City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.124.138.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62202
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;103.124.138.136. IN A
;; AUTHORITY SECTION:
. 169 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400
;; Query time: 368 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 05:14:50 CST 2022
;; MSG SIZE rcvd: 108
136.138.124.103.in-addr.arpa domain name pointer host-103.124.138-136.gmdp.net.id.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
136.138.124.103.in-addr.arpa name = host-103.124.138-136.gmdp.net.id.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 80.90.135.230 | attackspam | Aug 12 05:06:17 mail.srvfarm.net postfix/smtps/smtpd[2866679]: warning: 80-90-135-230.static.oxid.cz[80.90.135.230]: SASL PLAIN authentication failed: Aug 12 05:06:17 mail.srvfarm.net postfix/smtps/smtpd[2866679]: lost connection after AUTH from 80-90-135-230.static.oxid.cz[80.90.135.230] Aug 12 05:07:19 mail.srvfarm.net postfix/smtps/smtpd[2853558]: warning: 80-90-135-230.static.oxid.cz[80.90.135.230]: SASL PLAIN authentication failed: Aug 12 05:07:19 mail.srvfarm.net postfix/smtps/smtpd[2853558]: lost connection after AUTH from 80-90-135-230.static.oxid.cz[80.90.135.230] Aug 12 05:15:23 mail.srvfarm.net postfix/smtpd[2866067]: warning: 80-90-135-230.static.oxid.cz[80.90.135.230]: SASL PLAIN authentication failed: |
2020-08-12 14:46:54 |
| 132.148.154.8 | attackbots | 132.148.154.8 - - [12/Aug/2020:04:51:57 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.154.8 - - [12/Aug/2020:04:51:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.154.8 - - [12/Aug/2020:04:52:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2037 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-12 15:12:59 |
| 49.233.12.222 | attack | (sshd) Failed SSH login from 49.233.12.222 (CN/China/-): 5 in the last 3600 secs |
2020-08-12 15:10:47 |
| 78.8.161.130 | attackbots | Aug 12 05:10:53 mail.srvfarm.net postfix/smtpd[2866066]: warning: unknown[78.8.161.130]: SASL PLAIN authentication failed: Aug 12 05:10:53 mail.srvfarm.net postfix/smtpd[2866066]: lost connection after AUTH from unknown[78.8.161.130] Aug 12 05:16:09 mail.srvfarm.net postfix/smtpd[2866063]: warning: unknown[78.8.161.130]: SASL PLAIN authentication failed: Aug 12 05:16:09 mail.srvfarm.net postfix/smtpd[2866063]: lost connection after AUTH from unknown[78.8.161.130] Aug 12 05:20:34 mail.srvfarm.net postfix/smtps/smtpd[2853844]: warning: unknown[78.8.161.130]: SASL PLAIN authentication failed: |
2020-08-12 14:47:59 |
| 78.128.113.116 | attackspam | Brute Force attack - banned by Fail2Ban |
2020-08-12 14:47:35 |
| 61.177.172.41 | attack | Aug 12 09:13:51 plg sshd[29699]: Failed none for invalid user root from 61.177.172.41 port 17453 ssh2 Aug 12 09:13:51 plg sshd[29699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.41 user=root Aug 12 09:13:53 plg sshd[29699]: Failed password for invalid user root from 61.177.172.41 port 17453 ssh2 Aug 12 09:13:57 plg sshd[29699]: Failed password for invalid user root from 61.177.172.41 port 17453 ssh2 Aug 12 09:14:01 plg sshd[29699]: Failed password for invalid user root from 61.177.172.41 port 17453 ssh2 Aug 12 09:14:04 plg sshd[29699]: Failed password for invalid user root from 61.177.172.41 port 17453 ssh2 Aug 12 09:14:08 plg sshd[29699]: Failed password for invalid user root from 61.177.172.41 port 17453 ssh2 Aug 12 09:14:09 plg sshd[29699]: error: maximum authentication attempts exceeded for invalid user root from 61.177.172.41 port 17453 ssh2 [preauth] Aug 12 09:14:12 plg sshd[29705]: pam_unix(sshd:auth): authentication failu ... |
2020-08-12 15:17:55 |
