City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 204.75.42.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45789
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;204.75.42.158. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021601 1800 900 604800 86400
;; Query time: 42 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 06:18:18 CST 2025
;; MSG SIZE rcvd: 106Host 158.42.75.204.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 158.42.75.204.in-addr.arpa: SERVFAIL
| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.91.208.98 | attackspambots | ENG,DEF GET /shell?%75%6E%61%6D%65%20%2D%61 |
2019-06-27 06:22:49 |
| 185.176.27.34 | attackspambots | MultiHost/MultiPort Probe, Scan, Hack - |
2019-06-27 06:01:21 |
| 104.248.121.67 | attack | Jun 26 23:32:29 tuxlinux sshd[29808]: Invalid user weblogic from 104.248.121.67 port 49265 Jun 26 23:32:29 tuxlinux sshd[29808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.121.67 Jun 26 23:32:29 tuxlinux sshd[29808]: Invalid user weblogic from 104.248.121.67 port 49265 Jun 26 23:32:29 tuxlinux sshd[29808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.121.67 Jun 26 23:32:29 tuxlinux sshd[29808]: Invalid user weblogic from 104.248.121.67 port 49265 Jun 26 23:32:29 tuxlinux sshd[29808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.121.67 Jun 26 23:32:30 tuxlinux sshd[29808]: Failed password for invalid user weblogic from 104.248.121.67 port 49265 ssh2 ... |
2019-06-27 06:42:04 |
| 59.27.189.226 | attackspambots | RDP Brute-Force (Grieskirchen RZ1) |
2019-06-27 06:26:11 |
| 68.48.240.245 | attack | 2019-06-26T20:54:45.214874enmeeting.mahidol.ac.th sshd\[32271\]: Invalid user cacti from 68.48.240.245 port 44200 2019-06-26T20:54:45.228330enmeeting.mahidol.ac.th sshd\[32271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-68-48-240-245.hsd1.mi.comcast.net 2019-06-26T20:54:48.114979enmeeting.mahidol.ac.th sshd\[32271\]: Failed password for invalid user cacti from 68.48.240.245 port 44200 ssh2 ... |
2019-06-27 06:40:00 |
| 51.254.58.226 | attackbots | Rude login attack (88 tries in 1d) |
2019-06-27 06:26:45 |
| 61.12.84.13 | attack | Jun 26 22:51:01 server sshd[56599]: Failed password for invalid user han from 61.12.84.13 port 55860 ssh2 Jun 26 22:54:13 server sshd[57279]: Failed password for invalid user grassi from 61.12.84.13 port 33662 ssh2 Jun 26 22:56:00 server sshd[57679]: Failed password for invalid user typo3 from 61.12.84.13 port 39644 ssh2 |
2019-06-27 05:56:34 |
| 185.176.27.42 | attackbots | Port scan: Attack repeated for 24 hours |
2019-06-27 06:16:53 |
| 103.114.107.129 | attackspambots | TCP 3389 (RDP) |
2019-06-27 06:39:44 |
| 49.51.233.81 | attackspam | Jun 26 15:42:50 core01 sshd\[30848\]: Invalid user zuan from 49.51.233.81 port 38076 Jun 26 15:42:50 core01 sshd\[30848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.233.81 ... |
2019-06-27 06:42:38 |
| 122.192.22.172 | attack | Unauthorised access (Jun 26) SRC=122.192.22.172 LEN=40 TTL=49 ID=38796 TCP DPT=23 WINDOW=51429 SYN |
2019-06-27 06:31:36 |
| 220.176.204.91 | attackspambots | Jun 26 21:08:13 tux-35-217 sshd\[9288\]: Invalid user stas from 220.176.204.91 port 39040 Jun 26 21:08:13 tux-35-217 sshd\[9288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.176.204.91 Jun 26 21:08:15 tux-35-217 sshd\[9288\]: Failed password for invalid user stas from 220.176.204.91 port 39040 ssh2 Jun 26 21:17:50 tux-35-217 sshd\[9336\]: Invalid user nkinyanjui from 220.176.204.91 port 17551 Jun 26 21:17:50 tux-35-217 sshd\[9336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.176.204.91 ... |
2019-06-27 06:35:03 |
| 114.231.27.147 | attackspambots | 2019-06-26T14:44:05.112024 X postfix/smtpd[20979]: warning: unknown[114.231.27.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-26T15:00:16.402734 X postfix/smtpd[22640]: warning: unknown[114.231.27.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-26T15:00:38.099770 X postfix/smtpd[22640]: warning: unknown[114.231.27.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-06-27 06:22:04 |
| 178.128.215.179 | attack | 2019-06-26T22:17:30.2864941240 sshd\[28107\]: Invalid user emmanuel from 178.128.215.179 port 58894 2019-06-26T22:17:30.2923271240 sshd\[28107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.215.179 2019-06-26T22:17:32.4216841240 sshd\[28107\]: Failed password for invalid user emmanuel from 178.128.215.179 port 58894 ssh2 ... |
2019-06-27 06:01:52 |
| 162.243.165.39 | attackbotsspam | Jun 26 15:01:05 nextcloud sshd\[5506\]: Invalid user spread from 162.243.165.39 Jun 26 15:01:05 nextcloud sshd\[5506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.165.39 Jun 26 15:01:07 nextcloud sshd\[5506\]: Failed password for invalid user spread from 162.243.165.39 port 41450 ssh2 ... |
2019-06-27 06:03:32 |