City: unknown
Region: unknown
Country: IANA Special-Purpose Address
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 242.19.245.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6955
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;242.19.245.13. IN A
;; AUTHORITY SECTION:
. 270 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024060800 1800 900 604800 86400
;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 08 18:57:37 CST 2024
;; MSG SIZE rcvd: 106Host 13.245.19.242.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 13.245.19.242.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 134.175.59.235 | attackbotsspam | 2019-10-02T22:38:33.227129enmeeting.mahidol.ac.th sshd\[28065\]: Invalid user test from 134.175.59.235 port 60209 2019-10-02T22:38:33.241448enmeeting.mahidol.ac.th sshd\[28065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.59.235 2019-10-02T22:38:35.429068enmeeting.mahidol.ac.th sshd\[28065\]: Failed password for invalid user test from 134.175.59.235 port 60209 ssh2 ... |
2019-10-03 04:00:02 |
| 180.114.212.138 | attackspambots | SASL broute force |
2019-10-03 03:59:29 |
| 180.148.1.218 | attackspam | Oct 2 14:24:40 dev0-dcde-rnet sshd[26799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.148.1.218 Oct 2 14:24:42 dev0-dcde-rnet sshd[26799]: Failed password for invalid user arturo from 180.148.1.218 port 60156 ssh2 Oct 2 14:29:53 dev0-dcde-rnet sshd[26804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.148.1.218 |
2019-10-03 03:56:32 |
| 142.93.149.34 | attackbots | 142.93.149.34 - - [02/Oct/2019:18:41:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:08 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:09 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:10 +0200] "POST /wp-login.php HTTP/1.1" 200 1684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:13 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:13 +0200] "POST /wp-login.php HTTP/1.1" 200 1688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-10-03 04:18:13 |
| 13.59.120.106 | attackbots | 2019-10-02T21:19:47.014398lon01.zurich-datacenter.net sshd\[15966\]: Invalid user pink from 13.59.120.106 port 33524 2019-10-02T21:19:47.021082lon01.zurich-datacenter.net sshd\[15966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-59-120-106.us-east-2.compute.amazonaws.com 2019-10-02T21:19:48.835475lon01.zurich-datacenter.net sshd\[15966\]: Failed password for invalid user pink from 13.59.120.106 port 33524 ssh2 2019-10-02T21:23:25.570300lon01.zurich-datacenter.net sshd\[16037\]: Invalid user suzi from 13.59.120.106 port 47514 2019-10-02T21:23:25.577967lon01.zurich-datacenter.net sshd\[16037\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-59-120-106.us-east-2.compute.amazonaws.com ... |
2019-10-03 04:25:14 |
| 5.9.18.204 | attackspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.9.18.204/ DE - 1H : (277) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : DE NAME ASN : ASN24940 IP : 5.9.18.204 CIDR : 5.9.0.0/16 PREFIX COUNT : 70 UNIQUE IP COUNT : 1779712 WYKRYTE ATAKI Z ASN24940 : 1H - 4 3H - 6 6H - 7 12H - 12 24H - 25 DateTime : 2019-10-02 20:27:08 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery |
2019-10-03 04:05:32 |
| 149.202.196.9 | attackbotsspam | REQUESTED PAGE: /xmlrpc.php |
2019-10-03 03:58:22 |
| 173.201.196.147 | attackspam | Automatic report - XMLRPC Attack |
2019-10-03 04:33:44 |
| 78.224.78.31 | attackbotsspam | Oct 2 14:29:24 andromeda sshd\[42020\]: Invalid user pi from 78.224.78.31 port 42458 Oct 2 14:29:24 andromeda sshd\[42021\]: Invalid user pi from 78.224.78.31 port 42462 Oct 2 14:29:25 andromeda sshd\[42020\]: Failed password for invalid user pi from 78.224.78.31 port 42458 ssh2 |
2019-10-03 04:09:53 |
| 153.228.158.177 | attackspambots | 2019-10-02T18:26:58.828840abusebot-2.cloudsearch.cf sshd\[324\]: Invalid user felipe from 153.228.158.177 port 49162 |
2019-10-03 03:54:43 |
| 49.86.182.15 | attack | SASL broute force |
2019-10-03 04:26:34 |
| 125.64.94.211 | attackspambots | 02.10.2019 17:41:51 Connection to port 11211 blocked by firewall |
2019-10-03 04:07:59 |
| 187.87.104.62 | attackspambots | Oct 2 15:20:35 game-panel sshd[6938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.87.104.62 Oct 2 15:20:38 game-panel sshd[6938]: Failed password for invalid user cloud_user from 187.87.104.62 port 43341 ssh2 Oct 2 15:25:30 game-panel sshd[7077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.87.104.62 |
2019-10-03 04:33:18 |
| 182.187.83.183 | attackbotsspam | B: Magento admin pass /admin/ test (wrong country) |
2019-10-03 04:14:07 |
| 112.85.42.171 | attackbotsspam | 19/10/2@14:34:16: FAIL: Alarm-SSH address from=112.85.42.171 ... |
2019-10-03 04:02:15 |