City: unknown
Region: unknown
Country: IANA Special-Purpose Address
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 242.121.125.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51173
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;242.121.125.204. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021900 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 19:02:08 CST 2025
;; MSG SIZE rcvd: 108Host 204.125.121.242.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 204.125.121.242.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.168.147.210 | attackbotsspam | Jul 7 18:04:45 core01 sshd\[15478\]: Invalid user sysadmin from 104.168.147.210 port 48364 Jul 7 18:04:45 core01 sshd\[15478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.147.210 ... |
2019-07-08 05:37:33 |
| 147.135.195.254 | attackspam | Attempted SSH login |
2019-07-08 05:44:26 |
| 190.3.25.122 | attack | Jul 7 20:52:52 MK-Soft-Root2 sshd\[10123\]: Invalid user du from 190.3.25.122 port 33672 Jul 7 20:52:52 MK-Soft-Root2 sshd\[10123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.3.25.122 Jul 7 20:52:53 MK-Soft-Root2 sshd\[10123\]: Failed password for invalid user du from 190.3.25.122 port 33672 ssh2 ... |
2019-07-08 05:55:25 |
| 64.8.71.112 | attackbotsspam | Received: from 10.213.252.189 (EHLO smtp.knology.net) (64.8.71.112) by mta4399.mail.gq1.yahoo.com with SMTPS; Sun, 07 Jul 2019 05:10:55 +0000 Return-Path: |
2019-07-08 05:43:58 |
| 170.239.22.36 | attackbots | SMTP-sasl brute force ... |
2019-07-08 05:37:57 |
| 42.243.204.237 | attackspambots | Jul 7 18:43:42 mail sshd[20889]: Invalid user service from 42.243.204.237 Jul 7 18:43:42 mail sshd[20889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.243.204.237 Jul 7 18:43:43 mail sshd[20889]: Failed password for invalid user service from 42.243.204.237 port 55303 ssh2 Jul 7 18:43:46 mail sshd[20889]: Failed password for invalid user service from 42.243.204.237 port 55303 ssh2 Jul 7 18:43:48 mail sshd[20889]: Failed password for invalid user service from 42.243.204.237 port 55303 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.243.204.237 |
2019-07-08 05:09:54 |
| 82.102.164.229 | attackspam | Brute force attempt |
2019-07-08 05:19:13 |
| 94.191.2.228 | attackspam | Jul 7 18:54:50 localhost sshd\[73373\]: Invalid user everdata from 94.191.2.228 port 35527 Jul 7 18:54:50 localhost sshd\[73373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.2.228 Jul 7 18:54:52 localhost sshd\[73373\]: Failed password for invalid user everdata from 94.191.2.228 port 35527 ssh2 Jul 7 18:57:35 localhost sshd\[73411\]: Invalid user sandeep from 94.191.2.228 port 60937 Jul 7 18:57:35 localhost sshd\[73411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.2.228 ... |
2019-07-08 05:30:15 |
| 37.156.78.27 | attackbotsspam | firewall-block, port(s): 80/tcp |
2019-07-08 05:08:28 |
| 58.151.77.38 | attackspam | scan for php phpmyadmin database files |
2019-07-08 05:50:08 |
| 117.62.132.229 | attackbotsspam | 22/tcp [2019-07-07]1pkt |
2019-07-08 05:21:55 |
| 35.231.123.62 | attackspambots | Jul 7 20:47:35 XXX sshd[62119]: Invalid user svn from 35.231.123.62 port 39500 |
2019-07-08 05:53:32 |
| 86.34.220.174 | attackspam | Jul 7 15:28:55 mail kernel: \[1551677.510087\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=86.34.220.174 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=54 ID=56532 DF PROTO=TCP SPT=49009 DPT=9527 WINDOW=14600 RES=0x00 SYN URGP=0 Jul 7 15:28:58 mail kernel: \[1551680.470982\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=86.34.220.174 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=54 ID=56533 DF PROTO=TCP SPT=49009 DPT=9527 WINDOW=14600 RES=0x00 SYN URGP=0 Jul 7 15:29:04 mail kernel: \[1551686.481262\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=86.34.220.174 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=54 ID=56534 DF PROTO=TCP SPT=49009 DPT=9527 WINDOW=14600 RES=0x00 SYN URGP=0 |
2019-07-08 05:27:10 |
| 168.228.149.64 | attack | Brute force attempt |
2019-07-08 05:16:40 |
| 159.192.144.203 | attackspam | Invalid user anna from 159.192.144.203 port 55936 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.203 Failed password for invalid user anna from 159.192.144.203 port 55936 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.203 user=nagios Failed password for nagios from 159.192.144.203 port 41996 ssh2 |
2019-07-08 05:19:48 |