City: unknown
Region: unknown
Country: Venezuela (Bolivarian Republic of)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.242.68.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18648
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;201.242.68.13. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012201 1800 900 604800 86400
;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 04:50:40 CST 2025
;; MSG SIZE rcvd: 10613.68.242.201.in-addr.arpa domain name pointer 201-242-68-13.pod-00-p72.cantv.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
13.68.242.201.in-addr.arpa name = 201-242-68-13.pod-00-p72.cantv.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.248.209.204 | attack | May 14 15:22:47 eventyay sshd[18151]: Failed password for root from 104.248.209.204 port 55496 ssh2 May 14 15:26:31 eventyay sshd[18266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.209.204 May 14 15:26:32 eventyay sshd[18266]: Failed password for invalid user deploy from 104.248.209.204 port 35152 ssh2 ... |
2020-05-14 21:35:21 |
| 37.120.176.53 | attackspambots | May 14 14:21:58 mail sshd[13373]: Invalid user cpsrvsid from 37.120.176.53 May 14 14:21:58 mail sshd[13373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.120.176.53 May 14 14:21:58 mail sshd[13373]: Invalid user cpsrvsid from 37.120.176.53 May 14 14:22:00 mail sshd[13373]: Failed password for invalid user cpsrvsid from 37.120.176.53 port 33404 ssh2 May 14 14:27:42 mail sshd[14096]: Invalid user oracle from 37.120.176.53 ... |
2020-05-14 21:52:55 |
| 195.136.172.22 | attackbots | Automatic report - Port Scan Attack |
2020-05-14 22:08:43 |
| 209.141.40.12 | attackbots | 2020-05-14T12:43:57.906586shield sshd\[8256\]: Invalid user www from 209.141.40.12 port 59790 2020-05-14T12:43:57.907137shield sshd\[8243\]: Invalid user tomcat from 209.141.40.12 port 59824 2020-05-14T12:43:57.907646shield sshd\[8255\]: Invalid user postgres from 209.141.40.12 port 59798 2020-05-14T12:43:57.908102shield sshd\[8242\]: Invalid user hadoop from 209.141.40.12 port 59816 2020-05-14T12:43:57.908535shield sshd\[8244\]: Invalid user admin from 209.141.40.12 port 59786 2020-05-14T12:43:57.909229shield sshd\[8241\]: Invalid user oracle from 209.141.40.12 port 59808 |
2020-05-14 21:27:09 |
| 142.44.242.68 | attackspambots | $f2bV_matches |
2020-05-14 21:55:24 |
| 137.220.138.252 | attackspambots | May 14 13:08:02 localhost sshd[118443]: Invalid user rob from 137.220.138.252 port 56004 May 14 13:08:02 localhost sshd[118443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.220.138.252 May 14 13:08:02 localhost sshd[118443]: Invalid user rob from 137.220.138.252 port 56004 May 14 13:08:04 localhost sshd[118443]: Failed password for invalid user rob from 137.220.138.252 port 56004 ssh2 May 14 13:15:49 localhost sshd[119290]: Invalid user ceph from 137.220.138.252 port 37680 ... |
2020-05-14 21:28:21 |
| 175.197.74.237 | attack | May 14 15:14:28 melroy-server sshd[32283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.74.237 May 14 15:14:30 melroy-server sshd[32283]: Failed password for invalid user cpanel from 175.197.74.237 port 30280 ssh2 ... |
2020-05-14 21:34:53 |
