Host 37.142.164.197.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 37.142.164.197.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 165.227.114.134 | attack | May 27 14:18:27 server sshd[29447]: Failed password for root from 165.227.114.134 port 59902 ssh2 May 27 14:22:13 server sshd[29740]: Failed password for root from 165.227.114.134 port 35886 ssh2 ... |
2020-05-27 23:49:38 |
| 173.67.48.130 | attack | Bruteforce detected by fail2ban |
2020-05-28 00:30:00 |
| 141.98.9.161 | attackspambots | 2020-05-27T18:21:41.408419vps751288.ovh.net sshd\[27739\]: Invalid user admin from 141.98.9.161 port 41787 2020-05-27T18:21:41.416677vps751288.ovh.net sshd\[27739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.161 2020-05-27T18:21:44.109312vps751288.ovh.net sshd\[27739\]: Failed password for invalid user admin from 141.98.9.161 port 41787 ssh2 2020-05-27T18:22:05.016283vps751288.ovh.net sshd\[27763\]: Invalid user ubnt from 141.98.9.161 port 41455 2020-05-27T18:22:05.026843vps751288.ovh.net sshd\[27763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.161 |
2020-05-28 00:23:01 |
| 222.242.223.75 | attackbotsspam | May 27 15:14:48 home sshd[14403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.242.223.75 May 27 15:14:50 home sshd[14403]: Failed password for invalid user wking from 222.242.223.75 port 40545 ssh2 May 27 15:18:08 home sshd[14725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.242.223.75 ... |
2020-05-27 23:42:39 |
| 93.39.104.224 | attack | Invalid user mokua from 93.39.104.224 port 41404 |
2020-05-27 23:45:10 |
| 37.49.226.23 | attack | May 27 17:46:16 vmanager6029 sshd\[23748\]: Invalid user oracle from 37.49.226.23 port 41664 May 27 17:46:24 vmanager6029 sshd\[23752\]: Invalid user debian from 37.49.226.23 port 51936 May 27 17:46:31 vmanager6029 sshd\[23772\]: Invalid user ubuntu from 37.49.226.23 port 34172 |
2020-05-28 00:10:40 |
| 123.207.178.45 | attackbotsspam | Invalid user nagios from 123.207.178.45 port 29457 |
2020-05-28 00:09:14 |
| 118.25.79.56 | attack | SSH Login Bruteforce |
2020-05-28 00:08:11 |
| 115.29.5.153 | attack | May 27 13:44:22 abendstille sshd\[27565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.5.153 user=root May 27 13:44:23 abendstille sshd\[27565\]: Failed password for root from 115.29.5.153 port 52206 ssh2 May 27 13:48:19 abendstille sshd\[31208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.5.153 user=root May 27 13:48:20 abendstille sshd\[31208\]: Failed password for root from 115.29.5.153 port 43460 ssh2 May 27 13:52:38 abendstille sshd\[2865\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.5.153 user=root ... |
2020-05-28 00:11:41 |
| 121.43.163.22 | attack | 20 attempts against mh-ssh on grass |
2020-05-27 23:42:12 |
| 212.237.38.79 | attack | May 27 15:00:12 ArkNodeAT sshd\[6508\]: Invalid user phpmy from 212.237.38.79 May 27 15:00:12 ArkNodeAT sshd\[6508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.237.38.79 May 27 15:00:14 ArkNodeAT sshd\[6508\]: Failed password for invalid user phpmy from 212.237.38.79 port 45882 ssh2 |
2020-05-28 00:15:35 |
| 123.211.196.246 | attack | ET EXPLOIT Multiple DrayTek Products Pre-authentication Remote RCE Inbound (CVE-2020-8515) M2 |
2020-05-28 00:24:15 |
| 83.241.232.51 | attackbotsspam | May 27 13:40:54 ns382633 sshd\[2334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.241.232.51 user=root May 27 13:40:56 ns382633 sshd\[2334\]: Failed password for root from 83.241.232.51 port 59538 ssh2 May 27 13:49:47 ns382633 sshd\[3669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.241.232.51 user=root May 27 13:49:49 ns382633 sshd\[3669\]: Failed password for root from 83.241.232.51 port 50610 ssh2 May 27 13:53:01 ns382633 sshd\[4437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.241.232.51 user=root |
2020-05-27 23:43:56 |
| 36.225.30.67 | attackbots | TCP Port Scanning |
2020-05-27 23:43:42 |
| 34.96.140.57 | attackbotsspam | Lines containing failures of 34.96.140.57 May 25 15:27:35 g sshd[6026]: Invalid user davidbjc from 34.96.140.57 port 61912 May 25 15:27:35 g sshd[6026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.96.140.57 May 25 15:27:36 g sshd[6026]: Failed password for invalid user davidbjc from 34.96.140.57 port 61912 ssh2 May 25 15:27:36 g sshd[6026]: Received disconnect from 34.96.140.57 port 61912:11: Bye Bye [preauth] May 25 15:27:36 g sshd[6026]: Disconnected from invalid user davidbjc 34.96.140.57 port 61912 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=34.96.140.57 |
2020-05-27 23:51:09 |