City: unknown
Region: unknown
Country: Korea (the Republic of)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.142.167.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;49.142.167.56. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022400 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 19:36:24 CST 2025
;; MSG SIZE rcvd: 106Host 56.167.142.49.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 56.167.142.49.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 156.96.155.246 | attackspam | Nov 2 17:09:34 tor-proxy-02 sshd\[28381\]: User root from 156.96.155.246 not allowed because not listed in AllowUsers Nov 2 17:09:35 tor-proxy-02 sshd\[28383\]: User root from 156.96.155.246 not allowed because not listed in AllowUsers Nov 2 17:09:39 tor-proxy-02 sshd\[28387\]: Invalid user admin from 156.96.155.246 port 2008 ... |
2019-11-03 00:41:31 |
| 80.82.64.214 | attackbots | Auto reported by IDS |
2019-11-03 00:40:23 |
| 139.99.37.130 | attackspambots | Nov 2 17:13:22 [host] sshd[27934]: Invalid user danb from 139.99.37.130 Nov 2 17:13:22 [host] sshd[27934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Nov 2 17:13:24 [host] sshd[27934]: Failed password for invalid user danb from 139.99.37.130 port 40456 ssh2 |
2019-11-03 00:32:27 |
| 106.12.34.226 | attack | Nov 2 14:10:50 legacy sshd[24758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.34.226 Nov 2 14:10:51 legacy sshd[24758]: Failed password for invalid user bwadmin from 106.12.34.226 port 48776 ssh2 Nov 2 14:17:47 legacy sshd[24922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.34.226 ... |
2019-11-03 00:49:57 |
| 185.156.73.21 | attack | ET DROP Dshield Block Listed Source group 1 - port: 50255 proto: TCP cat: Misc Attack |
2019-11-03 00:58:40 |
| 106.14.105.201 | attackspambots | PostgreSQL port 5432 |
2019-11-03 00:20:46 |
| 222.186.173.215 | attackspam | Nov 2 17:44:53 SilenceServices sshd[6605]: Failed password for root from 222.186.173.215 port 39578 ssh2 Nov 2 17:44:57 SilenceServices sshd[6605]: Failed password for root from 222.186.173.215 port 39578 ssh2 Nov 2 17:45:01 SilenceServices sshd[6605]: Failed password for root from 222.186.173.215 port 39578 ssh2 Nov 2 17:45:05 SilenceServices sshd[6605]: Failed password for root from 222.186.173.215 port 39578 ssh2 |
2019-11-03 01:00:52 |
| 45.141.84.50 | attackbots | Nov 2 15:14:14 h2177944 kernel: \[5579749.715947\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.50 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=41428 PROTO=TCP SPT=57773 DPT=21303 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 2 15:16:23 h2177944 kernel: \[5579878.315867\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.50 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11946 PROTO=TCP SPT=57773 DPT=22689 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 2 15:18:54 h2177944 kernel: \[5580029.637046\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.50 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34537 PROTO=TCP SPT=57773 DPT=22434 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 2 15:20:32 h2177944 kernel: \[5580128.179273\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.50 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=18502 PROTO=TCP SPT=57773 DPT=22871 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 2 15:29:37 h2177944 kernel: \[5580672.752785\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.50 DST=85.214.117.9 |
2019-11-03 01:01:14 |
| 165.227.122.251 | attackspambots | 2019-11-02T16:00:51.197157abusebot-5.cloudsearch.cf sshd\[25609\]: Invalid user da from 165.227.122.251 port 54306 |
2019-11-03 00:53:16 |
| 106.54.219.94 | attackbots | $f2bV_matches |
2019-11-03 00:26:25 |
| 183.131.22.206 | attackspambots | $f2bV_matches |
2019-11-03 00:55:18 |
| 51.77.140.111 | attack | Nov 2 14:08:38 SilenceServices sshd[14793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.111 Nov 2 14:08:40 SilenceServices sshd[14793]: Failed password for invalid user user from 51.77.140.111 port 39858 ssh2 Nov 2 14:12:25 SilenceServices sshd[17349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.111 |
2019-11-03 00:59:47 |
| 175.101.19.186 | attackspambots | Unauthorised access (Nov 2) SRC=175.101.19.186 LEN=44 TTL=244 ID=62448 TCP DPT=445 WINDOW=1024 SYN |
2019-11-03 00:54:26 |
| 45.55.12.248 | attackbotsspam | Invalid user support from 45.55.12.248 port 58998 |
2019-11-03 00:33:31 |
| 43.255.154.41 | attackbots | bulk spam - http://grouplabor.co.in |
2019-11-03 00:44:48 |