City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 63.19.106.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25032
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;63.19.106.104. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024120900 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 09 18:11:32 CST 2024
;; MSG SIZE rcvd: 106Host 104.106.19.63.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 104.106.19.63.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.76.34.87 | attackbotsspam | k+ssh-bruteforce |
2019-11-04 21:06:36 |
| 188.226.142.195 | attackbotsspam | www.geburtshaus-fulda.de 188.226.142.195 \[04/Nov/2019:07:22:37 +0100\] "POST /wp-login.php HTTP/1.1" 200 5785 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.geburtshaus-fulda.de 188.226.142.195 \[04/Nov/2019:07:22:38 +0100\] "POST /wp-login.php HTTP/1.1" 200 5789 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-11-04 20:24:18 |
| 177.139.177.94 | attackspambots | Nov 4 13:24:33 vmanager6029 sshd\[19053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.139.177.94 user=root Nov 4 13:24:36 vmanager6029 sshd\[19053\]: Failed password for root from 177.139.177.94 port 35161 ssh2 Nov 4 13:29:19 vmanager6029 sshd\[19094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.139.177.94 user=root |
2019-11-04 20:47:35 |
| 185.162.235.113 | attack | 2019-11-04T13:49:12.053498mail01 postfix/smtpd[21099]: warning: unknown[185.162.235.113]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T13:54:31.249391mail01 postfix/smtpd[28649]: warning: unknown[185.162.235.113]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T13:54:31.249817mail01 postfix/smtpd[21003]: warning: unknown[185.162.235.113]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-04 20:55:26 |
| 189.128.151.78 | attack | Automatic report - Port Scan Attack |
2019-11-04 20:39:15 |
| 68.183.213.5 | attack | Nov 4 08:32:59 localhost sshd\[15273\]: Invalid user wertyu from 68.183.213.5 port 35700 Nov 4 08:32:59 localhost sshd\[15273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.213.5 Nov 4 08:33:02 localhost sshd\[15273\]: Failed password for invalid user wertyu from 68.183.213.5 port 35700 ssh2 |
2019-11-04 20:41:25 |
| 178.128.75.154 | attack | Nov 4 11:40:56 vpn01 sshd[15334]: Failed password for root from 178.128.75.154 port 46204 ssh2 ... |
2019-11-04 20:37:27 |
| 51.15.84.19 | attack | Nov 4 05:23:20 mail sshd\[46403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.84.19 user=root ... |
2019-11-04 20:38:34 |
| 171.234.131.227 | attack | Nov 4 00:22:19 mailman postfix/smtpd[25920]: warning: unknown[171.234.131.227]: SASL PLAIN authentication failed: authentication failure |
2019-11-04 20:36:18 |
| 106.12.74.238 | attackbots | Nov 3 20:53:50 tdfoods sshd\[7199\]: Invalid user 3lch3 from 106.12.74.238 Nov 3 20:53:50 tdfoods sshd\[7199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.238 Nov 3 20:53:52 tdfoods sshd\[7199\]: Failed password for invalid user 3lch3 from 106.12.74.238 port 54576 ssh2 Nov 3 20:59:10 tdfoods sshd\[7613\]: Invalid user 12071974 from 106.12.74.238 Nov 3 20:59:10 tdfoods sshd\[7613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.238 |
2019-11-04 20:43:20 |
| 101.91.160.243 | attackbotsspam | Invalid user arma3server from 101.91.160.243 port 41646 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.160.243 Failed password for invalid user arma3server from 101.91.160.243 port 41646 ssh2 Invalid user lai from 101.91.160.243 port 50152 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.160.243 |
2019-11-04 20:37:06 |
| 198.108.67.86 | attackspam | " " |
2019-11-04 20:53:47 |
| 70.18.218.223 | attackspambots | Nov 4 00:04:12 rb06 sshd[6505]: reveeclipse mapping checking getaddrinfo for pool-70-18-218-223.ny325.east.verizon.net [70.18.218.223] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 4 00:04:14 rb06 sshd[6505]: Failed password for invalid user take from 70.18.218.223 port 53150 ssh2 Nov 4 00:04:14 rb06 sshd[6505]: Received disconnect from 70.18.218.223: 11: Bye Bye [preauth] Nov 4 00:19:15 rb06 sshd[25780]: reveeclipse mapping checking getaddrinfo for pool-70-18-218-223.ny325.east.verizon.net [70.18.218.223] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 4 00:19:15 rb06 sshd[25780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.18.218.223 user=r.r Nov 4 00:19:16 rb06 sshd[25780]: Failed password for r.r from 70.18.218.223 port 38600 ssh2 Nov 4 00:19:16 rb06 sshd[25780]: Received disconnect from 70.18.218.223: 11: Bye Bye [preauth] Nov 4 00:22:50 rb06 sshd[25754]: reveeclipse mapping checking getaddrinfo for pool-70-18-218-223.ny325........ ------------------------------- |
2019-11-04 20:23:13 |
| 69.16.221.11 | attackbotsspam | Nov 4 13:42:10 mail postfix/smtpd[28192]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 13:47:30 mail postfix/smtpd[29648]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 13:50:37 mail postfix/smtpd[30230]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-04 20:54:20 |
| 36.152.65.207 | attackspam | Telnetd brute force attack detected by fail2ban |
2019-11-04 20:26:03 |