City: unknown
Region: unknown
Country: Ukraine
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 95.109.193.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16004
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;95.109.193.245. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021601 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 05:42:37 CST 2025
;; MSG SIZE rcvd: 107245.193.109.95.in-addr.arpa domain name pointer 95-109-193-245.vf-ua.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
245.193.109.95.in-addr.arpa name = 95-109-193-245.vf-ua.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 82.112.42.141 | attackspam | 445/tcp 445/tcp 445/tcp... [2019-04-23/06-24]10pkt,1pt.(tcp) |
2019-06-24 21:03:17 |
| 202.88.150.166 | attackspambots | 445/tcp 445/tcp [2019-06-18/24]2pkt |
2019-06-24 21:19:02 |
| 222.186.58.48 | attackbots | Jun 24 18:25:56 tanzim-HP-Z238-Microtower-Workstation sshd\[21231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.58.48 user=root Jun 24 18:25:58 tanzim-HP-Z238-Microtower-Workstation sshd\[21231\]: Failed password for root from 222.186.58.48 port 4022 ssh2 Jun 24 18:26:00 tanzim-HP-Z238-Microtower-Workstation sshd\[21233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.58.48 user=root ... |
2019-06-24 21:09:36 |
| 51.15.7.60 | attackspam | Jun 24 02:12:40 risk sshd[24995]: reveeclipse mapping checking getaddrinfo for 51-15-7-60.rev.poneytelecom.eu [51.15.7.60] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 24 02:12:40 risk sshd[24995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.7.60 user=r.r Jun 24 02:12:42 risk sshd[24995]: Failed password for r.r from 51.15.7.60 port 54622 ssh2 Jun 24 02:12:45 risk sshd[24995]: Failed password for r.r from 51.15.7.60 port 54622 ssh2 Jun 24 02:12:47 risk sshd[24995]: Failed password for r.r from 51.15.7.60 port 54622 ssh2 Jun 24 02:12:50 risk sshd[24995]: Failed password for r.r from 51.15.7.60 port 54622 ssh2 Jun 24 02:12:52 risk sshd[24995]: Failed password for r.r from 51.15.7.60 port 54622 ssh2 Jun 24 02:12:55 risk sshd[24995]: Failed password for r.r from 51.15.7.60 port 54622 ssh2 Jun 24 02:12:55 risk sshd[24995]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.7.60 user=r.r ........ ------------------------------------- |
2019-06-24 21:15:22 |
| 111.231.219.142 | attackspam | Jun 24 09:15:34 hostnameghostname sshd[11399]: Invalid user weblogic from 111.231.219.142 Jun 24 09:15:36 hostnameghostname sshd[11399]: Failed password for invalid user weblogic from 111.231.219.142 port 58825 ssh2 Jun 24 09:17:54 hostnameghostname sshd[11704]: Invalid user murai2 from 111.231.219.142 Jun 24 09:17:56 hostnameghostname sshd[11704]: Failed password for invalid user murai2 from 111.231.219.142 port 37626 ssh2 Jun 24 09:19:36 hostnameghostname sshd[11961]: Invalid user pentecote from 111.231.219.142 Jun 24 09:19:38 hostnameghostname sshd[11961]: Failed password for invalid user pentecote from 111.231.219.142 port 44631 ssh2 Jun 24 09:21:14 hostnameghostname sshd[12226]: Invalid user view from 111.231.219.142 Jun 24 09:21:16 hostnameghostname sshd[12226]: Failed password for invalid user view from 111.231.219.142 port 51629 ssh2 Jun 24 09:24:28 hostnameghostname sshd[12736]: Invalid user proxyuser from 111.231.219.142 Jun 24 09:24:31 hostnameghostname sshd[1........ ------------------------------ |
2019-06-24 20:46:10 |
