City: unknown
Region: unknown
Country: IANA Special-Purpose Address
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 255.66.254.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4915
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;255.66.254.119. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024122701 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 28 11:18:53 CST 2024
;; MSG SIZE rcvd: 107Host 119.254.66.255.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 119.254.66.255.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 93.114.86.226 | attackbotsspam | 93.114.86.226 - - [07/Sep/2020:18:49:20 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 93.114.86.226 - - [07/Sep/2020:18:49:20 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 93.114.86.226 - - [07/Sep/2020:18:49:20 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 93.114.86.226 - - [07/Sep/2020:18:49:20 +0200] "POST /wp-login.php HTTP/1.1" 200 2672 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 93.114.86.226 - - [07/Sep/2020:18:49:20 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 93.114.86.226 - - [07/Sep/2020:18:49:20 +0200] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ... |
2020-09-08 02:00:11 |
| 61.157.91.159 | attackbotsspam | $f2bV_matches |
2020-09-08 01:51:49 |
| 111.47.18.22 | attackbotsspam | Sep 7 19:14:57 mout sshd[29561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.47.18.22 user=root Sep 7 19:14:59 mout sshd[29561]: Failed password for root from 111.47.18.22 port 2084 ssh2 Sep 7 19:15:00 mout sshd[29561]: Disconnected from authenticating user root 111.47.18.22 port 2084 [preauth] |
2020-09-08 02:11:46 |
| 85.247.242.96 | attackspam | Wordpress File Manager Plugin Remote Code Execution Vulnerability, PTR: bl14-242-96.dsl.telepac.pt. |
2020-09-08 02:03:15 |
| 161.35.126.137 | attackspambots | Sep 7 20:42:07 ift sshd\[41484\]: Failed password for root from 161.35.126.137 port 56688 ssh2Sep 7 20:42:17 ift sshd\[41521\]: Invalid user oracle from 161.35.126.137Sep 7 20:42:19 ift sshd\[41521\]: Failed password for invalid user oracle from 161.35.126.137 port 58592 ssh2Sep 7 20:42:31 ift sshd\[41540\]: Failed password for root from 161.35.126.137 port 60076 ssh2Sep 7 20:42:40 ift sshd\[41579\]: Invalid user postgres from 161.35.126.137 ... |
2020-09-08 01:56:44 |
| 46.59.65.88 | attack | Time: Mon Sep 7 12:28:11 2020 -0400 IP: 46.59.65.88 (SE/Sweden/h-65-88.A785.priv.bahnhof.se) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 7 12:27:58 pv-11-ams1 sshd[968]: Failed password for root from 46.59.65.88 port 50953 ssh2 Sep 7 12:28:00 pv-11-ams1 sshd[968]: Failed password for root from 46.59.65.88 port 50953 ssh2 Sep 7 12:28:02 pv-11-ams1 sshd[968]: Failed password for root from 46.59.65.88 port 50953 ssh2 Sep 7 12:28:04 pv-11-ams1 sshd[968]: Failed password for root from 46.59.65.88 port 50953 ssh2 Sep 7 12:28:06 pv-11-ams1 sshd[968]: Failed password for root from 46.59.65.88 port 50953 ssh2 |
2020-09-08 01:42:51 |
| 45.142.120.74 | attackspambots | 2020-09-07T12:08:58.879608linuxbox-skyline auth[137366]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=antispam2 rhost=45.142.120.74 ... |
2020-09-08 02:10:39 |
| 45.142.120.36 | attackspam | 2020-09-07 21:01:23 auth_plain authenticator failed for (User) [45.142.120.36]: 535 Incorrect authentication data (set_id=fred@lavrinenko.info) 2020-09-07 21:01:59 auth_plain authenticator failed for (User) [45.142.120.36]: 535 Incorrect authentication data (set_id=cellular@lavrinenko.info) ... |
2020-09-08 02:03:38 |
| 211.214.17.201 | attackspambots | Port Scan ... |
2020-09-08 02:07:57 |
| 61.84.196.50 | attack | $f2bV_matches |
2020-09-08 02:02:55 |
| 58.45.5.49 | attack | Mirai and Reaper Exploitation Traffic , PTR: PTR record not found |
2020-09-08 02:06:37 |
| 111.229.78.212 | attackbotsspam | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found |
2020-09-08 01:42:34 |
| 129.154.67.65 | attackspam | $f2bV_matches |
2020-09-08 01:53:45 |
| 183.136.222.142 | attackbotsspam | Sep 7 16:42:16 l03 sshd[18312]: Invalid user bergsvendsen from 183.136.222.142 port 51439 ... |
2020-09-08 02:16:00 |
| 118.89.231.121 | attackspam | Sep 7 16:19:38 ns382633 sshd\[14333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.231.121 user=root Sep 7 16:19:40 ns382633 sshd\[14333\]: Failed password for root from 118.89.231.121 port 46178 ssh2 Sep 7 16:40:02 ns382633 sshd\[18135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.231.121 user=root Sep 7 16:40:04 ns382633 sshd\[18135\]: Failed password for root from 118.89.231.121 port 46802 ssh2 Sep 7 16:44:49 ns382633 sshd\[19022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.231.121 user=root |
2020-09-08 02:00:43 |