City: unknown
Region: unknown
Country: Uzbekistan
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 94.158.54.251 | attackbots | Nov 6 07:09:18 mxgate1 postfix/postscreen[20039]: CONNECT from [94.158.54.251]:65322 to [176.31.12.44]:25 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20043]: addr 94.158.54.251 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20043]: addr 94.158.54.251 listed by domain zen.spamhaus.org as 127.0.0.10 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20042]: addr 94.158.54.251 listed by domain bl.spamcop.net as 127.0.0.2 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20041]: addr 94.158.54.251 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20040]: addr 94.158.54.251 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20050]: addr 94.158.54.251 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 6 07:09:18 mxgate1 postfix/postscreen[20039]: PREGREET 22 after 0.17 from [94.158.54.251]:65322: EHLO [94.158.54.251] Nov 6 07:09:18 mxgate1 postfix/postscreen[20039]: DNSBL rank ........ ------------------------------- |
2019-11-06 17:29:41 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.158.54.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43646
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;94.158.54.201. IN A
;; AUTHORITY SECTION:
. 354 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 18:35:36 CST 2022
;; MSG SIZE rcvd: 106201.54.158.94.in-addr.arpa domain name pointer mail.uzbairports.uz.54.158.94.in-addr.arpa.
201.54.158.94.in-addr.arpa domain name pointer mail.uzairports.com.
201.54.158.94.in-addr.arpa domain name pointer mail.uzport.com.
201.54.158.94.in-addr.arpa domain name pointer mail.silk-avia.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
201.54.158.94.in-addr.arpa name = mail.uzport.com.
201.54.158.94.in-addr.arpa name = mail.silk-avia.com.
201.54.158.94.in-addr.arpa name = mail.uzbairports.uz.54.158.94.in-addr.arpa.
201.54.158.94.in-addr.arpa name = mail.uzairports.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 49.249.232.190 | attack | Unauthorized connection attempt from IP address 49.249.232.190 on Port 445(SMB) |
2020-07-07 22:16:59 |
| 222.186.175.151 | attack | Jul 7 16:20:19 minden010 sshd[6803]: Failed password for root from 222.186.175.151 port 3774 ssh2 Jul 7 16:20:32 minden010 sshd[6803]: error: maximum authentication attempts exceeded for root from 222.186.175.151 port 3774 ssh2 [preauth] Jul 7 16:20:41 minden010 sshd[6937]: Failed password for root from 222.186.175.151 port 28590 ssh2 ... |
2020-07-07 22:21:45 |
| 119.47.90.197 | attack | SSH login attempts. |
2020-07-07 21:59:07 |
| 141.98.81.150 | attackspambots | SSH login attempts. |
2020-07-07 21:58:26 |
| 45.143.220.116 | attackbots | Jul 7 14:35:35 debian-2gb-nbg1-2 kernel: \[16383938.916708\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.220.116 DST=195.201.40.59 LEN=443 TOS=0x00 PREC=0x00 TTL=55 ID=0 DF PROTO=UDP SPT=5464 DPT=5060 LEN=423 |
2020-07-07 22:15:27 |
| 141.105.137.53 | attack | Unauthorized connection attempt from IP address 141.105.137.53 on Port 445(SMB) |
2020-07-07 22:06:27 |
| 138.197.69.184 | attackbotsspam | Jul 7 13:59:29 buvik sshd[13448]: Failed password for invalid user 0 from 138.197.69.184 port 45584 ssh2 Jul 7 14:01:28 buvik sshd[14219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.69.184 user=backup Jul 7 14:01:30 buvik sshd[14219]: Failed password for backup from 138.197.69.184 port 51522 ssh2 ... |
2020-07-07 22:10:49 |
| 222.186.15.115 | attackbots | Jul 7 14:24:29 ip-172-31-61-156 sshd[15570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root Jul 7 14:24:31 ip-172-31-61-156 sshd[15570]: Failed password for root from 222.186.15.115 port 46367 ssh2 ... |
2020-07-07 22:29:16 |
| 185.30.233.196 | attackbots | Port 22 Scan, PTR: None |
2020-07-07 22:13:53 |
| 110.36.183.7 | attack | Unauthorized connection attempt from IP address 110.36.183.7 on Port 445(SMB) |
2020-07-07 22:05:16 |
| 198.71.237.24 | attackspam | Automatic report - XMLRPC Attack |
2020-07-07 22:05:49 |
| 145.239.7.56 | attack | Jul 7 14:47:30 master sshd[2276]: Failed password for invalid user admin from 145.239.7.56 port 56696 ssh2 |
2020-07-07 22:20:39 |
| 61.177.172.54 | attackbotsspam | [MK-VM1] SSH login failed |
2020-07-07 22:03:17 |
| 14.250.60.242 | attackbots | Unauthorized connection attempt from IP address 14.250.60.242 on Port 445(SMB) |
2020-07-07 22:15:53 |
| 119.122.112.64 | attack | Unauthorized connection attempt from IP address 119.122.112.64 on Port 445(SMB) |
2020-07-07 22:24:14 |