City: Singapore
Region: unknown
Country: Singapore
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.0.94.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5622
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;3.0.94.138. IN A
;; AUTHORITY SECTION:
. 593 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024040402 1800 900 604800 86400
;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 05 07:33:03 CST 2024
;; MSG SIZE rcvd: 103
138.94.0.3.in-addr.arpa domain name pointer ec2-3-0-94-138.ap-southeast-1.compute.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
138.94.0.3.in-addr.arpa name = ec2-3-0-94-138.ap-southeast-1.compute.amazonaws.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 61.218.32.14 | attack | 445/tcp [2019-10-26]1pkt |
2019-10-26 16:49:19 |
| 112.112.50.17 | attackbotsspam | 23/tcp [2019-10-26]1pkt |
2019-10-26 16:26:26 |
| 191.185.9.95 | attackbots | Automatic report - Banned IP Access |
2019-10-26 16:41:54 |
| 193.70.36.161 | attackspam | Oct 25 19:15:37 web1 sshd\[7737\]: Invalid user ccapp from 193.70.36.161 Oct 25 19:15:37 web1 sshd\[7737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.36.161 Oct 25 19:15:40 web1 sshd\[7737\]: Failed password for invalid user ccapp from 193.70.36.161 port 37587 ssh2 Oct 25 19:19:49 web1 sshd\[8080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.36.161 user=root Oct 25 19:19:51 web1 sshd\[8080\]: Failed password for root from 193.70.36.161 port 56780 ssh2 |
2019-10-26 16:35:26 |
| 178.62.64.53 | attackbots | port scan and connect, tcp 23 (telnet) |
2019-10-26 16:58:23 |
| 92.53.69.6 | attackbotsspam | Invalid user wasadrc from 92.53.69.6 port 34994 |
2019-10-26 16:33:55 |
| 115.84.88.205 | attackbotsspam | 445/tcp [2019-10-26]1pkt |
2019-10-26 16:30:40 |
| 45.136.109.95 | attackspam | Oct 26 10:23:56 h2177944 kernel: \[4954045.665665\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.95 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=58324 PROTO=TCP SPT=42528 DPT=3329 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 10:33:33 h2177944 kernel: \[4954622.658535\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.95 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=39203 PROTO=TCP SPT=42528 DPT=3345 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 10:44:47 h2177944 kernel: \[4955296.719221\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.95 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=43159 PROTO=TCP SPT=42528 DPT=3353 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 10:47:06 h2177944 kernel: \[4955435.641656\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.95 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=36146 PROTO=TCP SPT=42528 DPT=3354 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 10:59:59 h2177944 kernel: \[4956208.333384\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.95 DST=85.214.117.9 |
2019-10-26 17:00:54 |
| 49.147.151.14 | attackspam | 445/tcp [2019-10-26]1pkt |
2019-10-26 17:00:27 |
| 27.199.86.52 | attackspambots | Telnet/23 MH Probe, BF, Hack - |
2019-10-26 16:43:12 |
| 118.25.196.31 | attack | Oct 22 12:08:05 xb0 sshd[26792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.196.31 user=r.r Oct 22 12:08:08 xb0 sshd[26792]: Failed password for r.r from 118.25.196.31 port 36940 ssh2 Oct 22 12:08:08 xb0 sshd[26792]: Received disconnect from 118.25.196.31: 11: Bye Bye [preauth] Oct 22 12:13:45 xb0 sshd[30800]: Failed password for invalid user m from 118.25.196.31 port 48372 ssh2 Oct 22 12:13:45 xb0 sshd[30800]: Received disconnect from 118.25.196.31: 11: Bye Bye [preauth] Oct 22 12:18:00 xb0 sshd[29372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.196.31 user=r.r Oct 22 12:18:02 xb0 sshd[29372]: Failed password for r.r from 118.25.196.31 port 56020 ssh2 Oct 22 12:18:02 xb0 sshd[29372]: Received disconnect from 118.25.196.31: 11: Bye Bye [preauth] Oct 22 12:21:38 xb0 sshd[27743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1........ ------------------------------- |
2019-10-26 16:54:33 |
| 218.94.136.90 | attackspambots | Oct 26 09:38:36 dev0-dcde-rnet sshd[8119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.136.90 Oct 26 09:38:38 dev0-dcde-rnet sshd[8119]: Failed password for invalid user admin from 218.94.136.90 port 1345 ssh2 Oct 26 09:42:59 dev0-dcde-rnet sshd[8126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.136.90 |
2019-10-26 16:21:15 |
| 124.204.45.66 | attackspambots | 1433/tcp 1433/tcp 1433/tcp... [2019-10-16/26]4pkt,1pt.(tcp) |
2019-10-26 16:46:26 |
| 106.51.73.204 | attackspam | Oct 26 06:35:42 server sshd\[28476\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.73.204 user=root Oct 26 06:35:44 server sshd\[28476\]: Failed password for root from 106.51.73.204 port 35880 ssh2 Oct 26 06:43:18 server sshd\[29870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.73.204 user=root Oct 26 06:43:20 server sshd\[29870\]: Failed password for root from 106.51.73.204 port 22713 ssh2 Oct 26 06:47:34 server sshd\[30820\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.73.204 user=root ... |
2019-10-26 16:59:08 |
| 103.245.198.101 | attack | 445/tcp [2019-10-26]1pkt |
2019-10-26 16:35:11 |