City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 67.234.18.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9492
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;67.234.18.85. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022703 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 12:02:07 CST 2025
;; MSG SIZE rcvd: 10585.18.234.67.in-addr.arpa domain name pointer 67-234-18-85.jhcy.centurylink.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
85.18.234.67.in-addr.arpa name = 67-234-18-85.jhcy.centurylink.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 117.34.91.2 | attack | Oct 13 06:36:11 markkoudstaal sshd[3521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.34.91.2 Oct 13 06:36:13 markkoudstaal sshd[3521]: Failed password for invalid user pazdera from 117.34.91.2 port 52312 ssh2 Oct 13 06:41:42 markkoudstaal sshd[5098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.34.91.2 ... |
2020-10-13 12:47:04 |
| 45.148.10.186 | attackspam | Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ... |
2020-10-13 12:50:57 |
| 117.51.150.202 | attackbots | Oct 13 03:27:24 vpn01 sshd[21766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.150.202 Oct 13 03:27:26 vpn01 sshd[21766]: Failed password for invalid user kimberly from 117.51.150.202 port 50902 ssh2 ... |
2020-10-13 12:22:50 |
| 45.129.33.82 | attackbotsspam | ET DROP Dshield Block Listed Source group 1 - port: 6606 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-13 12:29:15 |
| 142.93.193.63 | attack | 142.93.193.63 - - [13/Oct/2020:02:53:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2548 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [13/Oct/2020:02:53:32 +0100] "POST /wp-login.php HTTP/1.1" 200 2529 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [13/Oct/2020:02:53:32 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-10-13 12:21:48 |
| 142.44.242.38 | attackbotsspam | [Tue Oct 13 03:36:24 2020] IN=enp34s0 OUT= MAC=SERVERMAC SRC=142.44.242.38 DST=MYSERVERIP LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=61789 DF PROTO=TCP SPT=49922 DPT=22 WINDOW=64240 RES=0x00 SYN URGP=0 Ports: 22 |
2020-10-13 12:22:04 |
| 45.129.33.121 | attackspam | =Multiport scan 444 ports : 500 506 509 516 523 524 527 538 544 546 552 562 565 574 575 577 580 583 620 622 625 634 638 661 666 667 673 681 683 685 687 689 691 693 694 706 708 710 711 724 736 737 745 749 755 760 761 765 766 768 774 786 789 792 798 802 803 805 807 809 817 839 840 843 845 847 851 858 861 876 878 890 892 894 902 904 912 928 930 935 942 947 960 961 963 964 966 967 968 975 982 984 986 989 991 993 998 999 2512 2517 2524 2525 2539 2540 2542 2548 2553 2564 2569 2573 2574 2583 2585 2595 2599 2604 2606 2616 2620 2621 2635 2650 2654 2669 2673 2675 2679 2682 2690 2692 2694 2699 2704 2719 2721 2723 2729 2738 2740 2743 2756 2757 2769 2778 2779 2785 2787 2789 2793 2794 2797 2799 2800 2802 2811 2812 2814 2823 2827 2829 2833 2840 2842 2843 2852 2854 2866 2868 2869 2871 2884 2887 2904 2907 2911 2915 2917 2918 2922 2927 2929 2935 2944 2945 2950 2951 2954 2955 2956 2960 2962 2973 2983 2984 2985 2987 2994 3000 18004 18006 18008 18009 18016 18020 18023 18031 18037 18046 18047 18063 18066 180.... |
2020-10-13 12:28:50 |
| 61.219.11.153 | attack |
|
2020-10-13 12:43:05 |
| 104.248.45.204 | attack | (sshd) Failed SSH login from 104.248.45.204 (DE/Germany/-): 5 in the last 3600 secs |
2020-10-13 12:54:21 |
| 119.45.240.49 | attackbots | (sshd) Failed SSH login from 119.45.240.49 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 03:10:25 server2 sshd[29025]: Invalid user postgres from 119.45.240.49 port 35120 Oct 13 03:10:27 server2 sshd[29025]: Failed password for invalid user postgres from 119.45.240.49 port 35120 ssh2 Oct 13 04:03:10 server2 sshd[5771]: Invalid user image from 119.45.240.49 port 60448 Oct 13 04:03:12 server2 sshd[5771]: Failed password for invalid user image from 119.45.240.49 port 60448 ssh2 Oct 13 04:08:36 server2 sshd[6649]: Invalid user junior from 119.45.240.49 port 56224 |
2020-10-13 12:51:34 |
| 157.230.122.80 | attackbots | web-1 [ssh] SSH Attack |
2020-10-13 12:56:27 |
| 178.128.93.251 | attackspam | Oct 13 05:44:54 * sshd[359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.93.251 Oct 13 05:44:56 * sshd[359]: Failed password for invalid user frauke from 178.128.93.251 port 47800 ssh2 |
2020-10-13 12:35:17 |
| 94.102.51.17 | attackspambots | Fail2Ban Ban Triggered |
2020-10-13 12:24:11 |
| 106.54.197.97 | attackspam | SSH Brute Force |
2020-10-13 12:38:17 |
| 167.71.211.45 | attackspam | Invalid user honda from 167.71.211.45 port 57658 |
2020-10-13 13:00:05 |