City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.252.11.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14135
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.252.11.120. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400
;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 16:02:30 CST 2025
;; MSG SIZE rcvd: 106Host 120.11.252.42.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 120.11.252.42.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 62.173.149.58 | attackbotsspam | Nov 22 10:06:10 amit sshd\[27286\]: Invalid user torjussen from 62.173.149.58 Nov 22 10:06:10 amit sshd\[27286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.173.149.58 Nov 22 10:06:13 amit sshd\[27286\]: Failed password for invalid user torjussen from 62.173.149.58 port 48456 ssh2 ... |
2019-11-22 19:12:33 |
| 142.4.204.122 | attack | Nov 22 09:25:01 SilenceServices sshd[30333]: Failed password for root from 142.4.204.122 port 44761 ssh2 Nov 22 09:28:22 SilenceServices sshd[31262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.204.122 Nov 22 09:28:24 SilenceServices sshd[31262]: Failed password for invalid user ftp from 142.4.204.122 port 34134 ssh2 |
2019-11-22 19:04:58 |
| 118.25.103.132 | attackbotsspam | $f2bV_matches |
2019-11-22 18:52:30 |
| 119.29.2.157 | attack | frenzy |
2019-11-22 18:40:10 |
| 87.154.248.245 | attackbotsspam | Nov 22 09:08:14 mail postfix/smtpd[19305]: warning: p579AF8F5.dip0.t-ipconnect.de[87.154.248.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 22 09:11:53 mail postfix/smtpd[19289]: warning: p579AF8F5.dip0.t-ipconnect.de[87.154.248.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 22 09:16:16 mail postfix/smtpd[19040]: warning: p579AF8F5.dip0.t-ipconnect.de[87.154.248.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-22 18:38:23 |
| 202.79.163.153 | attackbots | *** Phishing website that camouflaged Japanese SNS LINE. https://www.dirske.com/ |
2019-11-22 19:13:49 |
| 146.158.28.108 | attack | Port 1433 Scan |
2019-11-22 19:09:02 |
| 23.239.97.178 | attackbots | Nov 22 07:15:52 mail postfix/smtpd[30683]: warning: unknown[23.239.97.178]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 22 07:15:57 mail postfix/smtpd[30344]: warning: unknown[23.239.97.178]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 22 07:23:25 mail postfix/smtpd[2042]: warning: unknown[23.239.97.178]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-22 18:38:52 |
| 46.161.27.122 | attackbots | Automatic report - Port Scan |
2019-11-22 19:03:32 |
| 165.227.9.184 | attackbotsspam | Nov 22 12:07:31 tux-35-217 sshd\[10838\]: Invalid user biedermann from 165.227.9.184 port 64778 Nov 22 12:07:31 tux-35-217 sshd\[10838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.9.184 Nov 22 12:07:33 tux-35-217 sshd\[10838\]: Failed password for invalid user biedermann from 165.227.9.184 port 64778 ssh2 Nov 22 12:11:30 tux-35-217 sshd\[10870\]: Invalid user ftp from 165.227.9.184 port 45473 Nov 22 12:11:30 tux-35-217 sshd\[10870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.9.184 ... |
2019-11-22 19:14:08 |
| 190.67.116.12 | attackbotsspam | Nov 22 10:33:13 MK-Soft-Root2 sshd[5830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.67.116.12 Nov 22 10:33:15 MK-Soft-Root2 sshd[5830]: Failed password for invalid user abc from 190.67.116.12 port 53518 ssh2 ... |
2019-11-22 18:58:27 |
| 159.89.205.153 | attackbotsspam | Automatic report - SSH Brute-Force Attack |
2019-11-22 19:11:34 |
| 94.191.47.204 | attack | Nov 22 06:18:04 vtv3 sshd[27620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.47.204 Nov 22 06:18:06 vtv3 sshd[27620]: Failed password for invalid user zd from 94.191.47.204 port 38008 ssh2 Nov 22 06:22:47 vtv3 sshd[29402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.47.204 Nov 22 06:36:12 vtv3 sshd[2313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.47.204 Nov 22 06:36:14 vtv3 sshd[2313]: Failed password for invalid user tttserver from 94.191.47.204 port 38502 ssh2 Nov 22 06:40:52 vtv3 sshd[4042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.47.204 Nov 22 06:54:25 vtv3 sshd[8774]: Failed password for root from 94.191.47.204 port 39010 ssh2 Nov 22 06:58:49 vtv3 sshd[10442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.47.204 Nov 22 06:58:51 vtv3 sshd[10442] |
2019-11-22 19:06:52 |
| 23.100.232.233 | attackspam | abuseConfidenceScore blocked for 12h |
2019-11-22 18:40:59 |
| 49.87.47.118 | attackbots | port scan and connect, tcp 23 (telnet) |
2019-11-22 18:46:08 |