| 159.89.180.30 | attackspam | 2020-05-14T12:20:59.291428abusebot-7.cloudsearch.cf sshd[24200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.180.30 user=root 2020-05-14T12:21:01.551292abusebot-7.cloudsearch.cf sshd[24200]: Failed password for root from 159.89.180.30 port 45266 ssh2 2020-05-14T12:24:14.725299abusebot-7.cloudsearch.cf sshd[24455]: Invalid user zyg from 159.89.180.30 port 50358 2020-05-14T12:24:14.730252abusebot-7.cloudsearch.cf sshd[24455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.180.30 2020-05-14T12:24:14.725299abusebot-7.cloudsearch.cf sshd[24455]: Invalid user zyg from 159.89.180.30 port 50358 2020-05-14T12:24:16.092249abusebot-7.cloudsearch.cf sshd[24455]: Failed password for invalid user zyg from 159.89.180.30 port 50358 ssh2 2020-05-14T12:27:25.232945abusebot-7.cloudsearch.cf sshd[24611]: Invalid user postgres from 159.89.180.30 port 55452 ... |
2020-05-14 22:06:56 |
| 37.49.226.130 | attack | firewall-block, port(s): 81/tcp |
2020-05-14 21:37:24 |
| 197.156.66.178 | attack | May 14 15:02:54 ns382633 sshd\[26039\]: Invalid user wp from 197.156.66.178 port 56716 May 14 15:02:54 ns382633 sshd\[26039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.66.178 May 14 15:02:56 ns382633 sshd\[26039\]: Failed password for invalid user wp from 197.156.66.178 port 56716 ssh2 May 14 15:16:47 ns382633 sshd\[28814\]: Invalid user vagrant from 197.156.66.178 port 49748 May 14 15:16:47 ns382633 sshd\[28814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.66.178 |
2020-05-14 21:59:29 |
| 177.125.78.61 | attack | DATE:2020-05-14 14:27:55, IP:177.125.78.61, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-05-14 21:39:29 |
| 61.141.64.90 | attackbotsspam | May 12 04:10:49 nxxxxxxx sshd[11196]: Invalid user pajaro from 61.141.64.90 May 12 04:10:50 nxxxxxxx sshd[11196]: Failed password for invalid user pajaro from 61.141.64.90 port 33422 ssh2 May 12 04:57:44 nxxxxxxx sshd[16629]: Invalid user jose from 61.141.64.90 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=61.141.64.90 |
2020-05-14 22:05:17 |
| 58.33.107.221 | attackspam | May 14 14:47:31 django sshd[17870]: reveeclipse mapping checking getaddrinfo for 221.107.33.58.broad.xw.sh.dynamic.163data.com.cn [58.33.107.221] failed - POSSIBLE BREAK-IN ATTEMPT! May 14 14:47:31 django sshd[17870]: Invalid user john from 58.33.107.221 May 14 14:47:31 django sshd[17870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.33.107.221 May 14 14:47:32 django sshd[17870]: Failed password for invalid user john from 58.33.107.221 port 51831 ssh2 May 14 14:47:33 django sshd[17871]: Received disconnect from 58.33.107.221: 11: Bye Bye May 14 15:04:29 django sshd[20161]: reveeclipse mapping checking getaddrinfo for 221.107.33.58.broad.xw.sh.dynamic.163data.com.cn [58.33.107.221] failed - POSSIBLE BREAK-IN ATTEMPT! May 14 15:04:29 django sshd[20161]: User ftp from 58.33.107.221 not allowed because not listed in AllowUsers May 14 15:04:29 django sshd[20161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0........ ------------------------------- |
2020-05-14 21:45:42 |
| 148.233.9.130 | attack | Unauthorised access (May 14) SRC=148.233.9.130 LEN=52 TTL=111 ID=12941 DF TCP DPT=445 WINDOW=8192 SYN |
2020-05-14 22:07:23 |
| 186.146.1.122 | attackbotsspam | (sshd) Failed SSH login from 186.146.1.122 (CO/Colombia/static-ip-1861461122.cable.net.co): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 14 15:00:09 amsweb01 sshd[7854]: Invalid user postgres from 186.146.1.122 port 49914 May 14 15:00:11 amsweb01 sshd[7854]: Failed password for invalid user postgres from 186.146.1.122 port 49914 ssh2 May 14 15:10:37 amsweb01 sshd[8903]: Invalid user zm from 186.146.1.122 port 38546 May 14 15:10:38 amsweb01 sshd[8903]: Failed password for invalid user zm from 186.146.1.122 port 38546 ssh2 May 14 15:15:00 amsweb01 sshd[9411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.146.1.122 user=root |
2020-05-14 21:27:29 |