City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 75.80.211.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36046
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;75.80.211.241. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021901 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 02:40:10 CST 2025
;; MSG SIZE rcvd: 106241.211.80.75.in-addr.arpa domain name pointer syn-075-080-211-241.res.spectrum.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
241.211.80.75.in-addr.arpa name = syn-075-080-211-241.res.spectrum.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 37.59.119.181 | attack | 2019-11-29T15:10:08.312317homeassistant sshd[18534]: Invalid user coe from 37.59.119.181 port 47704 2019-11-29T15:10:08.318257homeassistant sshd[18534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.119.181 ... |
2019-11-30 02:46:53 |
| 54.37.196.144 | attackspam | TCP 3389 (RDP) |
2019-11-30 02:41:05 |
| 103.4.217.138 | attackspambots | Lines containing failures of 103.4.217.138 Nov 27 03:00:06 mellenthin sshd[4340]: User r.r from 103.4.217.138 not allowed because not listed in AllowUsers Nov 27 03:00:06 mellenthin sshd[4340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.4.217.138 user=r.r Nov 27 03:00:08 mellenthin sshd[4340]: Failed password for invalid user r.r from 103.4.217.138 port 50671 ssh2 Nov 27 03:00:08 mellenthin sshd[4340]: Received disconnect from 103.4.217.138 port 50671:11: Bye Bye [preauth] Nov 27 03:00:08 mellenthin sshd[4340]: Disconnected from invalid user r.r 103.4.217.138 port 50671 [preauth] Nov 27 03:21:31 mellenthin sshd[5023]: Invalid user trullemans from 103.4.217.138 port 52400 Nov 27 03:21:31 mellenthin sshd[5023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.4.217.138 Nov 27 03:21:32 mellenthin sshd[5023]: Failed password for invalid user trullemans from 103.4.217.138 port 52400 s........ ------------------------------ |
2019-11-30 02:30:25 |
| 68.183.60.156 | attackbots | 68.183.60.156 - - \[29/Nov/2019:19:08:56 +0100\] "POST /wp-login.php HTTP/1.0" 200 5731 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 68.183.60.156 - - \[29/Nov/2019:19:08:57 +0100\] "POST /wp-login.php HTTP/1.0" 200 5598 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 68.183.60.156 - - \[29/Nov/2019:19:08:58 +0100\] "POST /wp-login.php HTTP/1.0" 200 5594 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-11-30 03:01:28 |
| 65.229.5.158 | attack | (sshd) Failed SSH login from 65.229.5.158 (US/United States/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Nov 29 15:38:02 andromeda sshd[14501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.229.5.158 user=nobody Nov 29 15:38:03 andromeda sshd[14501]: Failed password for nobody from 65.229.5.158 port 41458 ssh2 Nov 29 15:50:54 andromeda sshd[15956]: Invalid user culler from 65.229.5.158 port 38421 |
2019-11-30 02:22:33 |
| 78.194.214.19 | attackbots | 2019-11-29T18:07:48.052256abusebot-5.cloudsearch.cf sshd\[1716\]: Invalid user robert from 78.194.214.19 port 37478 |
2019-11-30 02:34:49 |
| 123.206.74.50 | attack | Nov 29 15:46:35 yesfletchmain sshd\[13549\]: Invalid user kidawa_r from 123.206.74.50 port 58690 Nov 29 15:46:35 yesfletchmain sshd\[13549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.74.50 Nov 29 15:46:36 yesfletchmain sshd\[13549\]: Failed password for invalid user kidawa_r from 123.206.74.50 port 58690 ssh2 Nov 29 15:51:18 yesfletchmain sshd\[13801\]: Invalid user apache from 123.206.74.50 port 35334 Nov 29 15:51:18 yesfletchmain sshd\[13801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.74.50 ... |
2019-11-30 02:39:50 |
| 51.77.212.124 | attackspambots | 2019-11-20T11:53:13.008279suse-nuc sshd[16335]: Invalid user vcsa from 51.77.212.124 port 38009 ... |
2019-11-30 02:47:55 |
| 23.94.187.130 | attackspam | xmlrpc attack |
2019-11-30 02:57:51 |
| 182.76.160.138 | attackspam | Nov 29 07:26:23 wbs sshd\[7271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.160.138 user=root Nov 29 07:26:26 wbs sshd\[7271\]: Failed password for root from 182.76.160.138 port 50318 ssh2 Nov 29 07:30:17 wbs sshd\[7622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.160.138 user=root Nov 29 07:30:19 wbs sshd\[7622\]: Failed password for root from 182.76.160.138 port 58314 ssh2 Nov 29 07:34:21 wbs sshd\[7986\]: Invalid user ubuntu from 182.76.160.138 |
2019-11-30 02:22:19 |
| 221.186.182.226 | attackbotsspam | 2019-11-29T08:09:42.585181suse-nuc sshd[12231]: Invalid user kayla from 221.186.182.226 port 34642 ... |
2019-11-30 03:01:39 |
| 106.54.142.84 | attack | Nov 29 18:24:55 *** sshd[14244]: User backup from 106.54.142.84 not allowed because not listed in AllowUsers |
2019-11-30 02:54:31 |
| 138.68.178.64 | attackspam | Nov 29 16:07:16 root sshd[31375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.178.64 Nov 29 16:07:18 root sshd[31375]: Failed password for invalid user teamspeak3 from 138.68.178.64 port 59800 ssh2 Nov 29 16:10:23 root sshd[31434]: Failed password for mysql from 138.68.178.64 port 39368 ssh2 ... |
2019-11-30 02:34:05 |
| 199.30.231.3 | attack | Port scan on 1 port(s): 53 |
2019-11-30 02:24:07 |
| 73.210.114.85 | attackbots | port scan/probe/communication attempt |
2019-11-30 02:40:44 |