City: Fremont
Region: California
Country: United States
Internet Service Provider: Verizon
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 63.80.86.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14323
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;63.80.86.42. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025030601 1800 900 604800 86400
;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 07 13:16:54 CST 2025
;; MSG SIZE rcvd: 104Host 42.86.80.63.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 42.86.80.63.in-addr.arpa: SERVFAIL
| IP | Type | Details | Datetime |
|---|---|---|---|
| 89.46.65.62 | attackbots | Feb 26 07:35:35 myhostname sshd[19528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.46.65.62 user=r.r Feb 26 07:35:38 myhostname sshd[19528]: Failed password for r.r from 89.46.65.62 port 51882 ssh2 Feb 26 07:35:38 myhostname sshd[19528]: Received disconnect from 89.46.65.62 port 51882:11: Bye Bye [preauth] Feb 26 07:35:38 myhostname sshd[19528]: Disconnected from 89.46.65.62 port 51882 [preauth] Feb 26 07:55:51 myhostname sshd[5301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.46.65.62 user=backup Feb 26 07:55:54 myhostname sshd[5301]: Failed password for backup from 89.46.65.62 port 40996 ssh2 Feb 26 07:55:54 myhostname sshd[5301]: Received disconnect from 89.46.65.62 port 40996:11: Bye Bye [preauth] Feb 26 07:55:54 myhostname sshd[5301]: Disconnected from 89.46.65.62 port 40996 [preauth] Feb 26 08:10:35 myhostname sshd[18417]: pam_unix(sshd:auth): authentication failure; l........ ------------------------------- |
2020-02-28 01:34:26 |
| 14.48.53.188 | attackspam | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-02-28 02:16:38 |
| 200.56.88.212 | attackbotsspam | scan r |
2020-02-28 01:45:26 |
| 191.55.121.9 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-28 01:33:23 |
| 27.150.18.147 | attackspambots | Feb 27 07:17:54 wbs sshd\[6592\]: Invalid user teamspeak from 27.150.18.147 Feb 27 07:17:54 wbs sshd\[6592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.150.18.147 Feb 27 07:17:57 wbs sshd\[6592\]: Failed password for invalid user teamspeak from 27.150.18.147 port 52970 ssh2 Feb 27 07:23:12 wbs sshd\[7073\]: Invalid user speech-dispatcher from 27.150.18.147 Feb 27 07:23:12 wbs sshd\[7073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.150.18.147 |
2020-02-28 01:42:28 |
| 222.236.198.50 | attackspam | Feb 27 12:16:20 www sshd\[795\]: Invalid user freakshowindustries from 222.236.198.50 Feb 27 12:20:37 www sshd\[1082\]: Invalid user user from 222.236.198.50 ... |
2020-02-28 01:50:18 |
| 87.246.7.21 | attack | Fail2Ban - SMTP Bruteforce Attempt |
2020-02-28 01:54:48 |
| 189.91.199.74 | attackspam | Feb 27 15:24:29 debian-2gb-nbg1-2 kernel: \[5072662.728161\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=189.91.199.74 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=35 ID=51567 PROTO=TCP SPT=2514 DPT=23 WINDOW=5403 RES=0x00 SYN URGP=0 |
2020-02-28 01:59:27 |
| 134.175.98.254 | attackspam | Lines containing failures of 134.175.98.254 Feb 26 11:44:39 shared10 sshd[3806]: Invalid user tecnici from 134.175.98.254 port 59326 Feb 26 11:44:39 shared10 sshd[3806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.98.254 Feb 26 11:44:41 shared10 sshd[3806]: Failed password for invalid user tecnici from 134.175.98.254 port 59326 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.175.98.254 |
2020-02-28 01:45:51 |
| 1.179.137.10 | attackbotsspam | Feb 27 17:52:23 ns381471 sshd[14310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.137.10 Feb 27 17:52:25 ns381471 sshd[14310]: Failed password for invalid user penglina from 1.179.137.10 port 39781 ssh2 |
2020-02-28 02:07:27 |
| 67.143.176.139 | attackspambots | Brute forcing email accounts |
2020-02-28 02:10:28 |
| 40.119.133.151 | attackbotsspam | Lines containing failures of 40.119.133.151 Feb 26 15:45:32 mx-in-02 sshd[29986]: Did not receive identification string from 40.119.133.151 port 50292 Feb 26 15:46:42 mx-in-02 sshd[30029]: Did not receive identification string from 40.119.133.151 port 33402 Feb 26 15:47:16 mx-in-02 sshd[30152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.119.133.151 user=r.r Feb 26 15:47:18 mx-in-02 sshd[30152]: Failed password for r.r from 40.119.133.151 port 53696 ssh2 Feb 26 15:47:18 mx-in-02 sshd[30152]: Received disconnect from 40.119.133.151 port 53696:11: Normal Shutdown, Thank you for playing [preauth] Feb 26 15:47:18 mx-in-02 sshd[30152]: Disconnected from authenticating user r.r 40.119.133.151 port 53696 [preauth] Feb 26 15:48:03 mx-in-02 sshd[30176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.119.133.151 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=40.119.1 |
2020-02-28 01:57:31 |
| 218.56.161.67 | attackbots | Port scan detected on ports: 1433[TCP], 1433[TCP], 1433[TCP] |
2020-02-28 01:44:46 |
| 5.196.141.132 | attack | Brute Force SSH |
2020-02-28 02:04:29 |
| 112.65.127.154 | attack | Feb 27 17:22:46 mailserver sshd\[30773\]: Invalid user work from 112.65.127.154 ... |
2020-02-28 02:13:12 |