| 77.40.53.137 | attackspambots | Jun 24 14:11:00 ncomp postfix/smtpd[4621]: warning: unknown[77.40.53.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 24 14:11:00 ncomp postfix/smtpd[4623]: warning: unknown[77.40.53.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 24 14:11:02 ncomp postfix/smtpd[4627]: warning: unknown[77.40.53.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-06-24 21:09:59 |
| 149.202.149.53 | attack | Jun 24 01:09:26 nbi10516-7 sshd[21293]: Invalid user job from 149.202.149.53 port 60850 Jun 24 01:09:28 nbi10516-7 sshd[21293]: Failed password for invalid user job from 149.202.149.53 port 60850 ssh2 Jun 24 01:09:28 nbi10516-7 sshd[21293]: Received disconnect from 149.202.149.53 port 60850:11: Bye Bye [preauth] Jun 24 01:09:28 nbi10516-7 sshd[21293]: Disconnected from 149.202.149.53 port 60850 [preauth] Jun 24 01:12:36 nbi10516-7 sshd[27460]: Invalid user joe from 149.202.149.53 port 40888 Jun 24 01:12:38 nbi10516-7 sshd[27460]: Failed password for invalid user joe from 149.202.149.53 port 40888 ssh2 Jun 24 01:12:38 nbi10516-7 sshd[27460]: Received disconnect from 149.202.149.53 port 40888:11: Bye Bye [preauth] Jun 24 01:12:38 nbi10516-7 sshd[27460]: Disconnected from 149.202.149.53 port 40888 [preauth] Jun 24 01:13:56 nbi10516-7 sshd[29875]: Invalid user marta from 149.202.149.53 port 56426 Jun 24 01:13:57 nbi10516-7 sshd[29875]: Failed password for invalid user marta........ ------------------------------- |
2019-06-24 21:04:28 |
| 77.247.110.196 | attack | \[2019-06-24 08:59:05\] SECURITY\[1857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-24T08:59:05.026-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441217900479",SessionID="0x7fc4242c7308",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.196/56816",ACLName="no_extension_match" \[2019-06-24 09:00:20\] SECURITY\[1857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-24T09:00:20.774-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="001441217900479",SessionID="0x7fc4242a2868",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.196/52124",ACLName="no_extension_match" \[2019-06-24 09:01:36\] SECURITY\[1857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-24T09:01:36.298-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="002441217900479",SessionID="0x7fc4242a2868",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.196/50957",ACLName="no |
2019-06-24 21:07:17 |
| 77.247.110.134 | attackspam | 5123/udp 5122/udp 5121/udp... [2019-06-04/23]109pkt,42pt.(udp) |
2019-06-24 21:32:32 |
| 168.195.210.192 | attack | mail.log:Jun 20 01:27:19 mail postfix/smtpd[20558]: warning: 168.195.210.192.techinfotelecomrj.com.br[168.195.210.192]: SASL PLAIN authentication failed: authentication failure |
2019-06-24 21:00:48 |
| 83.110.101.159 | attackbots | 37215/tcp 37215/tcp 37215/tcp... [2019-06-17/24]7pkt,1pt.(tcp) |
2019-06-24 21:25:15 |
| 168.195.210.45 | attackspambots | mail.log:Jun 17 21:47:04 mail postfix/smtpd[10739]: warning: 168.195.210.45.techinfotelecomrj.com.br[168.195.210.45]: SASL PLAIN authentication failed: authentication failure |
2019-06-24 21:14:11 |
| 159.89.180.214 | attackbots | Automatic report - Web App Attack |
2019-06-24 21:32:53 |
| 185.36.81.173 | attack | Jun 24 03:37:34 cac1d2 postfix/smtpd\[28462\]: warning: unknown\[185.36.81.173\]: SASL LOGIN authentication failed: authentication failure Jun 24 04:37:46 cac1d2 postfix/smtpd\[3345\]: warning: unknown\[185.36.81.173\]: SASL LOGIN authentication failed: authentication failure Jun 24 05:37:53 cac1d2 postfix/smtpd\[10658\]: warning: unknown\[185.36.81.173\]: SASL LOGIN authentication failed: authentication failure ... |
2019-06-24 20:38:30 |
| 189.89.223.121 | attackbots | SMTP-sasl brute force ... |
2019-06-24 21:21:14 |