City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 72.72.7.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11087
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;72.72.7.242. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025030301 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 04 03:53:29 CST 2025
;; MSG SIZE rcvd: 104Host 242.7.72.72.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 242.7.72.72.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 80.82.64.127 | attackbots | [portscan] Port scan |
2020-03-25 12:25:09 |
| 31.208.110.78 | attack | Telnetd brute force attack detected by fail2ban |
2020-03-25 12:40:16 |
| 103.71.255.100 | attackspam | Automatic report - XMLRPC Attack |
2020-03-25 12:45:10 |
| 106.12.43.142 | attackspambots | Mar 25 05:22:31 h1745522 sshd[28618]: Invalid user r00t from 106.12.43.142 port 37642 Mar 25 05:22:31 h1745522 sshd[28618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.43.142 Mar 25 05:22:31 h1745522 sshd[28618]: Invalid user r00t from 106.12.43.142 port 37642 Mar 25 05:22:33 h1745522 sshd[28618]: Failed password for invalid user r00t from 106.12.43.142 port 37642 ssh2 Mar 25 05:26:51 h1745522 sshd[28745]: Invalid user ntps from 106.12.43.142 port 39694 Mar 25 05:26:51 h1745522 sshd[28745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.43.142 Mar 25 05:26:51 h1745522 sshd[28745]: Invalid user ntps from 106.12.43.142 port 39694 Mar 25 05:26:54 h1745522 sshd[28745]: Failed password for invalid user ntps from 106.12.43.142 port 39694 ssh2 Mar 25 05:31:00 h1745522 sshd[28827]: Invalid user n from 106.12.43.142 port 41740 ... |
2020-03-25 12:44:51 |
| 49.48.219.199 | attackspam | 1585108590 - 03/25/2020 04:56:30 Host: 49.48.219.199/49.48.219.199 Port: 445 TCP Blocked |
2020-03-25 12:24:19 |
| 167.99.48.123 | attack | Mar 25 05:39:35 localhost sshd\[9997\]: Invalid user cn from 167.99.48.123 port 55474 Mar 25 05:39:35 localhost sshd\[9997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.48.123 Mar 25 05:39:38 localhost sshd\[9997\]: Failed password for invalid user cn from 167.99.48.123 port 55474 ssh2 |
2020-03-25 13:00:22 |
| 54.233.142.220 | attackspam | $f2bV_matches |
2020-03-25 12:57:34 |
| 106.54.42.50 | attackspambots | IDS admin |
2020-03-25 12:29:19 |
| 106.12.93.251 | attack | Mar 25 04:56:23 cloud sshd[15867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.93.251 Mar 25 04:56:25 cloud sshd[15867]: Failed password for invalid user janae from 106.12.93.251 port 59256 ssh2 |
2020-03-25 12:32:45 |
| 87.126.80.52 | attack | BG_BT95-ADM_<177>1585108555 [1:2403452:56211] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 77 [Classification: Misc Attack] [Priority: 2]: |
2020-03-25 12:57:17 |
| 163.172.216.150 | attackspambots | 163.172.216.150 - - \[25/Mar/2020:05:18:29 +0100\] "POST /wp-login.php HTTP/1.0" 200 6699 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 163.172.216.150 - - \[25/Mar/2020:05:18:29 +0100\] "POST /wp-login.php HTTP/1.0" 200 6669 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 163.172.216.150 - - \[25/Mar/2020:05:18:30 +0100\] "POST /wp-login.php HTTP/1.0" 200 6701 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-03-25 12:51:30 |
| 206.189.166.172 | attackbotsspam | Mar 25 03:58:33 hcbbdb sshd\[21188\]: Invalid user postgres from 206.189.166.172 Mar 25 03:58:33 hcbbdb sshd\[21188\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.166.172 Mar 25 03:58:34 hcbbdb sshd\[21188\]: Failed password for invalid user postgres from 206.189.166.172 port 42476 ssh2 Mar 25 04:01:34 hcbbdb sshd\[21420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.166.172 user=root Mar 25 04:01:36 hcbbdb sshd\[21420\]: Failed password for root from 206.189.166.172 port 56634 ssh2 |
2020-03-25 12:58:02 |
| 139.59.43.159 | attackbotsspam | Mar 25 05:21:24 markkoudstaal sshd[20894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.43.159 Mar 25 05:21:25 markkoudstaal sshd[20894]: Failed password for invalid user virginia from 139.59.43.159 port 49188 ssh2 Mar 25 05:24:57 markkoudstaal sshd[21435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.43.159 |
2020-03-25 12:37:53 |
| 102.166.225.14 | attackbots | 1585108602 - 03/25/2020 04:56:42 Host: 102.166.225.14/102.166.225.14 Port: 445 TCP Blocked |
2020-03-25 12:17:13 |
| 138.197.146.132 | attackspam | 138.197.146.132 - - \[25/Mar/2020:04:55:55 +0100\] "POST /wp-login.php HTTP/1.0" 200 3080 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - \[25/Mar/2020:04:56:02 +0100\] "POST /wp-login.php HTTP/1.0" 200 3039 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - \[25/Mar/2020:04:56:09 +0100\] "POST /wp-login.php HTTP/1.0" 200 3048 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-03-25 12:48:44 |