City: Dallas
Region: Texas
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 4.42.48.115
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57548
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;4.42.48.115. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025031002 1800 900 604800 86400
;; Query time: 216 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 11 09:11:43 CST 2025
;; MSG SIZE rcvd: 104
Host 115.48.42.4.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 115.48.42.4.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 112.90.197.66 | attackbots | 6379/tcp 6381/tcp 6380/tcp... [2020-01-27/02-05]84pkt,4pt.(tcp) |
2020-02-05 22:59:02 |
| 89.248.168.62 | attackbots | Feb 5 15:01:42 h2177944 kernel: \[4109395.681878\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.62 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=59436 PROTO=TCP SPT=58143 DPT=4444 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 5 15:01:42 h2177944 kernel: \[4109395.681891\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.62 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=59436 PROTO=TCP SPT=58143 DPT=4444 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 5 15:10:50 h2177944 kernel: \[4109944.107812\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.62 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=46137 PROTO=TCP SPT=58143 DPT=24000 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 5 15:45:13 h2177944 kernel: \[4112006.311717\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.62 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=18465 PROTO=TCP SPT=58143 DPT=29000 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 5 15:45:13 h2177944 kernel: \[4112006.311732\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.62 DST=85.214.117 |
2020-02-05 22:48:37 |
| 193.33.38.234 | attack | Wed Feb 5 06:49:09 2020 - Child process 44438 handling connection Wed Feb 5 06:49:09 2020 - New connection from: 193.33.38.234:42141 Wed Feb 5 06:49:09 2020 - Sending data to client: [Login: ] Wed Feb 5 06:49:40 2020 - Child aborting Wed Feb 5 06:49:40 2020 - Reporting IP address: 193.33.38.234 - mflag: 0 |
2020-02-05 22:47:26 |
| 222.186.30.57 | attackspambots | Feb 5 04:49:22 wbs sshd\[31948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Feb 5 04:49:24 wbs sshd\[31948\]: Failed password for root from 222.186.30.57 port 12347 ssh2 Feb 5 04:49:27 wbs sshd\[31948\]: Failed password for root from 222.186.30.57 port 12347 ssh2 Feb 5 04:59:06 wbs sshd\[32684\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Feb 5 04:59:08 wbs sshd\[32684\]: Failed password for root from 222.186.30.57 port 11944 ssh2 |
2020-02-05 23:02:08 |
| 35.234.62.4 | attackbotsspam | Feb 5 14:37:27 game-panel sshd[24866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.234.62.4 Feb 5 14:37:29 game-panel sshd[24866]: Failed password for invalid user lab from 35.234.62.4 port 25232 ssh2 Feb 5 14:39:36 game-panel sshd[25048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.234.62.4 |
2020-02-05 22:56:34 |
| 148.253.169.186 | attackbots | 2020-02-05T16:07:00.755808 sshd[2519]: Invalid user backups from 148.253.169.186 port 33526 2020-02-05T16:07:00.771215 sshd[2519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.253.169.186 2020-02-05T16:07:00.755808 sshd[2519]: Invalid user backups from 148.253.169.186 port 33526 2020-02-05T16:07:02.863755 sshd[2519]: Failed password for invalid user backups from 148.253.169.186 port 33526 ssh2 2020-02-05T16:09:55.794059 sshd[2599]: Invalid user wilson from 148.253.169.186 port 32806 ... |
2020-02-05 23:34:35 |
| 123.207.167.233 | attack | Feb 5 04:57:46 sachi sshd\[12935\]: Invalid user sonya from 123.207.167.233 Feb 5 04:57:46 sachi sshd\[12935\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.167.233 Feb 5 04:57:48 sachi sshd\[12935\]: Failed password for invalid user sonya from 123.207.167.233 port 43664 ssh2 Feb 5 05:02:10 sachi sshd\[13332\]: Invalid user shonta from 123.207.167.233 Feb 5 05:02:10 sachi sshd\[13332\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.167.233 |
2020-02-05 23:18:14 |
| 222.186.42.136 | attackspam | Feb 5 15:58:16 MK-Soft-VM8 sshd[13796]: Failed password for root from 222.186.42.136 port 19045 ssh2 Feb 5 15:58:20 MK-Soft-VM8 sshd[13796]: Failed password for root from 222.186.42.136 port 19045 ssh2 ... |
2020-02-05 23:14:23 |
| 188.242.86.43 | attackbots | 2020-02-05T13:49:06.604188abusebot-3.cloudsearch.cf sshd[15877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.242.86.43 user=root 2020-02-05T13:49:08.371285abusebot-3.cloudsearch.cf sshd[15877]: Failed password for root from 188.242.86.43 port 57746 ssh2 2020-02-05T13:49:12.234866abusebot-3.cloudsearch.cf sshd[15877]: Failed password for root from 188.242.86.43 port 57746 ssh2 2020-02-05T13:49:06.604188abusebot-3.cloudsearch.cf sshd[15877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.242.86.43 user=root 2020-02-05T13:49:08.371285abusebot-3.cloudsearch.cf sshd[15877]: Failed password for root from 188.242.86.43 port 57746 ssh2 2020-02-05T13:49:12.234866abusebot-3.cloudsearch.cf sshd[15877]: Failed password for root from 188.242.86.43 port 57746 ssh2 2020-02-05T13:49:06.604188abusebot-3.cloudsearch.cf sshd[15877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruse ... |
2020-02-05 22:49:48 |
| 175.196.4.221 | attackspam | [portscan] Port scan |
2020-02-05 23:17:14 |
| 110.35.79.23 | attack | Feb 5 16:05:27 legacy sshd[28787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.79.23 Feb 5 16:05:29 legacy sshd[28787]: Failed password for invalid user mongodb from 110.35.79.23 port 57540 ssh2 Feb 5 16:09:17 legacy sshd[29122]: Failed password for root from 110.35.79.23 port 44001 ssh2 ... |
2020-02-05 23:24:44 |
| 222.186.180.130 | attackspambots | Feb 5 14:59:06 localhost sshd\[78916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root Feb 5 14:59:08 localhost sshd\[78916\]: Failed password for root from 222.186.180.130 port 20706 ssh2 Feb 5 14:59:10 localhost sshd\[78916\]: Failed password for root from 222.186.180.130 port 20706 ssh2 Feb 5 14:59:12 localhost sshd\[78916\]: Failed password for root from 222.186.180.130 port 20706 ssh2 Feb 5 15:05:50 localhost sshd\[78978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root ... |
2020-02-05 23:09:50 |
| 129.213.107.56 | attackbotsspam | Feb 5 05:04:59 hpm sshd\[22808\]: Invalid user hamada from 129.213.107.56 Feb 5 05:04:59 hpm sshd\[22808\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.107.56 Feb 5 05:05:00 hpm sshd\[22808\]: Failed password for invalid user hamada from 129.213.107.56 port 40136 ssh2 Feb 5 05:08:13 hpm sshd\[23207\]: Invalid user hxeadm from 129.213.107.56 Feb 5 05:08:13 hpm sshd\[23207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.107.56 |
2020-02-05 23:13:15 |
| 88.214.26.102 | attackbotsspam | 02/05/2020-08:48:48.963486 88.214.26.102 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-02-05 23:21:26 |
| 177.39.218.144 | attackspam | Feb 5 14:44:34 silence02 sshd[5044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.39.218.144 Feb 5 14:44:36 silence02 sshd[5044]: Failed password for invalid user inf627 from 177.39.218.144 port 34141 ssh2 Feb 5 14:49:11 silence02 sshd[5438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.39.218.144 |
2020-02-05 22:53:37 |