City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 63.45.138.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11352
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;63.45.138.42. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025010602 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 12:06:28 CST 2025
;; MSG SIZE rcvd: 10542.138.45.63.in-addr.arpa domain name pointer host42.sub-63-45-138.myvzw.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
42.138.45.63.in-addr.arpa name = host42.sub-63-45-138.myvzw.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.244.76.13 | attackspam | 2020-08-08T22:54:38.236219morrigan.ad5gb.com dovecot[1448]: imap-login: Disconnected: Too many invalid commands (no auth attempts in 0 secs): user=<>, rip=104.244.76.13, lip=51.81.135.67, session= |
2020-08-09 13:29:57 |
| 110.80.142.84 | attack | Aug 9 07:13:19 cosmoit sshd[25682]: Failed password for root from 110.80.142.84 port 58270 ssh2 |
2020-08-09 13:19:53 |
| 222.186.42.213 | attackspambots | Aug 9 07:17:27 santamaria sshd\[18814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.213 user=root Aug 9 07:17:29 santamaria sshd\[18814\]: Failed password for root from 222.186.42.213 port 43061 ssh2 Aug 9 07:17:37 santamaria sshd\[18818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.213 user=root ... |
2020-08-09 13:22:37 |
| 192.99.200.69 | attackbots | 192.99.200.69 - - [09/Aug/2020:05:01:04 +0100] "POST /wp-login.php HTTP/1.1" 200 2121 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.200.69 - - [09/Aug/2020:05:01:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.200.69 - - [09/Aug/2020:05:01:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-09 13:09:44 |
| 122.51.204.51 | attackbots | SSH invalid-user multiple login try |
2020-08-09 13:08:41 |
| 165.22.53.233 | attack | CMS (WordPress or Joomla) login attempt. |
2020-08-09 13:35:25 |
| 134.209.236.191 | attack | SSH brutforce |
2020-08-09 13:12:44 |
| 52.231.54.27 | attackspam | Bruteforce detected by fail2ban |
2020-08-09 13:31:46 |
| 218.92.0.211 | attack | $f2bV_matches |
2020-08-09 13:42:41 |
| 34.70.62.204 | attackspam | firewall-block, port(s): 1900/udp |
2020-08-09 13:39:05 |
| 106.51.78.18 | attack | Aug 8 18:47:22 eddieflores sshd\[29130\]: Invalid user 1!2@3\#4\$5%6\^ from 106.51.78.18 Aug 8 18:47:22 eddieflores sshd\[29130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.78.18 Aug 8 18:47:24 eddieflores sshd\[29130\]: Failed password for invalid user 1!2@3\#4\$5%6\^ from 106.51.78.18 port 35002 ssh2 Aug 8 18:51:43 eddieflores sshd\[29403\]: Invalid user 987456321a from 106.51.78.18 Aug 8 18:51:43 eddieflores sshd\[29403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.78.18 |
2020-08-09 13:06:44 |
| 192.99.10.122 | attackbots | Aug 9 07:55:52 venus kernel: [140057.179978] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:66:8f:ed:d2:74:7f:6e:37:e3:08:00 SRC=192.99.10.122 DST=78.47.70.226 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=55168 PROTO=TCP SPT=32767 DPT=8545 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-08-09 13:40:21 |
| 212.70.149.82 | attackspambots | 2020-08-09 05:29:11 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=chi-yin@no-server.de\) 2020-08-09 05:29:23 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=chi-yin@no-server.de\) 2020-08-09 05:29:25 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=chi-yin@no-server.de\) 2020-08-09 05:29:40 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=chlo@no-server.de\) 2020-08-09 05:29:51 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=chlo@no-server.de\) 2020-08-09 05:29:53 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=chlo@no-server.de\) 2020-08-09 05:30:09 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 ... |
2020-08-09 13:11:37 |
| 52.138.26.98 | attackspam | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-09T03:46:33Z and 2020-08-09T03:54:39Z |
2020-08-09 13:29:35 |
| 159.89.38.228 | attack | Aug 9 06:52:16 abendstille sshd\[1088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.38.228 user=root Aug 9 06:52:18 abendstille sshd\[1088\]: Failed password for root from 159.89.38.228 port 44336 ssh2 Aug 9 06:56:23 abendstille sshd\[5196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.38.228 user=root Aug 9 06:56:25 abendstille sshd\[5196\]: Failed password for root from 159.89.38.228 port 55320 ssh2 Aug 9 07:00:46 abendstille sshd\[9206\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.38.228 user=root ... |
2020-08-09 13:11:57 |