City: unknown
Region: unknown
Country: Italy
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 82.54.4.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27262
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;82.54.4.158. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012600 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 23:58:13 CST 2025
;; MSG SIZE rcvd: 104158.4.54.82.in-addr.arpa domain name pointer host-82-54-4-158.retail.telecomitalia.it.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
158.4.54.82.in-addr.arpa name = host-82-54-4-158.retail.telecomitalia.it.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 79.124.62.66 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 68 - port: 3667 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-12 04:07:01 |
| 129.146.250.102 | attack | Invalid user tester from 129.146.250.102 port 38116 |
2020-10-12 04:13:05 |
| 87.103.95.89 | attack | Automatic report - Port Scan Attack |
2020-10-12 03:55:23 |
| 159.65.176.156 | attack | Oct 11 19:24:08 buvik sshd[1228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.176.156 user=root Oct 11 19:24:10 buvik sshd[1228]: Failed password for root from 159.65.176.156 port 45031 ssh2 Oct 11 19:27:40 buvik sshd[1763]: Invalid user nastasia from 159.65.176.156 ... |
2020-10-12 03:40:17 |
| 177.221.59.163 | attackbotsspam | Unauthorized connection attempt from IP address 177.221.59.163 on Port 445(SMB) |
2020-10-12 03:56:28 |
| 200.69.141.210 | attackbotsspam | SSH bruteforce |
2020-10-12 03:56:03 |
| 94.102.50.137 | attackspambots | Port scan: Attack repeated for 24 hours |
2020-10-12 04:05:47 |
| 112.85.42.200 | attackspambots | 2020-10-11T22:45:32.823449lavrinenko.info sshd[22623]: Failed password for root from 112.85.42.200 port 55282 ssh2 2020-10-11T22:45:38.259172lavrinenko.info sshd[22623]: Failed password for root from 112.85.42.200 port 55282 ssh2 2020-10-11T22:45:43.570807lavrinenko.info sshd[22623]: Failed password for root from 112.85.42.200 port 55282 ssh2 2020-10-11T22:45:48.218428lavrinenko.info sshd[22623]: Failed password for root from 112.85.42.200 port 55282 ssh2 2020-10-11T22:45:48.675262lavrinenko.info sshd[22623]: error: maximum authentication attempts exceeded for root from 112.85.42.200 port 55282 ssh2 [preauth] ... |
2020-10-12 03:48:47 |
| 112.140.185.246 | attackspambots | Oct 11 21:25:40 *hidden* sshd[6501]: Failed password for *hidden* from 112.140.185.246 port 50986 ssh2 Oct 11 21:27:42 *hidden* sshd[7207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.140.185.246 user=root Oct 11 21:27:44 *hidden* sshd[7207]: Failed password for *hidden* from 112.140.185.246 port 60344 ssh2 Oct 11 21:29:27 *hidden* sshd[7807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.140.185.246 user=root Oct 11 21:29:29 *hidden* sshd[7807]: Failed password for *hidden* from 112.140.185.246 port 40202 ssh2 |
2020-10-12 03:43:01 |
| 106.225.147.63 | attack | Lines containing failures of 106.225.147.63 Oct 10 08:58:15 newdogma sshd[16052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.147.63 user=r.r Oct 10 08:58:16 newdogma sshd[16052]: Failed password for r.r from 106.225.147.63 port 57391 ssh2 Oct 10 08:58:17 newdogma sshd[16052]: Received disconnect from 106.225.147.63 port 57391:11: Bye Bye [preauth] Oct 10 08:58:17 newdogma sshd[16052]: Disconnected from authenticating user r.r 106.225.147.63 port 57391 [preauth] Oct 10 09:10:53 newdogma sshd[16450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.147.63 user=r.r Oct 10 09:10:55 newdogma sshd[16450]: Failed password for r.r from 106.225.147.63 port 53846 ssh2 Oct 10 09:10:55 newdogma sshd[16450]: Received disconnect from 106.225.147.63 port 53846:11: Bye Bye [preauth] Oct 10 09:10:55 newdogma sshd[16450]: Disconnected from authenticating user r.r 106.225.147.63 port 53846........ ------------------------------ |
2020-10-12 03:44:31 |
| 122.51.208.60 | attack | 2020-10-11T11:33:47.999127ks3355764 sshd[5517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.208.60 user=root 2020-10-11T11:33:49.986768ks3355764 sshd[5517]: Failed password for root from 122.51.208.60 port 40802 ssh2 ... |
2020-10-12 04:13:57 |
| 74.82.47.62 | attackspam | srv02 Mass scanning activity detected Target: 389(ldap) .. |
2020-10-12 04:16:06 |
| 45.153.203.180 | attack | SSH login attempts. |
2020-10-12 03:46:21 |
| 112.85.42.186 | attack | Oct 11 16:50:15 shivevps sshd[12896]: Failed password for root from 112.85.42.186 port 50039 ssh2 Oct 11 16:51:31 shivevps sshd[12929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root Oct 11 16:51:33 shivevps sshd[12929]: Failed password for root from 112.85.42.186 port 12959 ssh2 ... |
2020-10-12 04:02:22 |
| 1.214.220.227 | attack | 1.214.220.227 (KR/South Korea/mail.tesk.co.kr), 12 distributed sshd attacks on account [root] in the last 3600 secs |
2020-10-12 03:42:40 |