City: unknown
Region: unknown
Country: Korea (the Republic of)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.16.192.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42062
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.16.192.97. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 11:54:09 CST 2025
;; MSG SIZE rcvd: 105Host 97.192.16.42.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 97.192.16.42.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 142.93.15.179 | attack | Dec 13 23:01:01 microserver sshd[52656]: Invalid user shurtliff from 142.93.15.179 port 34112 Dec 13 23:01:01 microserver sshd[52656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.15.179 Dec 13 23:01:02 microserver sshd[52656]: Failed password for invalid user shurtliff from 142.93.15.179 port 34112 ssh2 Dec 13 23:06:26 microserver sshd[53531]: Invalid user ssh from 142.93.15.179 port 43246 Dec 13 23:06:26 microserver sshd[53531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.15.179 Dec 13 23:32:37 microserver sshd[57832]: Invalid user radis from 142.93.15.179 port 37484 Dec 13 23:32:37 microserver sshd[57832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.15.179 Dec 13 23:32:39 microserver sshd[57832]: Failed password for invalid user radis from 142.93.15.179 port 37484 ssh2 Dec 13 23:36:54 microserver sshd[58641]: Invalid user yoyo from 142.93.15.179 port 39848 |
2019-12-14 06:01:18 |
| 54.39.138.246 | attack | Dec 2 03:40:00 vtv3 sshd[26885]: Failed password for invalid user david from 54.39.138.246 port 42036 ssh2 Dec 2 03:45:25 vtv3 sshd[29913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.246 Dec 2 03:56:06 vtv3 sshd[2609]: Failed password for root from 54.39.138.246 port 50016 ssh2 Dec 2 04:01:31 vtv3 sshd[5015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.246 Dec 2 04:01:33 vtv3 sshd[5015]: Failed password for invalid user testing from 54.39.138.246 port 33846 ssh2 Dec 2 04:12:23 vtv3 sshd[10848]: Failed password for root from 54.39.138.246 port 57990 ssh2 Dec 2 04:17:54 vtv3 sshd[13307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.246 Dec 2 04:17:56 vtv3 sshd[13307]: Failed password for invalid user operator from 54.39.138.246 port 41842 ssh2 Dec 2 04:28:53 vtv3 sshd[18270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid= |
2019-12-14 06:20:01 |
| 195.154.108.203 | attackbots | SSH Brute Force, server-1 sshd[26990]: Failed password for root from 195.154.108.203 port 44976 ssh2 |
2019-12-14 06:11:20 |
| 113.140.20.234 | attackspam | Dec 14 00:51:30 debian-2gb-vpn-nbg1-1 kernel: [652266.306990] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=113.140.20.234 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=236 ID=47088 PROTO=TCP SPT=13237 DPT=3378 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-14 06:18:53 |
| 77.51.84.93 | attack | Illegal actions on webapp |
2019-12-14 06:19:41 |
| 134.209.12.162 | attackspam | --- report --- Dec 13 16:41:02 sshd: Connection from 134.209.12.162 port 44184 Dec 13 16:41:03 sshd: Invalid user friends from 134.209.12.162 Dec 13 16:41:03 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.12.162 Dec 13 16:41:05 sshd: Failed password for invalid user friends from 134.209.12.162 port 44184 ssh2 Dec 13 16:41:05 sshd: Received disconnect from 134.209.12.162: 11: Bye Bye [preauth] |
2019-12-14 06:11:44 |
| 106.12.74.141 | attackspambots | $f2bV_matches |
2019-12-14 06:02:10 |
| 113.175.247.149 | attackspam | Automatic report - XMLRPC Attack |
2019-12-14 06:26:46 |
| 80.82.65.74 | attack | 12/13/2019-22:32:27.531780 80.82.65.74 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-12-14 06:10:56 |
| 223.71.139.98 | attackspam | SSH Brute-Force reported by Fail2Ban |
2019-12-14 06:02:36 |
| 154.8.231.250 | attackbots | SSH bruteforce |
2019-12-14 06:00:11 |
| 94.191.122.149 | attackspambots | Dec 13 17:08:58 microserver sshd[61289]: Invalid user fourkas from 94.191.122.149 port 40464 Dec 13 17:08:58 microserver sshd[61289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.122.149 Dec 13 17:09:00 microserver sshd[61289]: Failed password for invalid user fourkas from 94.191.122.149 port 40464 ssh2 Dec 13 17:14:26 microserver sshd[62170]: Invalid user ftpuser from 94.191.122.149 port 50828 Dec 13 17:14:26 microserver sshd[62170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.122.149 Dec 13 17:25:14 microserver sshd[64148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.122.149 user=backup Dec 13 17:25:15 microserver sshd[64148]: Failed password for backup from 94.191.122.149 port 43320 ssh2 Dec 13 17:29:56 microserver sshd[64502]: Invalid user guest from 94.191.122.149 port 53678 Dec 13 17:29:56 microserver sshd[64502]: pam_unix(sshd:auth): authentication fai |
2019-12-14 06:12:02 |
| 77.70.96.195 | attackbotsspam | Dec 13 18:14:15 vps647732 sshd[29638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.70.96.195 Dec 13 18:14:17 vps647732 sshd[29638]: Failed password for invalid user smkim from 77.70.96.195 port 52328 ssh2 ... |
2019-12-14 06:23:57 |
| 134.209.5.43 | attackspam | 134.209.5.43 - - [13/Dec/2019:15:53:54 +0000] "POST /wp/wp-login.php HTTP/1.1" 200 6239 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.5.43 - - [13/Dec/2019:15:53:54 +0000] "POST /wp/xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-12-14 06:26:20 |
| 36.89.163.178 | attack | Dec 13 06:55:49 kapalua sshd\[17106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.163.178 user=root Dec 13 06:55:51 kapalua sshd\[17106\]: Failed password for root from 36.89.163.178 port 52559 ssh2 Dec 13 07:03:35 kapalua sshd\[17880\]: Invalid user squid from 36.89.163.178 Dec 13 07:03:35 kapalua sshd\[17880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.163.178 Dec 13 07:03:37 kapalua sshd\[17880\]: Failed password for invalid user squid from 36.89.163.178 port 56189 ssh2 |
2019-12-14 06:24:18 |