City: Šiauliai
Region: Siauliai
Country: Lithuania
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 62.80.237.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62230
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;62.80.237.166. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025013101 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 08:11:05 CST 2025
;; MSG SIZE rcvd: 106
166.237.80.62.in-addr.arpa domain name pointer hst-237-166.splius.lt.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
166.237.80.62.in-addr.arpa name = hst-237-166.splius.lt.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 122.51.98.36 | attackbotsspam | (sshd) Failed SSH login from 122.51.98.36 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 1 01:12:19 server sshd[16226]: Invalid user hue from 122.51.98.36 port 58704 Oct 1 01:12:21 server sshd[16226]: Failed password for invalid user hue from 122.51.98.36 port 58704 ssh2 Oct 1 01:20:38 server sshd[21790]: Invalid user ivan from 122.51.98.36 port 46870 Oct 1 01:20:40 server sshd[21790]: Failed password for invalid user ivan from 122.51.98.36 port 46870 ssh2 Oct 1 01:24:01 server sshd[22683]: Invalid user dasusr1 from 122.51.98.36 port 51932 |
2020-10-01 14:02:46 |
| 185.74.4.189 | attackbots | Invalid user ortner from 185.74.4.189 port 40586 |
2020-10-01 13:45:38 |
| 106.55.23.112 | attackspambots | (sshd) Failed SSH login from 106.55.23.112 (-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 1 00:44:42 server2 sshd[17807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.23.112 user=root Oct 1 00:44:44 server2 sshd[17807]: Failed password for root from 106.55.23.112 port 34854 ssh2 Oct 1 01:15:11 server2 sshd[3925]: Invalid user testing from 106.55.23.112 port 50078 Oct 1 01:15:14 server2 sshd[3925]: Failed password for invalid user testing from 106.55.23.112 port 50078 ssh2 Oct 1 01:23:48 server2 sshd[9099]: Invalid user dst from 106.55.23.112 port 58944 |
2020-10-01 13:31:12 |
| 119.45.30.53 | attackspambots | Invalid user user from 119.45.30.53 port 52422 |
2020-10-01 13:42:47 |
| 223.31.196.3 | attackspam | Oct 1 03:15:21 mail sshd[8772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.31.196.3 |
2020-10-01 13:28:18 |
| 199.195.254.38 | attackbotsspam | Port scanning [4 denied] |
2020-10-01 14:01:03 |
| 128.199.99.204 | attackspam | Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-10-01 13:47:13 |
| 111.229.224.121 | attackbotsspam | Oct 1 05:23:25 serwer sshd\[29610\]: Invalid user dropbox from 111.229.224.121 port 36770 Oct 1 05:23:25 serwer sshd\[29610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.224.121 Oct 1 05:23:28 serwer sshd\[29610\]: Failed password for invalid user dropbox from 111.229.224.121 port 36770 ssh2 ... |
2020-10-01 13:27:27 |
| 49.234.122.94 | attack | Invalid user oracle from 49.234.122.94 port 41238 |
2020-10-01 13:33:53 |
| 94.25.170.49 | attack | 1601498461 - 09/30/2020 22:41:01 Host: 94.25.170.49/94.25.170.49 Port: 445 TCP Blocked |
2020-10-01 13:30:22 |
| 106.13.45.212 | attack | Oct 1 05:43:13 *** sshd[22577]: Invalid user phoenix from 106.13.45.212 |
2020-10-01 13:54:46 |
| 195.54.160.228 | attackspam | Persistent port scanning [26 denied] |
2020-10-01 14:03:11 |
| 106.54.155.35 | attackspambots | SSH-BruteForce |
2020-10-01 14:03:53 |
| 167.71.104.1 | attackspam | 167.71.104.1 - - [01/Oct/2020:00:36:30 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.104.1 - - [01/Oct/2020:00:36:31 +0200] "POST /wp-login.php HTTP/1.1" 200 9378 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.104.1 - - [01/Oct/2020:00:36:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-10-01 13:37:11 |
| 208.86.163.70 | attackspam | $f2bV_matches |
2020-10-01 13:50:47 |