City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.245.240.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54212
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;89.245.240.66. IN A
;; AUTHORITY SECTION:
. 245 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 09:25:14 CST 2022
;; MSG SIZE rcvd: 10666.240.245.89.in-addr.arpa domain name pointer i59F5F042.versanet.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
66.240.245.89.in-addr.arpa name = i59F5F042.versanet.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 5.3.191.78 | attack | [portscan] Port scan |
2020-05-27 06:41:39 |
| 114.237.109.230 | attack | SpamScore above: 10.0 |
2020-05-27 06:26:11 |
| 125.124.147.191 | attackbots | SSH Brute Force |
2020-05-27 06:22:24 |
| 104.206.128.78 | attack | SmallBizIT.US 1 packets to tcp(21) |
2020-05-27 06:24:13 |
| 69.94.143.219 | attack | TCP src-port=48845 dst-port=25 Listed on spamcop zen-spamhaus spam-sorbs (109) |
2020-05-27 06:36:23 |
| 121.100.17.42 | attack | Invalid user svn from 121.100.17.42 port 42514 |
2020-05-27 06:55:38 |
| 109.87.115.220 | attackspam | 101. On May 26 2020 experienced a Brute Force SSH login attempt -> 2 unique times by 109.87.115.220. |
2020-05-27 06:29:30 |
| 185.151.242.186 | attack | TCP ports : 3387 / 3392 |
2020-05-27 06:56:32 |
| 222.122.60.110 | attackbots | May 26 22:47:41 srv-ubuntu-dev3 sshd[126161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.60.110 user=root May 26 22:47:43 srv-ubuntu-dev3 sshd[126161]: Failed password for root from 222.122.60.110 port 43462 ssh2 May 26 22:51:48 srv-ubuntu-dev3 sshd[126821]: Invalid user odoo from 222.122.60.110 May 26 22:51:48 srv-ubuntu-dev3 sshd[126821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.60.110 May 26 22:51:48 srv-ubuntu-dev3 sshd[126821]: Invalid user odoo from 222.122.60.110 May 26 22:51:50 srv-ubuntu-dev3 sshd[126821]: Failed password for invalid user odoo from 222.122.60.110 port 48802 ssh2 May 26 22:55:44 srv-ubuntu-dev3 sshd[127468]: Invalid user o360op from 222.122.60.110 May 26 22:55:44 srv-ubuntu-dev3 sshd[127468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.60.110 May 26 22:55:44 srv-ubuntu-dev3 sshd[127468]: Invalid user o3 ... |
2020-05-27 06:30:11 |
| 190.187.111.87 | attackspambots | Brute force attempt |
2020-05-27 06:51:25 |
| 106.13.144.207 | attackspam | SSH Invalid Login |
2020-05-27 06:34:10 |
| 142.93.235.47 | attack | May 26 21:21:52 localhost sshd[87458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 user=root May 26 21:21:54 localhost sshd[87458]: Failed password for root from 142.93.235.47 port 54578 ssh2 May 26 21:25:09 localhost sshd[87864]: Invalid user balu from 142.93.235.47 port 59196 May 26 21:25:09 localhost sshd[87864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 May 26 21:25:09 localhost sshd[87864]: Invalid user balu from 142.93.235.47 port 59196 May 26 21:25:10 localhost sshd[87864]: Failed password for invalid user balu from 142.93.235.47 port 59196 ssh2 ... |
2020-05-27 06:46:52 |
| 138.68.242.220 | attack | (sshd) Failed SSH login from 138.68.242.220 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 27 00:08:10 amsweb01 sshd[28183]: Invalid user office from 138.68.242.220 port 60876 May 27 00:08:13 amsweb01 sshd[28183]: Failed password for invalid user office from 138.68.242.220 port 60876 ssh2 May 27 00:22:50 amsweb01 sshd[2130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.242.220 user=root May 27 00:22:52 amsweb01 sshd[2130]: Failed password for root from 138.68.242.220 port 48932 ssh2 May 27 00:26:42 amsweb01 sshd[2558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.242.220 user=root |
2020-05-27 06:49:06 |
| 68.183.227.196 | attackspam | May 26 19:21:32 firewall sshd[31816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.227.196 May 26 19:21:32 firewall sshd[31816]: Invalid user ppo from 68.183.227.196 May 26 19:21:34 firewall sshd[31816]: Failed password for invalid user ppo from 68.183.227.196 port 51360 ssh2 ... |
2020-05-27 06:25:29 |
| 69.172.75.11 | attack | Lines containing failures of 69.172.75.11 May 26 17:24:46 betty msd[10608]: Inhostnameializing for connection from 69.172.75.11 May x@x May x@x May x@x May x@x May x@x May x@x May x@x May x@x May x@x May 26 17:24:51 betty msd[10712]: Inhostnameializing for connection from 69.172.75.11 May x@x May x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=69.172.75.11 |
2020-05-27 06:28:50 |