City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 48.78.157.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53560
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;48.78.157.253. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 16:37:46 CST 2025
;; MSG SIZE rcvd: 106Host 253.157.78.48.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 253.157.78.48.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 204.236.84.176 | attackspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/204.236.84.176/ BS - 1H : (1) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BS NAME ASN : ASN8014 IP : 204.236.84.176 CIDR : 204.236.80.0/21 PREFIX COUNT : 23 UNIQUE IP COUNT : 44032 WYKRYTE ATAKI Z ASN8014 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-13 22:16:51 INFO : Port SERVER 80 Scan Detected and Blocked by ADMIN - data recovery |
2019-10-14 04:18:39 |
| 91.74.234.154 | attackspambots | Brute force SMTP login attempted. ... |
2019-10-14 04:29:21 |
| 61.8.75.5 | attack | Oct 13 22:12:28 DAAP sshd[25410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.8.75.5 user=root Oct 13 22:12:31 DAAP sshd[25410]: Failed password for root from 61.8.75.5 port 36598 ssh2 Oct 13 22:16:46 DAAP sshd[25465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.8.75.5 user=root Oct 13 22:16:48 DAAP sshd[25465]: Failed password for root from 61.8.75.5 port 46656 ssh2 ... |
2019-10-14 04:23:58 |
| 45.115.99.38 | attackspam | SSH invalid-user multiple login attempts |
2019-10-14 04:29:00 |
| 213.251.35.49 | attackbots | Automatic report - Banned IP Access |
2019-10-14 04:24:29 |
| 130.61.88.249 | attack | Oct 13 20:37:00 venus sshd\[20512\]: Invalid user Bitter@123 from 130.61.88.249 port 63124 Oct 13 20:37:00 venus sshd\[20512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.88.249 Oct 13 20:37:02 venus sshd\[20512\]: Failed password for invalid user Bitter@123 from 130.61.88.249 port 63124 ssh2 ... |
2019-10-14 04:50:26 |
| 168.232.8.9 | attackspambots | Mar 9 03:50:55 dillonfme sshd\[11930\]: Invalid user guyoef5 from 168.232.8.9 port 53540 Mar 9 03:50:55 dillonfme sshd\[11930\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.8.9 Mar 9 03:50:57 dillonfme sshd\[11930\]: Failed password for invalid user guyoef5 from 168.232.8.9 port 53540 ssh2 Mar 9 03:59:53 dillonfme sshd\[12107\]: Invalid user testftp from 168.232.8.9 port 44684 Mar 9 03:59:53 dillonfme sshd\[12107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.8.9 ... |
2019-10-14 04:34:15 |
| 36.66.69.33 | attackbots | Automatic report - Banned IP Access |
2019-10-14 04:26:23 |
| 5.188.211.16 | attack | [SunOct1321:27:08.2312562019][:error][pid27856:tid139812017665792][client5.188.211.16:34966][client5.188.211.16]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\|WormlyBot\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"395"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"www.guidamania.ch"][uri"/guidamania/index.php/ct-menu-item-5/venue/1-guidamania-sagl"][unique_id"XaN6jB72ZaIUUd6NKJYVogAAAEM"][SunOct1322:16:25.4288222019][:error][pid2401:tid139811901921024][client5.188.211.16:33530][client5.188.211.16]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\|WormlyBot\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"395"][id"397989"][rev" |
2019-10-14 04:40:51 |
| 149.202.214.11 | attack | Oct 13 10:27:19 sachi sshd\[10859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3070189.ip-149-202-214.eu user=root Oct 13 10:27:21 sachi sshd\[10859\]: Failed password for root from 149.202.214.11 port 35024 ssh2 Oct 13 10:30:57 sachi sshd\[11153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3070189.ip-149-202-214.eu user=root Oct 13 10:31:00 sachi sshd\[11153\]: Failed password for root from 149.202.214.11 port 46100 ssh2 Oct 13 10:34:42 sachi sshd\[11433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3070189.ip-149-202-214.eu user=root |
2019-10-14 04:42:33 |
| 168.232.49.167 | attackspambots | Feb 17 21:21:17 dillonfme sshd\[17232\]: Invalid user nobody4 from 168.232.49.167 port 38952 Feb 17 21:21:17 dillonfme sshd\[17232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.49.167 Feb 17 21:21:18 dillonfme sshd\[17232\]: Failed password for invalid user nobody4 from 168.232.49.167 port 38952 ssh2 Feb 17 21:26:38 dillonfme sshd\[17561\]: Invalid user git from 168.232.49.167 port 58284 Feb 17 21:26:38 dillonfme sshd\[17561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.49.167 ... |
2019-10-14 04:38:34 |
| 218.95.182.148 | attackbotsspam | Oct 13 10:30:56 hanapaa sshd\[6954\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.95.182.148 user=root Oct 13 10:30:58 hanapaa sshd\[6954\]: Failed password for root from 218.95.182.148 port 57700 ssh2 Oct 13 10:35:56 hanapaa sshd\[7335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.95.182.148 user=root Oct 13 10:35:58 hanapaa sshd\[7335\]: Failed password for root from 218.95.182.148 port 37714 ssh2 Oct 13 10:40:51 hanapaa sshd\[7813\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.95.182.148 user=root |
2019-10-14 04:46:51 |
| 168.181.51.105 | attackbotsspam | Feb 27 05:31:35 dillonfme sshd\[7832\]: Invalid user sdtdserver from 168.181.51.105 port 31220 Feb 27 05:31:35 dillonfme sshd\[7832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.181.51.105 Feb 27 05:31:38 dillonfme sshd\[7832\]: Failed password for invalid user sdtdserver from 168.181.51.105 port 31220 ssh2 Feb 27 05:34:02 dillonfme sshd\[7883\]: Invalid user kj from 168.181.51.105 port 58233 Feb 27 05:34:02 dillonfme sshd\[7883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.181.51.105 ... |
2019-10-14 04:56:14 |
| 168.227.99.10 | attackspambots | Apr 16 14:43:36 yesfletchmain sshd\[9975\]: Invalid user loverd from 168.227.99.10 port 42994 Apr 16 14:43:36 yesfletchmain sshd\[9975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.227.99.10 Apr 16 14:43:38 yesfletchmain sshd\[9975\]: Failed password for invalid user loverd from 168.227.99.10 port 42994 ssh2 Apr 16 14:47:07 yesfletchmain sshd\[10247\]: Invalid user hong from 168.227.99.10 port 41580 Apr 16 14:47:07 yesfletchmain sshd\[10247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.227.99.10 ... |
2019-10-14 04:43:42 |
| 51.38.232.93 | attackspambots | Oct 13 22:08:21 apollo sshd\[7750\]: Failed password for root from 51.38.232.93 port 47452 ssh2Oct 13 22:24:58 apollo sshd\[7840\]: Failed password for root from 51.38.232.93 port 42604 ssh2Oct 13 22:28:22 apollo sshd\[7852\]: Failed password for root from 51.38.232.93 port 53088 ssh2 ... |
2019-10-14 04:36:20 |