City: Highland Lakes
Region: New Jersey
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 216.6.158.155
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34029
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;216.6.158.155. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024112102 1800 900 604800 86400
;; Query time: 137 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 22 11:25:06 CST 2024
;; MSG SIZE rcvd: 106b'Host 155.158.6.216.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 216.6.158.155.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.175.93.19 | attack | Nov 3 15:21:48 mc1 kernel: \[4077217.935794\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.19 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=41322 PROTO=TCP SPT=41749 DPT=3224 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 3 15:23:07 mc1 kernel: \[4077296.709271\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.19 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=54823 PROTO=TCP SPT=41749 DPT=3777 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 3 15:25:33 mc1 kernel: \[4077442.361588\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.19 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=45902 PROTO=TCP SPT=41749 DPT=3588 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-11-03 22:36:41 |
| 106.12.138.219 | attackbots | 2019-11-03T08:24:31.795703abusebot-2.cloudsearch.cf sshd\[16678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.138.219 user=root |
2019-11-03 22:29:23 |
| 207.154.234.102 | attack | Nov 03 02:30:36 askasleikir sshd[38097]: Failed password for root from 207.154.234.102 port 49940 ssh2 Nov 03 02:19:22 askasleikir sshd[38013]: Failed password for root from 207.154.234.102 port 56416 ssh2 Nov 03 02:44:10 askasleikir sshd[38206]: Failed password for root from 207.154.234.102 port 57712 ssh2 |
2019-11-03 22:24:16 |
| 36.84.80.31 | attack | Nov 3 09:33:49 TORMINT sshd\[31254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.84.80.31 user=root Nov 3 09:33:51 TORMINT sshd\[31254\]: Failed password for root from 36.84.80.31 port 11841 ssh2 Nov 3 09:38:20 TORMINT sshd\[31455\]: Invalid user west263 from 36.84.80.31 Nov 3 09:38:20 TORMINT sshd\[31455\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.84.80.31 ... |
2019-11-03 22:49:53 |
| 219.92.16.81 | attack | $f2bV_matches |
2019-11-03 22:25:24 |
| 45.82.153.133 | attack | Nov 3 15:16:50 localhost postfix/smtpd\[24513\]: warning: unknown\[45.82.153.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 15:17:13 localhost postfix/smtpd\[24524\]: warning: unknown\[45.82.153.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 15:18:35 localhost postfix/smtpd\[24513\]: warning: unknown\[45.82.153.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 15:19:00 localhost postfix/smtpd\[24602\]: warning: unknown\[45.82.153.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 15:26:04 localhost postfix/smtpd\[24778\]: warning: unknown\[45.82.153.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-11-03 22:34:46 |
| 101.91.217.94 | attackspambots | Nov 3 15:32:37 sd-53420 sshd\[8010\]: Invalid user paul from 101.91.217.94 Nov 3 15:32:37 sd-53420 sshd\[8010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.217.94 Nov 3 15:32:39 sd-53420 sshd\[8010\]: Failed password for invalid user paul from 101.91.217.94 port 48014 ssh2 Nov 3 15:38:18 sd-53420 sshd\[8400\]: User root from 101.91.217.94 not allowed because none of user's groups are listed in AllowGroups Nov 3 15:38:18 sd-53420 sshd\[8400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.217.94 user=root ... |
2019-11-03 22:51:07 |
| 49.88.112.115 | attackbotsspam | Nov 3 04:38:35 auw2 sshd\[9746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Nov 3 04:38:38 auw2 sshd\[9746\]: Failed password for root from 49.88.112.115 port 28403 ssh2 Nov 3 04:45:39 auw2 sshd\[10441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Nov 3 04:45:41 auw2 sshd\[10441\]: Failed password for root from 49.88.112.115 port 57820 ssh2 Nov 3 04:46:40 auw2 sshd\[10510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root |
2019-11-03 22:52:10 |
| 118.25.38.208 | attackspambots | $f2bV_matches |
2019-11-03 22:45:57 |
| 45.82.153.133 | attackbotsspam | 45.82.153.133 was recorded 6 times by 2 hosts attempting to connect to the following ports: 25,587,465. Incident counter (4h, 24h, all-time): 6, 19, 19 |
2019-11-03 22:55:44 |
| 178.62.127.197 | attackspambots | Nov 3 09:38:21 mail sshd\[14204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.127.197 user=root ... |
2019-11-03 22:47:50 |
| 123.206.22.145 | attackbots | Nov 3 08:07:47 lnxmail61 sshd[8713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.22.145 |
2019-11-03 22:19:19 |
| 170.0.125.230 | attack | postfix |
2019-11-03 22:29:51 |
| 27.145.54.35 | attackbotsspam | Automatic report - Port Scan Attack |
2019-11-03 22:58:44 |
| 76.170.152.202 | attack | Port Scan: TCP/443 |
2019-11-03 22:33:15 |