City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.29.143.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51188
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;66.29.143.138. IN A
;; AUTHORITY SECTION:
. 195 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022062601 1800 900 604800 86400
;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 12:03:28 CST 2022
;; MSG SIZE rcvd: 106Host 138.143.29.66.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 138.143.29.66.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 51.91.247.125 | attack | 12/28/2019-15:33:08.141421 51.91.247.125 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 53 |
2019-12-28 23:10:46 |
| 103.95.40.125 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-12-28 23:05:14 |
| 41.46.137.162 | attackspambots | Unauthorized connection attempt from IP address 41.46.137.162 on Port 445(SMB) |
2019-12-28 22:44:47 |
| 27.78.14.83 | attack | Dec 28 15:39:54 amit sshd\[2053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.78.14.83 user=root Dec 28 15:39:56 amit sshd\[2053\]: Failed password for root from 27.78.14.83 port 53406 ssh2 Dec 28 15:40:04 amit sshd\[2065\]: Invalid user admin from 27.78.14.83 ... |
2019-12-28 22:52:58 |
| 14.63.174.149 | attackspambots | Dec 28 15:24:56 srv-ubuntu-dev3 sshd[19906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.174.149 user=mysql Dec 28 15:24:58 srv-ubuntu-dev3 sshd[19906]: Failed password for mysql from 14.63.174.149 port 33433 ssh2 Dec 28 15:27:34 srv-ubuntu-dev3 sshd[20119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.174.149 user=root Dec 28 15:27:36 srv-ubuntu-dev3 sshd[20119]: Failed password for root from 14.63.174.149 port 44637 ssh2 Dec 28 15:31:56 srv-ubuntu-dev3 sshd[20453]: Invalid user lewelling from 14.63.174.149 Dec 28 15:31:56 srv-ubuntu-dev3 sshd[20453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.174.149 Dec 28 15:31:56 srv-ubuntu-dev3 sshd[20453]: Invalid user lewelling from 14.63.174.149 Dec 28 15:31:58 srv-ubuntu-dev3 sshd[20453]: Failed password for invalid user lewelling from 14.63.174.149 port 55913 ssh2 Dec 28 15:34:40 srv-ubuntu-d ... |
2019-12-28 23:05:31 |
| 182.76.204.234 | attackbotsspam | Unauthorized connection attempt from IP address 182.76.204.234 on Port 445(SMB) |
2019-12-28 22:55:43 |
| 117.247.191.92 | attackbots | Unauthorized connection attempt from IP address 117.247.191.92 on Port 445(SMB) |
2019-12-28 22:57:33 |
| 195.14.241.146 | attack | Unauthorized connection attempt from IP address 195.14.241.146 on Port 445(SMB) |
2019-12-28 22:48:31 |
| 217.75.217.240 | attackspambots | Dec 24 10:23:23 DNS-2 sshd[5357]: Invalid user lorenz from 217.75.217.240 port 55390 Dec 24 10:23:23 DNS-2 sshd[5357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.75.217.240 Dec 24 10:23:25 DNS-2 sshd[5357]: Failed password for invalid user lorenz from 217.75.217.240 port 55390 ssh2 Dec 24 10:23:27 DNS-2 sshd[5357]: Received disconnect from 217.75.217.240 port 55390:11: Bye Bye [preauth] Dec 24 10:23:27 DNS-2 sshd[5357]: Disconnected from invalid user lorenz 217.75.217.240 port 55390 [preauth] Dec 24 10:29:18 DNS-2 sshd[5590]: Invalid user www from 217.75.217.240 port 43372 Dec 24 10:29:18 DNS-2 sshd[5590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.75.217.240 Dec 24 10:29:19 DNS-2 sshd[5590]: Failed password for invalid user www from 217.75.217.240 port 43372 ssh2 Dec 24 10:29:19 DNS-2 sshd[5590]: Received disconnect from 217.75.217.240 port 43372:11: Bye Bye [preauth] De........ ------------------------------- |
2019-12-28 22:54:54 |
| 113.186.75.21 | attack | 1577543438 - 12/28/2019 15:30:38 Host: 113.186.75.21/113.186.75.21 Port: 445 TCP Blocked |
2019-12-28 23:00:53 |
| 223.29.242.213 | attack | Unauthorized connection attempt from IP address 223.29.242.213 on Port 445(SMB) |
2019-12-28 22:48:57 |
| 54.38.176.121 | attackbots | Dec 28 15:54:26 sd-53420 sshd\[26567\]: Invalid user velia from 54.38.176.121 Dec 28 15:54:26 sd-53420 sshd\[26567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.176.121 Dec 28 15:54:27 sd-53420 sshd\[26567\]: Failed password for invalid user velia from 54.38.176.121 port 54454 ssh2 Dec 28 15:55:52 sd-53420 sshd\[27147\]: Invalid user try from 54.38.176.121 Dec 28 15:55:52 sd-53420 sshd\[27147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.176.121 ... |
2019-12-28 23:02:26 |
| 54.39.151.22 | attack | 2019-12-28T14:28:07.624312shield sshd\[789\]: Invalid user josua from 54.39.151.22 port 38332 2019-12-28T14:28:07.629054shield sshd\[789\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=22.ip-54-39-151.net 2019-12-28T14:28:10.056442shield sshd\[789\]: Failed password for invalid user josua from 54.39.151.22 port 38332 ssh2 2019-12-28T14:30:50.089602shield sshd\[1532\]: Invalid user admin from 54.39.151.22 port 37586 2019-12-28T14:30:50.094500shield sshd\[1532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=22.ip-54-39-151.net |
2019-12-28 22:50:12 |
| 201.90.151.138 | attack | Unauthorized connection attempt from IP address 201.90.151.138 on Port 445(SMB) |
2019-12-28 22:46:14 |
| 52.55.5.16 | attackbots | Amazonaws.com blocked permanently IP: 52.55.5.16 Hostname: ec2-52-55-5-16.compute-1.amazonaws.com Human/Bot: Bot Go-http-client/1.1 |
2019-12-28 23:16:36 |