City: unknown
Region: unknown
Country: Australia
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.55.157.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5494
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;202.55.157.195. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022802 1800 900 604800 86400
;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 10:00:33 CST 2025
;; MSG SIZE rcvd: 107195.157.55.202.in-addr.arpa domain name pointer static-157-195.transact.net.au.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
195.157.55.202.in-addr.arpa name = static-157-195.transact.net.au.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 91.234.125.163 | attackbots | RDP Bruteforce |
2019-11-09 02:16:07 |
| 54.39.51.31 | attack | Apr 28 07:37:11 vtv3 sshd\[19361\]: Invalid user tomcats from 54.39.51.31 port 52192 Apr 28 07:37:11 vtv3 sshd\[19361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.51.31 Apr 28 07:37:13 vtv3 sshd\[19361\]: Failed password for invalid user tomcats from 54.39.51.31 port 52192 ssh2 Apr 28 07:42:34 vtv3 sshd\[21969\]: Invalid user elvis from 54.39.51.31 port 45548 Apr 28 07:42:34 vtv3 sshd\[21969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.51.31 Apr 28 07:52:56 vtv3 sshd\[26962\]: Invalid user que from 54.39.51.31 port 52860 Apr 28 07:52:56 vtv3 sshd\[26962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.51.31 Apr 28 07:52:59 vtv3 sshd\[26962\]: Failed password for invalid user que from 54.39.51.31 port 52860 ssh2 Apr 28 07:55:10 vtv3 sshd\[28222\]: Invalid user kw from 54.39.51.31 port 48728 Apr 28 07:55:10 vtv3 sshd\[28222\]: pam_unix\(sshd:auth\): aut |
2019-11-09 01:57:00 |
| 119.193.27.90 | attackspambots | Lines containing failures of 119.193.27.90 Nov 7 13:39:21 shared10 sshd[31236]: Invalid user admin from 119.193.27.90 port 54025 Nov 7 13:39:21 shared10 sshd[31236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.193.27.90 Nov 7 13:39:24 shared10 sshd[31236]: Failed password for invalid user admin from 119.193.27.90 port 54025 ssh2 Nov 7 13:39:24 shared10 sshd[31236]: Connection closed by invalid user admin 119.193.27.90 port 54025 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=119.193.27.90 |
2019-11-09 02:08:55 |
| 188.35.187.50 | attackbots | Nov 8 18:25:03 sd-53420 sshd\[1316\]: User root from 188.35.187.50 not allowed because none of user's groups are listed in AllowGroups Nov 8 18:25:03 sd-53420 sshd\[1316\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.35.187.50 user=root Nov 8 18:25:05 sd-53420 sshd\[1316\]: Failed password for invalid user root from 188.35.187.50 port 52076 ssh2 Nov 8 18:29:08 sd-53420 sshd\[2537\]: Invalid user comdd from 188.35.187.50 Nov 8 18:29:08 sd-53420 sshd\[2537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.35.187.50 ... |
2019-11-09 02:00:28 |
| 139.217.234.68 | attack | $f2bV_matches |
2019-11-09 01:56:24 |
| 220.130.178.36 | attack | 2019-11-08T17:41:11.519422shield sshd\[10174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-178-36.hinet-ip.hinet.net user=root 2019-11-08T17:41:13.130469shield sshd\[10174\]: Failed password for root from 220.130.178.36 port 34580 ssh2 2019-11-08T17:45:30.529753shield sshd\[10594\]: Invalid user sogo from 220.130.178.36 port 43754 2019-11-08T17:45:30.534094shield sshd\[10594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-178-36.hinet-ip.hinet.net 2019-11-08T17:45:32.035941shield sshd\[10594\]: Failed password for invalid user sogo from 220.130.178.36 port 43754 ssh2 |
2019-11-09 01:52:37 |
| 77.70.96.195 | attackspam | Nov 8 18:51:06 sso sshd[23170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.70.96.195 Nov 8 18:51:08 sso sshd[23170]: Failed password for invalid user ftp from 77.70.96.195 port 51652 ssh2 ... |
2019-11-09 02:02:23 |
| 159.89.10.77 | attackspambots | 2019-11-08T17:55:20.561088abusebot-5.cloudsearch.cf sshd\[2463\]: Invalid user applmgr from 159.89.10.77 port 39158 |
2019-11-09 02:06:20 |
| 58.118.25.250 | attackspambots | Portscan or hack attempt detected by psad/fwsnort |
2019-11-09 02:11:05 |
| 121.140.165.67 | attack | Telnetd brute force attack detected by fail2ban |
2019-11-09 01:59:54 |
| 81.134.41.100 | attack | Nov 8 18:42:59 cavern sshd[13536]: Failed password for root from 81.134.41.100 port 55634 ssh2 |
2019-11-09 02:16:34 |
| 212.64.27.53 | attackspambots | Nov 8 18:03:21 microserver sshd[7435]: Invalid user vps from 212.64.27.53 port 58906 Nov 8 18:03:21 microserver sshd[7435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.27.53 Nov 8 18:03:22 microserver sshd[7435]: Failed password for invalid user vps from 212.64.27.53 port 58906 ssh2 Nov 8 18:09:46 microserver sshd[8146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.27.53 user=root Nov 8 18:09:48 microserver sshd[8146]: Failed password for root from 212.64.27.53 port 49784 ssh2 Nov 8 18:30:16 microserver sshd[11152]: Invalid user matt from 212.64.27.53 port 41168 Nov 8 18:30:16 microserver sshd[11152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.27.53 Nov 8 18:30:18 microserver sshd[11152]: Failed password for invalid user matt from 212.64.27.53 port 41168 ssh2 Nov 8 18:37:06 microserver sshd[11947]: Invalid user epmd from 212.64.27.53 port 44714 Nov |
2019-11-09 02:04:11 |
| 107.172.108.142 | attackbotsspam | Nov 8 15:05:00 spandau postfix/smtpd[7513]: warning: hostname yellowpages.com does not resolve to address 107.172.108.142 Nov 8 15:05:00 spandau postfix/smtpd[7513]: connect from unknown[107.172.108.142] Nov x@x Nov 8 15:05:02 spandau postfix/smtpd[7513]: disconnect from unknown[107.172.108.142] Nov 8 15:34:10 spandau postfix/smtpd[8165]: warning: hostname yellowpages.com does not resolve to address 107.172.108.142 Nov 8 15:34:10 spandau postfix/smtpd[8165]: connect from unknown[107.172.108.142] Nov x@x Nov 8 15:34:12 spandau postfix/smtpd[8165]: disconnect from unknown[107.172.108.142] Nov 8 15:36:57 spandau postfix/smtpd[9300]: warning: hostname yellowpages.com does not resolve to address 107.172.108.142 Nov 8 15:36:57 spandau postfix/smtpd[9300]: connect from unknown[107.172.108.142] Nov x@x Nov 8 15:36:58 spandau postfix/smtpd[9300]: disconnect from unknown[107.172.108.142] Nov 8 15:39:34 spandau postfix/smtpd[9463]: warning: hostname yellowpages.com does ........ ------------------------------- |
2019-11-09 02:17:58 |
| 112.217.150.113 | attackbotsspam | Nov 8 10:01:30 TORMINT sshd\[22785\]: Invalid user lovering from 112.217.150.113 Nov 8 10:01:30 TORMINT sshd\[22785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.150.113 Nov 8 10:01:32 TORMINT sshd\[22785\]: Failed password for invalid user lovering from 112.217.150.113 port 33966 ssh2 ... |
2019-11-09 02:28:07 |
| 78.186.138.134 | attack | " " |
2019-11-09 02:15:35 |