City: unknown
Region: unknown
Country: Russian Federation
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.253.147.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57071
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;5.253.147.19. IN A
;; AUTHORITY SECTION:
. 463 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400
;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 02:15:58 CST 2022
;; MSG SIZE rcvd: 10519.147.253.5.in-addr.arpa domain name pointer wq73h8.g-service.ru.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
19.147.253.5.in-addr.arpa name = wq73h8.g-service.ru.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 49.235.139.125 | attackbots | Sep 28 18:14:03 srv00 sshd[3129]: fatal: Unable to negotiate whostnameh 49.235.139.125 port 60104: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 28 18:15:41 srv00 sshd[3137]: fatal: Unable to negotiate whostnameh 49.235.139.125 port 45488: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 28 18:16:38 srv00 sshd[3142]: fatal: Unable to negotiate whostnameh 49.235.139.125 port 59078: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 28 18:17:45 srv00 sshd[3145]: fatal: Unable to negotiate whostnameh 49.235.139.125 port 44442: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-gro........ ------------------------------ |
2019-09-29 07:42:51 |
| 151.56.14.148 | attackspam | firewall-block, port(s): 8888/tcp |
2019-09-29 07:35:18 |
| 47.88.168.75 | attack | Automatic report - Banned IP Access |
2019-09-29 07:11:20 |
| 185.175.93.104 | attack | 09/28/2019-23:57:09.490408 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-09-29 07:29:10 |
| 67.205.169.58 | attack | Lines containing failures of 67.205.169.58 Sep 26 20:38:44 mx-in-01 sshd[15403]: Did not receive identification string from 67.205.169.58 port 43290 Sep 26 20:40:13 mx-in-01 sshd[15548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.169.58 user=r.r Sep 26 20:40:15 mx-in-01 sshd[15548]: Failed password for r.r from 67.205.169.58 port 43784 ssh2 Sep 26 20:40:16 mx-in-01 sshd[15548]: Received disconnect from 67.205.169.58 port 43784:11: Normal Shutdown, Thank you for playing [preauth] Sep 26 20:40:16 mx-in-01 sshd[15548]: Disconnected from authenticating user r.r 67.205.169.58 port 43784 [preauth] Sep 26 20:41:27 mx-in-01 sshd[15585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.169.58 user=r.r Sep 26 20:41:29 mx-in-01 sshd[15585]: Failed password for r.r from 67.205.169.58 port 55636 ssh2 Sep 26 20:41:30 mx-in-01 sshd[15585]: Received disconnect from 67.205.169.58 port 5563........ ------------------------------ |
2019-09-29 07:09:52 |
| 123.207.140.248 | attackbotsspam | 2019-09-28T23:18:03.731519abusebot-8.cloudsearch.cf sshd\[17325\]: Invalid user Administrator from 123.207.140.248 port 32892 |
2019-09-29 07:38:03 |
| 134.119.221.7 | attackspambots | \[2019-09-28 19:09:40\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-28T19:09:40.200-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="181046812112982",SessionID="0x7f1e1c12be58",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/58649",ACLName="no_extension_match" \[2019-09-28 19:12:16\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-28T19:12:16.271-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="770076646812112982",SessionID="0x7f1e1c3de2d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/54205",ACLName="no_extension_match" \[2019-09-28 19:15:03\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-28T19:15:03.119-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9900146812112982",SessionID="0x7f1e1c204af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/60763",ACLName="no |
2019-09-29 07:29:29 |
| 106.13.32.56 | attackbotsspam | Sep 29 02:07:11 www sshd\[34805\]: Invalid user Administrator from 106.13.32.56Sep 29 02:07:13 www sshd\[34805\]: Failed password for invalid user Administrator from 106.13.32.56 port 52484 ssh2Sep 29 02:12:08 www sshd\[35018\]: Invalid user oleta from 106.13.32.56 ... |
2019-09-29 07:22:57 |
| 114.217.178.72 | attackspambots | Unauthorised access (Sep 28) SRC=114.217.178.72 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=4782 TCP DPT=8080 WINDOW=32028 SYN Unauthorised access (Sep 28) SRC=114.217.178.72 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=54120 TCP DPT=8080 WINDOW=8172 SYN Unauthorised access (Sep 27) SRC=114.217.178.72 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=1671 TCP DPT=8080 WINDOW=13589 SYN Unauthorised access (Sep 27) SRC=114.217.178.72 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=12535 TCP DPT=8080 WINDOW=55285 SYN Unauthorised access (Sep 26) SRC=114.217.178.72 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=44701 TCP DPT=8080 WINDOW=40883 SYN Unauthorised access (Sep 26) SRC=114.217.178.72 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=11531 TCP DPT=8080 WINDOW=55547 SYN Unauthorised access (Sep 26) SRC=114.217.178.72 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=41714 TCP DPT=8080 WINDOW=29321 SYN |
2019-09-29 07:01:43 |
| 171.25.193.77 | attackbots | Sep 28 22:50:39 rotator sshd\[21728\]: Invalid user aaron from 171.25.193.77Sep 28 22:50:40 rotator sshd\[21728\]: Failed password for invalid user aaron from 171.25.193.77 port 52900 ssh2Sep 28 22:50:43 rotator sshd\[21728\]: Failed password for invalid user aaron from 171.25.193.77 port 52900 ssh2Sep 28 22:50:45 rotator sshd\[21728\]: Failed password for invalid user aaron from 171.25.193.77 port 52900 ssh2Sep 28 22:50:48 rotator sshd\[21728\]: Failed password for invalid user aaron from 171.25.193.77 port 52900 ssh2Sep 28 22:50:51 rotator sshd\[21728\]: Failed password for invalid user aaron from 171.25.193.77 port 52900 ssh2 ... |
2019-09-29 07:01:28 |
| 34.67.85.179 | attack | 2019-09-28T22:59:57.877362abusebot-5.cloudsearch.cf sshd\[26543\]: Invalid user admin from 34.67.85.179 port 50866 |
2019-09-29 07:00:36 |
| 70.35.204.95 | attackspambots | Sep 29 02:45:05 areeb-Workstation sshd[4164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.35.204.95 Sep 29 02:45:07 areeb-Workstation sshd[4164]: Failed password for invalid user power from 70.35.204.95 port 41776 ssh2 ... |
2019-09-29 07:04:30 |
| 182.72.155.210 | attackspambots | Chat Spam |
2019-09-29 07:10:25 |
| 189.2.79.50 | attackbots | Sep 28 12:48:54 hiderm sshd\[27641\]: Invalid user Matrix from 189.2.79.50 Sep 28 12:48:54 hiderm sshd\[27641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.2.79.50 Sep 28 12:48:57 hiderm sshd\[27641\]: Failed password for invalid user Matrix from 189.2.79.50 port 61906 ssh2 Sep 28 12:54:03 hiderm sshd\[28007\]: Invalid user motion from 189.2.79.50 Sep 28 12:54:03 hiderm sshd\[28007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.2.79.50 |
2019-09-29 07:06:06 |
| 190.210.42.209 | attackspam | 2019-09-29T04:50:53.001236enmeeting.mahidol.ac.th sshd\[31148\]: Invalid user fedora from 190.210.42.209 port 58327 2019-09-29T04:50:53.019995enmeeting.mahidol.ac.th sshd\[31148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.42.209 2019-09-29T04:50:54.574526enmeeting.mahidol.ac.th sshd\[31148\]: Failed password for invalid user fedora from 190.210.42.209 port 58327 ssh2 ... |
2019-09-29 07:36:16 |