City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 199.66.12.228
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35420
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;199.66.12.228. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400
;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 03:34:11 CST 2025
;; MSG SIZE rcvd: 106Host 228.12.66.199.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 228.12.66.199.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 128.199.110.226 | attack | May 14 15:27:40 hosting sshd[27725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.110.226 May 14 15:27:40 hosting sshd[27725]: Invalid user hadoop1 from 128.199.110.226 port 41647 May 14 15:27:42 hosting sshd[27725]: Failed password for invalid user hadoop1 from 128.199.110.226 port 41647 ssh2 May 14 15:42:54 hosting sshd[29204]: Invalid user nexus from 128.199.110.226 port 48418 ... |
2020-05-14 20:49:55 |
| 112.85.42.174 | attackspam | May 14 12:46:56 sshgateway sshd\[377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root May 14 12:46:58 sshgateway sshd\[377\]: Failed password for root from 112.85.42.174 port 33840 ssh2 May 14 12:47:01 sshgateway sshd\[377\]: Failed password for root from 112.85.42.174 port 33840 ssh2 |
2020-05-14 20:49:41 |
| 82.212.60.75 | attackbotsspam | (sshd) Failed SSH login from 82.212.60.75 (DE/Germany/HSI-KBW-082-212-060-075.hsi.kabelbw.de): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 14 11:33:44 andromeda sshd[18341]: Invalid user test_user1 from 82.212.60.75 port 41746 May 14 11:33:46 andromeda sshd[18341]: Failed password for invalid user test_user1 from 82.212.60.75 port 41746 ssh2 May 14 12:28:06 andromeda sshd[20615]: Invalid user deploy from 82.212.60.75 port 49924 |
2020-05-14 21:28:47 |
| 112.201.93.136 | attack | Repeated attempts against wp-login |
2020-05-14 20:55:17 |
| 131.196.169.30 | attackbotsspam | 20/5/14@08:28:36: FAIL: Alarm-Network address from=131.196.169.30 20/5/14@08:28:36: FAIL: Alarm-Network address from=131.196.169.30 ... |
2020-05-14 21:09:43 |
| 69.158.207.141 | attackspam | Triggered by Fail2Ban at ReverseProxy web server |
2020-05-14 21:10:51 |
| 193.56.28.138 | attackbotsspam | Rude login attack (16 tries in 1d) |
2020-05-14 21:25:18 |
| 115.73.220.67 | attackbotsspam | 2020-05-14T22:28:45.075696luisaranguren sshd[3739332]: Invalid user sniffer from 115.73.220.67 port 35918 2020-05-14T22:28:51.170124luisaranguren sshd[3739332]: Failed password for invalid user sniffer from 115.73.220.67 port 35918 ssh2 ... |
2020-05-14 20:56:34 |
| 130.162.69.143 | attackbotsspam | 2020-05-14T03:59:22.576230finland sshd[94877]: Unable to negotiate with 130.162.69.143 port 21512: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] 2020-05-14T05:01:01.987900finland sshd[94985]: Connection from 130.162.69.143 port 21512 on 95.217.116.180 port 22 rdomain "" 2020-05-14T05:01:02.021472finland sshd[94985]: Unable to negotiate with 130.162.69.143 port 21512: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] 2020-05-14T06:01:40.172479finland sshd[95052]: Connection from 130.162.69.143 port 21512 on 95.217.116.180 port 22 rdomain "" 2020-05-14T06:01:40.205819finland sshd[95052]: Unable to negotiate with 130.162.69.143 port 21512: no matching key exchange method found. Their offer: diffie-hellman-group- ... |
2020-05-14 21:30:57 |
| 152.32.213.86 | attack | May 14 14:28:47 vmd48417 sshd[1016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.213.86 |
2020-05-14 20:58:35 |
| 122.51.130.21 | attackbots | (sshd) Failed SSH login from 122.51.130.21 (CN/China/-): 5 in the last 3600 secs |
2020-05-14 21:16:17 |
| 188.214.128.149 | attackspam | May 14 15:21:10 debian-2gb-nbg1-2 kernel: \[11721324.126595\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=188.214.128.149 DST=195.201.40.59 LEN=80 TOS=0x00 PREC=0x00 TTL=51 ID=39813 DF PROTO=UDP SPT=37535 DPT=389 LEN=60 |
2020-05-14 21:26:06 |
| 106.54.83.45 | attack | 2020-05-14T06:28:11.875513linuxbox-skyline sshd[164965]: Invalid user tacpro from 106.54.83.45 port 54512 ... |
2020-05-14 21:26:47 |
| 109.194.54.94 | attack | Many many attempts RDP protocol !!!!!! |
2020-05-14 21:13:12 |
| 175.24.81.207 | attackbots | May 14 14:20:40 ns382633 sshd\[18272\]: Invalid user user1 from 175.24.81.207 port 37402 May 14 14:20:40 ns382633 sshd\[18272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.81.207 May 14 14:20:42 ns382633 sshd\[18272\]: Failed password for invalid user user1 from 175.24.81.207 port 37402 ssh2 May 14 14:37:30 ns382633 sshd\[21300\]: Invalid user deploy from 175.24.81.207 port 41024 May 14 14:37:30 ns382633 sshd\[21300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.81.207 |
2020-05-14 21:11:59 |