City: unknown
Region: unknown
Country: India
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.105.15.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63298
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.105.15.145. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020900 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 00:04:22 CST 2025
;; MSG SIZE rcvd: 106Host 145.15.105.42.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 145.15.105.42.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 54.38.82.14 | attackbotsspam | Aug 27 23:29:18 vps200512 sshd\[14668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 user=root Aug 27 23:29:20 vps200512 sshd\[14668\]: Failed password for root from 54.38.82.14 port 43911 ssh2 Aug 27 23:29:20 vps200512 sshd\[14670\]: Invalid user admin from 54.38.82.14 Aug 27 23:29:20 vps200512 sshd\[14670\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 Aug 27 23:29:22 vps200512 sshd\[14670\]: Failed password for invalid user admin from 54.38.82.14 port 37632 ssh2 |
2019-08-28 11:35:51 |
| 51.68.230.54 | attack | SSH scan :: |
2019-08-28 10:38:11 |
| 193.188.22.12 | attack | Aug 28 04:05:29 srv2 sshd\[12673\]: Invalid user test from 193.188.22.12 port 53377 Aug 28 04:05:29 srv2 sshd\[12675\]: Invalid user demo from 193.188.22.12 port 54104 Aug 28 04:05:30 srv2 sshd\[12677\]: Invalid user gast from 193.188.22.12 port 54217 |
2019-08-28 10:55:26 |
| 178.128.60.114 | attackspambots | WordPress brute force |
2019-08-28 11:21:26 |
| 18.130.64.226 | attackspambots | MYH,DEF GET /downloader/index.php |
2019-08-28 10:55:06 |
| 51.38.186.207 | attackbots | Aug 27 23:45:59 SilenceServices sshd[12360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.207 Aug 27 23:46:01 SilenceServices sshd[12360]: Failed password for invalid user tomcat from 51.38.186.207 port 58588 ssh2 Aug 27 23:50:01 SilenceServices sshd[13861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.207 |
2019-08-28 11:15:41 |
| 169.197.97.34 | attackspam | Aug 28 02:14:10 rotator sshd\[5510\]: Failed password for root from 169.197.97.34 port 50050 ssh2Aug 28 02:14:13 rotator sshd\[5510\]: Failed password for root from 169.197.97.34 port 50050 ssh2Aug 28 02:14:15 rotator sshd\[5510\]: Failed password for root from 169.197.97.34 port 50050 ssh2Aug 28 02:14:19 rotator sshd\[5510\]: Failed password for root from 169.197.97.34 port 50050 ssh2Aug 28 02:14:21 rotator sshd\[5510\]: Failed password for root from 169.197.97.34 port 50050 ssh2Aug 28 02:14:23 rotator sshd\[5510\]: Failed password for root from 169.197.97.34 port 50050 ssh2 ... |
2019-08-28 10:47:32 |
| 223.247.8.75 | attack | Aug 27 21:22:10 mxgate1 postfix/postscreen[11038]: CONNECT from [223.247.8.75]:64895 to [176.31.12.44]:25 Aug 27 21:22:10 mxgate1 postfix/dnsblog[11042]: addr 223.247.8.75 listed by domain zen.spamhaus.org as 127.0.0.11 Aug 27 21:22:10 mxgate1 postfix/dnsblog[11040]: addr 223.247.8.75 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 27 21:22:16 mxgate1 postfix/postscreen[11038]: DNSBL rank 3 for [223.247.8.75]:64895 Aug x@x Aug 27 21:22:17 mxgate1 postfix/postscreen[11038]: HANGUP after 0.9 from [223.247.8.75]:64895 in tests after SMTP handshake Aug 27 21:22:17 mxgate1 postfix/postscreen[11038]: DISCONNECT [223.247.8.75]:64895 Aug 27 21:22:17 mxgate1 postfix/postscreen[11038]: CONNECT from [223.247.8.75]:65145 to [176.31.12.44]:25 Aug 27 21:22:17 mxgate1 postfix/dnsblog[11042]: addr 223.247.8.75 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 27 21:22:17 mxgate1 postfix/dnsblog[11040]: addr 223.247.8.75 listed by domain zen.spamhaus.org as 127.0.0.11 ........ ------------------------------- |
2019-08-28 11:18:50 |
| 27.214.72.17 | attackspambots | " " |
2019-08-28 10:44:47 |
| 93.183.203.246 | attackspambots | 445/tcp 445/tcp 445/tcp... [2019-07-19/08-27]8pkt,1pt.(tcp) |
2019-08-28 11:32:05 |
| 115.159.108.113 | attack | [Aegis] @ 2019-08-27 20:27:23 0100 -> Web Application Attack: SERVER-WEBAPP PHP xmlrpc.php post attempt |
2019-08-28 11:02:30 |
| 218.92.0.145 | attack | Aug 28 03:19:49 km20725 sshd\[9966\]: Failed password for root from 218.92.0.145 port 64919 ssh2Aug 28 03:19:49 km20725 sshd\[9968\]: Failed password for root from 218.92.0.145 port 20844 ssh2Aug 28 03:19:52 km20725 sshd\[9966\]: Failed password for root from 218.92.0.145 port 64919 ssh2Aug 28 03:19:53 km20725 sshd\[9968\]: Failed password for root from 218.92.0.145 port 20844 ssh2 ... |
2019-08-28 10:40:31 |
| 164.132.38.167 | attackspambots | Invalid user kas from 164.132.38.167 port 33916 |
2019-08-28 10:37:19 |
| 51.79.141.132 | attackspambots | Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.79.141.132 |
2019-08-28 10:47:08 |
| 74.82.47.52 | attack | " " |
2019-08-28 10:37:36 |