City: Aktau
Region: Mangistauskaya Oblast'
Country: Kazakhstan
Internet Service Provider: Kazakhtelecom
Hostname: unknown
Organization: JSC Kazakhtelecom
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.47.252.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15991
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.47.252.142. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019062701 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 28 00:39:31 CST 2019
;; MSG SIZE rcvd: 117142.252.47.92.in-addr.arpa domain name pointer 92.47.252.142.megaline.telecom.kz.Server: 183.60.82.98
Address: 183.60.82.98#53
Non-authoritative answer:
142.252.47.92.in-addr.arpa name = 92.47.252.142.megaline.telecom.kz.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 115.159.25.60 | attack | 2019-10-18T10:39:43.741376hub.schaetter.us sshd\[11544\]: Invalid user 14 from 115.159.25.60 port 40870 2019-10-18T10:39:43.760219hub.schaetter.us sshd\[11544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.25.60 2019-10-18T10:39:45.579735hub.schaetter.us sshd\[11544\]: Failed password for invalid user 14 from 115.159.25.60 port 40870 ssh2 2019-10-18T10:44:30.842961hub.schaetter.us sshd\[11585\]: Invalid user handbook from 115.159.25.60 port 49634 2019-10-18T10:44:30.850991hub.schaetter.us sshd\[11585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.25.60 ... |
2019-10-18 19:43:10 |
| 149.126.16.154 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 18-10-2019 12:45:23. |
2019-10-18 19:52:48 |
| 61.241.171.85 | attack | Scanning random ports - tries to find possible vulnerable services |
2019-10-18 19:30:52 |
| 104.168.253.82 | attack | 10/18/2019-13:45:26.329983 104.168.253.82 Protocol: 6 ET COMPROMISED Known Compromised or Hostile Host Traffic group 1 |
2019-10-18 19:49:27 |
| 101.36.138.61 | attackbots | Tried sshing with brute force. |
2019-10-18 19:28:21 |
| 103.21.228.3 | attack | Oct 18 07:40:24 ny01 sshd[17853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.228.3 Oct 18 07:40:26 ny01 sshd[17853]: Failed password for invalid user kathi from 103.21.228.3 port 41843 ssh2 Oct 18 07:45:16 ny01 sshd[18234]: Failed password for root from 103.21.228.3 port 60860 ssh2 |
2019-10-18 20:02:59 |
| 124.89.8.196 | attackspambots | Oct1810:01:32server4pure-ftpd:\(\?@119.41.152.26\)[WARNING]Authenticationfailedforuser[www]Oct1810:05:44server4pure-ftpd:\(\?@113.108.126.25\)[WARNING]Authenticationfailedforuser[www]Oct1809:36:42server4pure-ftpd:\(\?@113.110.226.30\)[WARNING]Authenticationfailedforuser[www]Oct1809:40:51server4pure-ftpd:\(\?@111.61.65.233\)[WARNING]Authenticationfailedforuser[www]Oct1809:40:57server4pure-ftpd:\(\?@111.61.65.233\)[WARNING]Authenticationfailedforuser[www]Oct1810:05:53server4pure-ftpd:\(\?@113.108.126.25\)[WARNING]Authenticationfailedforuser[www]Oct1809:36:50server4pure-ftpd:\(\?@113.110.226.30\)[WARNING]Authenticationfailedforuser[www]Oct1809:48:28server4pure-ftpd:\(\?@124.89.8.196\)[WARNING]Authenticationfailedforuser[www]Oct1810:01:25server4pure-ftpd:\(\?@119.41.152.26\)[WARNING]Authenticationfailedforuser[www]Oct1809:48:22server4pure-ftpd:\(\?@124.89.8.196\)[WARNING]Authenticationfailedforuser[www]IPAddressesBlocked:119.41.152.26\(CN/China/-\)113.108.126.25\(CN/China/-\)113.110.226.30\(CN/China/-\)111.61.65. |
2019-10-18 19:34:17 |
| 65.169.38.21 | attack | failed_logins |
2019-10-18 20:04:32 |
| 49.247.213.143 | attackspam | Oct 17 20:47:17 friendsofhawaii sshd\[11287\]: Invalid user dodsserver from 49.247.213.143 Oct 17 20:47:17 friendsofhawaii sshd\[11287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.213.143 Oct 17 20:47:19 friendsofhawaii sshd\[11287\]: Failed password for invalid user dodsserver from 49.247.213.143 port 42816 ssh2 Oct 17 20:54:17 friendsofhawaii sshd\[11895\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.213.143 user=root Oct 17 20:54:19 friendsofhawaii sshd\[11895\]: Failed password for root from 49.247.213.143 port 54190 ssh2 |
2019-10-18 19:29:46 |
| 218.104.231.2 | attack | Oct 18 05:43:34 www sshd\[1076\]: Invalid user cuigj from 218.104.231.2 port 48955 ... |
2019-10-18 19:35:13 |
| 80.211.113.144 | attackbots | Automatic report - Banned IP Access |
2019-10-18 19:51:57 |
| 167.88.7.134 | attackbotsspam | Automatic report - Port Scan |
2019-10-18 19:47:39 |
| 221.228.76.91 | attackspam | Port 1433 Scan |
2019-10-18 19:37:09 |
| 111.93.52.182 | attack | 2019-10-18T13:40:07.625732scmdmz1 sshd\[10906\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.52.182 user=root 2019-10-18T13:40:09.624298scmdmz1 sshd\[10906\]: Failed password for root from 111.93.52.182 port 3116 ssh2 2019-10-18T13:45:20.692619scmdmz1 sshd\[11293\]: Invalid user webmaster from 111.93.52.182 port 19331 ... |
2019-10-18 19:56:02 |
| 54.37.233.192 | attackbots | Oct 18 07:16:21 xtremcommunity sshd\[643139\]: Invalid user iopkl\;, from 54.37.233.192 port 59166 Oct 18 07:16:21 xtremcommunity sshd\[643139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.233.192 Oct 18 07:16:23 xtremcommunity sshd\[643139\]: Failed password for invalid user iopkl\;, from 54.37.233.192 port 59166 ssh2 Oct 18 07:20:20 xtremcommunity sshd\[643222\]: Invalid user admin123456789 from 54.37.233.192 port 46588 Oct 18 07:20:20 xtremcommunity sshd\[643222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.233.192 ... |
2019-10-18 19:33:23 |