City: Rüthen
Region: Nordrhein-Westfalen
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 62.54.225.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14418
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;62.54.225.242. IN A
;; AUTHORITY SECTION:
. 358 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2023010200 1800 900 604800 86400
;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 02 15:43:52 CST 2023
;; MSG SIZE rcvd: 106Host 242.225.54.62.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 242.225.54.62.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 182.71.147.146 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 12-10-2019 15:15:21. |
2019-10-13 00:12:37 |
| 94.247.241.70 | attackspambots | proto=tcp . spt=34189 . dpt=25 . (Listed on dnsbl-sorbs plus abuseat-org and barracuda) (896) |
2019-10-13 00:01:51 |
| 188.166.235.142 | attack | Automatic report - XMLRPC Attack |
2019-10-13 00:30:32 |
| 163.172.206.78 | attackspambots | Oct 12 17:18:44 MK-Soft-VM7 sshd[21957]: Failed password for root from 163.172.206.78 port 53402 ssh2 ... |
2019-10-12 23:56:12 |
| 122.152.215.43 | attack | ECShop Remote Code Execution Vulnerability |
2019-10-13 00:19:17 |
| 193.70.85.206 | attackspam | Oct 12 18:11:59 legacy sshd[18391]: Failed password for root from 193.70.85.206 port 39343 ssh2 Oct 12 18:16:00 legacy sshd[18522]: Failed password for root from 193.70.85.206 port 59322 ssh2 ... |
2019-10-13 00:30:04 |
| 195.154.108.203 | attackspambots | Oct 12 18:15:19 tux-35-217 sshd\[15057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.108.203 user=root Oct 12 18:15:20 tux-35-217 sshd\[15057\]: Failed password for root from 195.154.108.203 port 47414 ssh2 Oct 12 18:19:28 tux-35-217 sshd\[15084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.108.203 user=root Oct 12 18:19:30 tux-35-217 sshd\[15084\]: Failed password for root from 195.154.108.203 port 58478 ssh2 ... |
2019-10-13 00:25:31 |
| 51.255.168.202 | attack | Oct 12 17:58:11 eventyay sshd[2629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.202 Oct 12 17:58:13 eventyay sshd[2629]: Failed password for invalid user C3nt0s2016 from 51.255.168.202 port 48830 ssh2 Oct 12 18:02:41 eventyay sshd[2723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.202 ... |
2019-10-13 00:04:05 |
| 178.137.16.19 | attack | Oct 12 16:15:10 s1 sshd\[18567\]: Invalid user admin from 178.137.16.19 port 3660 Oct 12 16:15:10 s1 sshd\[18567\]: Failed password for invalid user admin from 178.137.16.19 port 3660 ssh2 Oct 12 16:15:10 s1 sshd\[18598\]: Invalid user admin from 178.137.16.19 port 3706 Oct 12 16:15:10 s1 sshd\[18598\]: Failed password for invalid user admin from 178.137.16.19 port 3706 ssh2 Oct 12 16:15:10 s1 sshd\[18626\]: Invalid user admin from 178.137.16.19 port 3751 Oct 12 16:15:10 s1 sshd\[18626\]: Failed password for invalid user admin from 178.137.16.19 port 3751 ssh2 ... |
2019-10-13 00:26:03 |
| 52.57.168.236 | attackspam | Unsolicited bulk porn & phishing - varying ISPs (primarily Chinanet); repetitive redirects from blacklisted IP 92.63.192.124 & .151; spam volume up to 15/day. Spam link 4-gkb.ru = 92.63.192.151 NVFOPServer-net (previous IP 92.63.192.124) - repetitive redirects: - www.benaughty.com = 2.17.43.33, 2.17.43.17 Akamai - walkondates.com = 52.57.168.236, 52.58.193.171 Amazon - retargetcore.com = 52.29.68.89, 35.158.186.87 Amazon - t.insigit.com = 52.28.205.175, 54.93.35.219 Amazon - uf.noclef.com = 3.121.133.104, 52.59.105.243 Amazon Unsolicited bulk spam - unimplemented.likethin.eu, China Mobile Communications Corporation - 120.208.209.206 Sender domain harmsenheftrucks.nl = 136.144.206.196 TransIP BV |
2019-10-13 00:29:33 |
| 222.122.31.133 | attack | Oct 12 16:36:10 localhost sshd\[29724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.31.133 user=root Oct 12 16:36:12 localhost sshd\[29724\]: Failed password for root from 222.122.31.133 port 59866 ssh2 Oct 12 16:41:25 localhost sshd\[30253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.31.133 user=root |
2019-10-13 00:23:00 |
| 112.133.251.162 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 12-10-2019 15:15:16. |
2019-10-13 00:21:21 |
| 191.34.83.245 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 12-10-2019 15:15:22. |
2019-10-13 00:09:54 |
| 188.214.255.241 | attackspam | Oct 12 16:57:56 lnxweb62 sshd[14913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.214.255.241 |
2019-10-13 00:05:16 |
| 222.186.31.136 | attack | Oct 12 06:27:52 php1 sshd\[6369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.136 user=root Oct 12 06:27:54 php1 sshd\[6369\]: Failed password for root from 222.186.31.136 port 39151 ssh2 Oct 12 06:27:57 php1 sshd\[6369\]: Failed password for root from 222.186.31.136 port 39151 ssh2 Oct 12 06:27:59 php1 sshd\[6369\]: Failed password for root from 222.186.31.136 port 39151 ssh2 Oct 12 06:35:45 php1 sshd\[7768\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.136 user=root |
2019-10-13 00:37:01 |