City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 48.169.79.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45753
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;48.169.79.252. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021102 1800 900 604800 86400
;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 10:39:02 CST 2025
;; MSG SIZE rcvd: 106Host 252.79.169.48.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 252.79.169.48.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.13.184.7 | attack | 2020-04-30T05:30:37.619574suse-nuc sshd[22284]: Invalid user xavier from 106.13.184.7 port 44782 ... |
2020-04-30 21:23:50 |
| 196.203.89.118 | attack | 1588249658 - 04/30/2020 14:27:38 Host: 196.203.89.118/196.203.89.118 Port: 445 TCP Blocked |
2020-04-30 21:30:11 |
| 222.186.175.154 | attackspam | Apr 30 15:17:04 markkoudstaal sshd[30809]: Failed password for root from 222.186.175.154 port 48784 ssh2 Apr 30 15:17:08 markkoudstaal sshd[30809]: Failed password for root from 222.186.175.154 port 48784 ssh2 Apr 30 15:17:10 markkoudstaal sshd[30809]: Failed password for root from 222.186.175.154 port 48784 ssh2 Apr 30 15:17:14 markkoudstaal sshd[30809]: Failed password for root from 222.186.175.154 port 48784 ssh2 |
2020-04-30 21:22:57 |
| 194.1.168.36 | attackbots | SSH Brute-Force Attack |
2020-04-30 21:43:58 |
| 13.125.244.105 | attackbots | Lines containing failures of 13.125.244.105 Apr 29 12:04:21 newdogma sshd[4376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.125.244.105 user=r.r Apr 29 12:04:23 newdogma sshd[4376]: Failed password for r.r from 13.125.244.105 port 54542 ssh2 Apr 29 12:04:24 newdogma sshd[4376]: Received disconnect from 13.125.244.105 port 54542:11: Bye Bye [preauth] Apr 29 12:04:24 newdogma sshd[4376]: Disconnected from authenticating user r.r 13.125.244.105 port 54542 [preauth] Apr 29 12:15:55 newdogma sshd[4584]: Invalid user ghostnamelab from 13.125.244.105 port 44654 Apr 29 12:15:55 newdogma sshd[4584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.125.244.105 Apr 29 12:15:58 newdogma sshd[4584]: Failed password for invalid user ghostnamelab from 13.125.244.105 port 44654 ssh2 Apr 29 12:15:59 newdogma sshd[4584]: Received disconnect from 13.125.244.105 port 44654:11: Bye Bye [preauth] Apr 2........ ------------------------------ |
2020-04-30 21:49:31 |
| 196.219.129.175 | attackspam | Honeypot attack, port: 445, PTR: host-196.219.129.175-static.tedata.net. |
2020-04-30 21:28:47 |
| 180.180.138.190 | attackbots | Honeypot attack, port: 5555, PTR: node-rem.pool-180-180.dynamic.totinternet.net. |
2020-04-30 21:39:58 |
| 195.54.167.15 | attack | Apr 30 14:52:37 debian-2gb-nbg1-2 kernel: \[10510074.722996\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.15 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=47656 PROTO=TCP SPT=58910 DPT=18123 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-30 21:36:21 |
| 217.114.157.17 | attack | Honeypot attack, port: 445, PTR: host217-114-157-17.pppoe.mark-itt.net. |
2020-04-30 21:35:11 |
| 106.51.78.18 | attackspam | Apr 30 10:27:32 firewall sshd[27995]: Invalid user saurabh from 106.51.78.18 Apr 30 10:27:34 firewall sshd[27995]: Failed password for invalid user saurabh from 106.51.78.18 port 41626 ssh2 Apr 30 10:31:44 firewall sshd[28091]: Invalid user lobo from 106.51.78.18 ... |
2020-04-30 21:59:36 |
| 46.17.46.138 | attackbots | firewall-block, port(s): 1080/tcp |
2020-04-30 21:19:10 |
| 51.158.65.150 | attackspam | Apr 30 15:23:46 ns382633 sshd\[26552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.65.150 user=root Apr 30 15:23:48 ns382633 sshd\[26552\]: Failed password for root from 51.158.65.150 port 44672 ssh2 Apr 30 15:29:21 ns382633 sshd\[27526\]: Invalid user moon from 51.158.65.150 port 48784 Apr 30 15:29:21 ns382633 sshd\[27526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.65.150 Apr 30 15:29:23 ns382633 sshd\[27526\]: Failed password for invalid user moon from 51.158.65.150 port 48784 ssh2 |
2020-04-30 21:32:53 |
| 145.239.88.43 | attackspambots | Apr 30 14:40:10 legacy sshd[25903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.88.43 Apr 30 14:40:12 legacy sshd[25903]: Failed password for invalid user reading from 145.239.88.43 port 43942 ssh2 Apr 30 14:44:27 legacy sshd[26037]: Failed password for root from 145.239.88.43 port 55652 ssh2 ... |
2020-04-30 21:34:16 |
| 61.8.71.20 | attackspambots | Honeypot attack, port: 445, PTR: PTR record not found |
2020-04-30 21:46:32 |
| 185.176.27.30 | attackspam | scans 17 times in preceeding hours on the ports (in chronological order) 33486 33488 33488 33487 33581 33580 33582 33691 33690 33689 33783 33784 33785 33798 33800 33799 33892 resulting in total of 77 scans from 185.176.27.0/24 block. |
2020-04-30 21:37:44 |