City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 53.246.201.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34852
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;53.246.201.185. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400
;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 10:07:46 CST 2025
;; MSG SIZE rcvd: 107Host 185.201.246.53.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 185.201.246.53.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 179.49.20.50 | attack | Aug 17 08:34:44 uapps sshd[24866]: Invalid user candice from 179.49.20.50 port 50470 Aug 17 08:34:46 uapps sshd[24866]: Failed password for invalid user candice from 179.49.20.50 port 50470 ssh2 Aug 17 08:34:48 uapps sshd[24866]: Received disconnect from 179.49.20.50 port 50470:11: Bye Bye [preauth] Aug 17 08:34:48 uapps sshd[24866]: Disconnected from invalid user candice 179.49.20.50 port 50470 [preauth] Aug 17 09:02:53 uapps sshd[25374]: Invalid user ky from 179.49.20.50 port 35296 Aug 17 09:02:55 uapps sshd[25374]: Failed password for invalid user ky from 179.49.20.50 port 35296 ssh2 Aug 17 09:02:55 uapps sshd[25374]: Received disconnect from 179.49.20.50 port 35296:11: Bye Bye [preauth] Aug 17 09:02:55 uapps sshd[25374]: Disconnected from invalid user ky 179.49.20.50 port 35296 [preauth] Aug 17 09:08:52 uapps sshd[25393]: Invalid user lsx from 179.49.20.50 port 55890 Aug 17 09:08:54 uapps sshd[25393]: Failed password for invalid user lsx from 179.49.20.50 port 55890........ ------------------------------- |
2020-08-18 06:06:04 |
| 138.197.216.135 | attack | 2020-08-17T22:26:48+0200 Failed SSH Authentication/Brute Force Attack. (Server 9) |
2020-08-18 05:59:02 |
| 49.235.157.5 | attack | Aug 18 01:02:02 hosting sshd[1302]: Invalid user demo from 49.235.157.5 port 56592 ... |
2020-08-18 06:10:17 |
| 124.89.2.202 | attackspambots | Aug 17 23:08:50 rocket sshd[14893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.89.2.202 Aug 17 23:08:52 rocket sshd[14893]: Failed password for invalid user ybz from 124.89.2.202 port 39854 ssh2 ... |
2020-08-18 06:13:31 |
| 187.109.21.245 | attack | 2020-08-17T23:09:46.998408+02:00 |
2020-08-18 06:08:02 |
| 31.185.104.19 | attack | Aug 17 22:26:44 vpn01 sshd[17018]: Failed password for root from 31.185.104.19 port 35269 ssh2 Aug 17 22:26:56 vpn01 sshd[17018]: error: maximum authentication attempts exceeded for root from 31.185.104.19 port 35269 ssh2 [preauth] ... |
2020-08-18 05:56:34 |
| 112.85.42.195 | attackspambots | Aug 17 21:37:04 game-panel sshd[17737]: Failed password for root from 112.85.42.195 port 21454 ssh2 Aug 17 21:37:07 game-panel sshd[17737]: Failed password for root from 112.85.42.195 port 21454 ssh2 Aug 17 21:37:09 game-panel sshd[17737]: Failed password for root from 112.85.42.195 port 21454 ssh2 |
2020-08-18 05:53:07 |
| 45.129.183.70 | attackspam | Aug 17 23:59:23 alpha sshd[13996]: Unable to negotiate with 45.129.183.70 port 47050: no matching host key type found. Their offer: ssh-rsa,ssh-dss [preauth] Aug 17 23:59:37 alpha sshd[13999]: Unable to negotiate with 45.129.183.70 port 52368: no matching host key type found. Their offer: ssh-rsa,ssh-dss [preauth] Aug 17 23:59:50 alpha sshd[14004]: Unable to negotiate with 45.129.183.70 port 57718: no matching host key type found. Their offer: ssh-rsa,ssh-dss [preauth] |
2020-08-18 06:12:08 |
| 141.98.9.137 | attackspambots | 2020-08-17T12:50:12.981259correo.[domain] sshd[11640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.137 2020-08-17T12:50:12.971995correo.[domain] sshd[11640]: Invalid user support from 141.98.9.137 port 47744 2020-08-17T12:50:14.572386correo.[domain] sshd[11640]: Failed password for invalid user support from 141.98.9.137 port 47744 ssh2 ... |
2020-08-18 06:12:43 |
| 103.216.62.73 | attack | Lines containing failures of 103.216.62.73 Aug 17 01:51:20 kmh-wsh-001-nbg03 sshd[11266]: Invalid user ddd from 103.216.62.73 port 44652 Aug 17 01:51:20 kmh-wsh-001-nbg03 sshd[11266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.216.62.73 Aug 17 01:51:22 kmh-wsh-001-nbg03 sshd[11266]: Failed password for invalid user ddd from 103.216.62.73 port 44652 ssh2 Aug 17 01:51:24 kmh-wsh-001-nbg03 sshd[11266]: Received disconnect from 103.216.62.73 port 44652:11: Bye Bye [preauth] Aug 17 01:51:24 kmh-wsh-001-nbg03 sshd[11266]: Disconnected from invalid user ddd 103.216.62.73 port 44652 [preauth] Aug 17 01:59:41 kmh-wsh-001-nbg03 sshd[12167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.216.62.73 user=r.r Aug 17 01:59:43 kmh-wsh-001-nbg03 sshd[12167]: Failed password for r.r from 103.216.62.73 port 55582 ssh2 Aug 17 01:59:43 kmh-wsh-001-nbg03 sshd[12167]: Received disconnect from 103.21........ ------------------------------ |
2020-08-18 05:41:40 |
| 111.229.101.155 | attackbotsspam | Aug 17 14:01:22 mockhub sshd[18871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.101.155 Aug 17 14:01:24 mockhub sshd[18871]: Failed password for invalid user alex from 111.229.101.155 port 46298 ssh2 ... |
2020-08-18 05:45:28 |
| 192.42.116.18 | attackbotsspam | Aug 17 22:26:59 vpn01 sshd[17020]: Failed password for root from 192.42.116.18 port 48564 ssh2 Aug 17 22:27:10 vpn01 sshd[17020]: error: maximum authentication attempts exceeded for root from 192.42.116.18 port 48564 ssh2 [preauth] ... |
2020-08-18 05:45:06 |
| 212.64.5.28 | attackbotsspam | Aug 17 22:43:15 vpn01 sshd[17482]: Failed password for root from 212.64.5.28 port 47852 ssh2 Aug 17 22:48:45 vpn01 sshd[17562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.5.28 ... |
2020-08-18 05:38:46 |
| 49.233.53.111 | attackspam | $f2bV_matches |
2020-08-18 05:54:25 |
| 78.38.179.97 | attackbotsspam | Aug 17 22:24:51 *hidden* kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=78.38.179.97 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=61446 PROTO=TCP SPT=64299 DPT=23 WINDOW=57395 RES=0x00 SYN URGP=0 Aug 17 22:25:22 *hidden* kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=78.38.179.97 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=61446 PROTO=TCP SPT=64299 DPT=23 WINDOW=57395 RES=0x00 SYN URGP=0 Aug 17 22:25:22 *hidden* kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=78.38.179.97 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=61446 PROTO=TCP SPT=64299 DPT=23 WINDOW=57395 RES=0x00 SYN URGP=0 Aug 17 22:25:22 *hidden* kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=78.38.179.97 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=61446 PROTO=TCP SPT=64299 DPT=23 WINDOW=57395 RES=0x00 SYN URGP=0 Aug 17 22:27:12 *hid ... |
2020-08-18 05:42:07 |