City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 53.2.196.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14722
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;53.2.196.211. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 13:45:23 CST 2025
;; MSG SIZE rcvd: 105Host 211.196.2.53.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 211.196.2.53.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 190.152.208.250 | attack | WordPress wp-login brute force :: 190.152.208.250 0.608 BYPASS [06/Aug/2019:11:28:08 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-08-06 15:51:54 |
| 103.27.237.67 | attackbots | Aug 5 20:21:48 cac1d2 sshd\[14984\]: Invalid user applmgr from 103.27.237.67 port 30939 Aug 5 20:21:48 cac1d2 sshd\[14984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.237.67 Aug 5 20:21:49 cac1d2 sshd\[14984\]: Failed password for invalid user applmgr from 103.27.237.67 port 30939 ssh2 ... |
2019-08-06 15:33:49 |
| 184.105.139.94 | attack | scan z |
2019-08-06 15:03:42 |
| 58.218.213.128 | attackspam | SSHAttack |
2019-08-06 14:57:41 |
| 37.59.116.10 | attackspambots | Feb 5 09:32:41 vtv3 sshd\[17909\]: Invalid user monit from 37.59.116.10 port 54505 Feb 5 09:32:41 vtv3 sshd\[17909\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.116.10 Feb 5 09:32:43 vtv3 sshd\[17909\]: Failed password for invalid user monit from 37.59.116.10 port 54505 ssh2 Feb 5 09:35:27 vtv3 sshd\[18960\]: Invalid user endian from 37.59.116.10 port 36259 Feb 5 09:35:27 vtv3 sshd\[18960\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.116.10 Feb 18 21:12:46 vtv3 sshd\[5732\]: Invalid user user from 37.59.116.10 port 37519 Feb 18 21:12:46 vtv3 sshd\[5732\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.116.10 Feb 18 21:12:48 vtv3 sshd\[5732\]: Failed password for invalid user user from 37.59.116.10 port 37519 ssh2 Feb 18 21:20:36 vtv3 sshd\[8197\]: Invalid user joe from 37.59.116.10 port 60818 Feb 18 21:20:36 vtv3 sshd\[8197\]: pam_unix\(sshd:auth\): |
2019-08-06 15:48:56 |
| 180.167.54.190 | attackspam | Aug 6 02:29:34 localhost sshd\[22330\]: Invalid user oracle from 180.167.54.190 port 45518 Aug 6 02:29:34 localhost sshd\[22330\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.54.190 ... |
2019-08-06 15:05:21 |
| 222.186.15.110 | attack | Aug 6 09:19:25 arianus sshd\[11077\]: Unable to negotiate with 222.186.15.110 port 45022: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 \[preauth\] ... |
2019-08-06 15:22:00 |
| 171.25.193.78 | attackspam | Aug 6 07:09:11 ubuntu-2gb-nbg1-dc3-1 sshd[18420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.25.193.78 Aug 6 07:09:13 ubuntu-2gb-nbg1-dc3-1 sshd[18420]: Failed password for invalid user administrator from 171.25.193.78 port 18645 ssh2 ... |
2019-08-06 15:23:49 |
| 195.39.196.253 | attackspam | 0,61-02/33 [bc01/m128] concatform PostRequest-Spammer scoring: essen |
2019-08-06 15:42:22 |
| 163.172.187.30 | attackbotsspam | SSH authentication failure x 6 reported by Fail2Ban ... |
2019-08-06 15:47:43 |
| 202.51.74.199 | attackbotsspam | Aug 6 05:08:19 www_kotimaassa_fi sshd[19242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.74.199 Aug 6 05:08:21 www_kotimaassa_fi sshd[19242]: Failed password for invalid user september from 202.51.74.199 port 38032 ssh2 ... |
2019-08-06 15:38:06 |
| 106.13.138.162 | attackspam | Aug 6 06:49:51 server sshd\[12285\]: Invalid user pid from 106.13.138.162 port 35130 Aug 6 06:49:51 server sshd\[12285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 Aug 6 06:49:53 server sshd\[12285\]: Failed password for invalid user pid from 106.13.138.162 port 35130 ssh2 Aug 6 06:54:55 server sshd\[26879\]: Invalid user mcserver from 106.13.138.162 port 50032 Aug 6 06:54:55 server sshd\[26879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.162 |
2019-08-06 15:44:49 |
| 95.85.28.28 | attackspambots | WordPress login Brute force / Web App Attack on client site. |
2019-08-06 15:10:43 |
| 218.92.0.212 | attackspam | Aug 5 23:31:15 ny01 sshd[2799]: Failed password for root from 218.92.0.212 port 37813 ssh2 Aug 5 23:31:28 ny01 sshd[2799]: error: maximum authentication attempts exceeded for root from 218.92.0.212 port 37813 ssh2 [preauth] Aug 5 23:31:33 ny01 sshd[2833]: Failed password for root from 218.92.0.212 port 42575 ssh2 |
2019-08-06 14:46:35 |
| 222.122.94.18 | attackbots | Aug 6 06:49:52 localhost sshd\[24099\]: Invalid user postgres from 222.122.94.18 port 57498 Aug 6 06:49:52 localhost sshd\[24099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.94.18 Aug 6 06:49:55 localhost sshd\[24099\]: Failed password for invalid user postgres from 222.122.94.18 port 57498 ssh2 ... |
2019-08-06 15:02:42 |