City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 29.116.23.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48582
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;29.116.23.129. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012100 1800 900 604800 86400
;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 21 18:19:50 CST 2025
;; MSG SIZE rcvd: 106Host 129.23.116.29.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 129.23.116.29.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.12.198.137 | attack | 2019-06-30T16:03:39.171317scmdmz1 sshd\[8952\]: Invalid user tex from 106.12.198.137 port 40046 2019-06-30T16:03:39.174681scmdmz1 sshd\[8952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.198.137 2019-06-30T16:03:41.113213scmdmz1 sshd\[8952\]: Failed password for invalid user tex from 106.12.198.137 port 40046 ssh2 ... |
2019-07-01 02:00:59 |
| 107.170.113.190 | attack | Jun 30 16:22:33 icinga sshd[12170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.113.190 Jun 30 16:22:36 icinga sshd[12170]: Failed password for invalid user openerp from 107.170.113.190 port 36196 ssh2 ... |
2019-07-01 01:50:43 |
| 148.101.85.194 | attackspambots | Jun 30 16:04:29 XXX sshd[45675]: Invalid user passpos1 from 148.101.85.194 port 53556 |
2019-07-01 01:43:28 |
| 189.91.3.128 | attackbots | failed_logins |
2019-07-01 01:30:58 |
| 157.55.39.144 | attack | MSN bingbot, exploited, IP: 157.55.39.144 Hostname: msnbot-157-55-39-144.search.msn.com Human/Bot: Bot Browser: undefined Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) |
2019-07-01 01:25:36 |
| 125.27.12.20 | attackspambots | Jun 30 19:33:00 dedicated sshd[3071]: Invalid user andy from 125.27.12.20 port 36520 |
2019-07-01 01:33:03 |
| 54.36.221.51 | attackbots | Hit on /wp-login.php |
2019-07-01 01:53:50 |
| 139.59.34.17 | attack | Jun 30 16:40:39 XXX sshd[46191]: Invalid user ubuntu from 139.59.34.17 port 42670 |
2019-07-01 01:59:10 |
| 163.204.246.6 | attack | 2019-06-30 15:11:04 H=(localhost.localdomain) [163.204.246.6] F= |
2019-07-01 01:20:38 |
| 134.73.161.177 | attackspambots | Jun 30 15:08:37 mail1 sshd[18323]: Invalid user ftp from 134.73.161.177 port 54738 Jun 30 15:08:37 mail1 sshd[18323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.161.177 Jun 30 15:08:39 mail1 sshd[18323]: Failed password for invalid user ftp from 134.73.161.177 port 54738 ssh2 Jun 30 15:08:39 mail1 sshd[18323]: Received disconnect from 134.73.161.177 port 54738:11: Bye Bye [preauth] Jun 30 15:08:39 mail1 sshd[18323]: Disconnected from 134.73.161.177 port 54738 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.73.161.177 |
2019-07-01 01:16:56 |
| 171.61.144.58 | attackbots | Jun 30 06:11:38 host sshd[22487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.61.144.58 user=r.r Jun 30 06:11:40 host sshd[22487]: Failed password for r.r from 171.61.144.58 port 56995 ssh2 Jun 30 06:11:42 host sshd[22487]: Failed password for r.r from 171.61.144.58 port 56995 ssh2 Jun 30 06:11:44 host sshd[22487]: Failed password for r.r from 171.61.144.58 port 56995 ssh2 Jun 30 06:11:44 host sshd[22487]: error: maximum authentication attempts exceeded for r.r from 171.61.144.58 port 56995 ssh2 [preauth] Jun 30 06:11:44 host sshd[22487]: PAM 2 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.61.144.58 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=171.61.144.58 |
2019-07-01 01:18:51 |
| 188.31.182.3 | attack | GSTATIC.COM hacking due to the illegal networks installed/already been recorded prior to nulling the terminal/if config command identified the networks/complimented the wifi monitor data/ip data not hacked/black text/any purple/green/blue font on Google/Bing etc/likely 123 Mac Hackers/check web inspector/alot of data in there -fonts.gstatic.com hacking Mac hackers set up /majority are male/including daytime wanderers known /duplicated other peoples websites with wrap over the header and footer replacing contact us with their hyphen version contact-us/any blue fonts etc are hackers at work -more controlling where you buy from/set up suppliers related to them. |
2019-07-01 01:39:36 |
| 188.166.1.123 | attackbotsspam | Jun 30 15:33:11 *** sshd[13261]: User root from 188.166.1.123 not allowed because not listed in AllowUsers |
2019-07-01 01:58:28 |
| 27.199.121.142 | attackspambots | TCP port 23 (Telnet) attempt blocked by firewall. [2019-06-30 15:20:55] |
2019-07-01 01:39:17 |
| 191.53.221.77 | attackbots | Jun 30 09:22:02 web1 postfix/smtpd[24162]: warning: unknown[191.53.221.77]: SASL PLAIN authentication failed: authentication failure ... |
2019-07-01 01:22:33 |