| 2002:b9ea:d842::b9ea:d842 | attackspambots | Aug 12 05:40:47 web01.agentur-b-2.de postfix/smtpd[1176310]: warning: unknown[2002:b9ea:d842::b9ea:d842]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:40:47 web01.agentur-b-2.de postfix/smtpd[1176310]: lost connection after AUTH from unknown[2002:b9ea:d842::b9ea:d842] Aug 12 05:44:43 web01.agentur-b-2.de postfix/smtpd[1171802]: warning: unknown[2002:b9ea:d842::b9ea:d842]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:44:43 web01.agentur-b-2.de postfix/smtpd[1171802]: lost connection after AUTH from unknown[2002:b9ea:d842::b9ea:d842] Aug 12 05:49:07 web01.agentur-b-2.de postfix/smtpd[1171802]: warning: unknown[2002:b9ea:d842::b9ea:d842]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:49:07 web01.agentur-b-2.de postfix/smtpd[1171802]: lost connection after AUTH from unknown[2002:b9ea:d842::b9ea:d842] |
2020-08-12 15:01:10 |
| 191.53.193.130 | attackbots | Aug 12 05:04:50 mail.srvfarm.net postfix/smtpd[2866059]: warning: unknown[191.53.193.130]: SASL PLAIN authentication failed: Aug 12 05:04:51 mail.srvfarm.net postfix/smtpd[2866059]: lost connection after AUTH from unknown[191.53.193.130] Aug 12 05:06:42 mail.srvfarm.net postfix/smtps/smtpd[2853844]: warning: unknown[191.53.193.130]: SASL PLAIN authentication failed: Aug 12 05:06:42 mail.srvfarm.net postfix/smtps/smtpd[2853844]: lost connection after AUTH from unknown[191.53.193.130] Aug 12 05:09:08 mail.srvfarm.net postfix/smtps/smtpd[2853878]: warning: unknown[191.53.193.130]: SASL PLAIN authentication failed: |
2020-08-12 14:36:47 |
| 5.188.206.197 | attackspambots | 2020-08-12 08:30:23 dovecot_login authenticator failed for \(\[5.188.206.197\]\) \[5.188.206.197\]: 535 Incorrect authentication data \(set_id=postmaster@nophost.com\) 2020-08-12 08:30:33 dovecot_login authenticator failed for \(\[5.188.206.197\]\) \[5.188.206.197\]: 535 Incorrect authentication data 2020-08-12 08:30:44 dovecot_login authenticator failed for \(\[5.188.206.197\]\) \[5.188.206.197\]: 535 Incorrect authentication data 2020-08-12 08:30:52 dovecot_login authenticator failed for \(\[5.188.206.197\]\) \[5.188.206.197\]: 535 Incorrect authentication data 2020-08-12 08:31:06 dovecot_login authenticator failed for \(\[5.188.206.197\]\) \[5.188.206.197\]: 535 Incorrect authentication data |
2020-08-12 14:50:30 |
| 191.53.192.65 | attack | Aug 12 05:02:48 mail.srvfarm.net postfix/smtps/smtpd[2853844]: warning: unknown[191.53.192.65]: SASL PLAIN authentication failed: Aug 12 05:02:49 mail.srvfarm.net postfix/smtps/smtpd[2853844]: lost connection after AUTH from unknown[191.53.192.65] Aug 12 05:09:55 mail.srvfarm.net postfix/smtpd[2866067]: warning: unknown[191.53.192.65]: SASL PLAIN authentication failed: Aug 12 05:09:56 mail.srvfarm.net postfix/smtpd[2866067]: lost connection after AUTH from unknown[191.53.192.65] Aug 12 05:10:57 mail.srvfarm.net postfix/smtpd[2866059]: warning: unknown[191.53.192.65]: SASL PLAIN authentication failed: |
2020-08-12 14:37:03 |
| 2002:b9ea:d83f::b9ea:d83f | attackbotsspam | Aug 12 05:21:10 web01.agentur-b-2.de postfix/smtpd[1171199]: warning: unknown[2002:b9ea:d83f::b9ea:d83f]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:21:10 web01.agentur-b-2.de postfix/smtpd[1171199]: lost connection after AUTH from unknown[2002:b9ea:d83f::b9ea:d83f] Aug 12 05:23:52 web01.agentur-b-2.de postfix/smtpd[1173881]: warning: unknown[2002:b9ea:d83f::b9ea:d83f]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:23:52 web01.agentur-b-2.de postfix/smtpd[1173881]: lost connection after AUTH from unknown[2002:b9ea:d83f::b9ea:d83f] Aug 12 05:26:46 web01.agentur-b-2.de postfix/smtpd[1173912]: warning: unknown[2002:b9ea:d83f::b9ea:d83f]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-08-12 15:01:58 |
| 218.92.0.145 | attack | Aug 12 07:52:12 vm1 sshd[7381]: Failed password for root from 218.92.0.145 port 51227 ssh2 Aug 12 07:52:25 vm1 sshd[7381]: error: maximum authentication attempts exceeded for root from 218.92.0.145 port 51227 ssh2 [preauth] ... |
2020-08-12 14:54:07 |
| 185.234.216.66 | attackbots | Aug 12 05:09:14 web01.agentur-b-2.de postfix/smtpd[1171200]: warning: unknown[185.234.216.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:09:14 web01.agentur-b-2.de postfix/smtpd[1171200]: lost connection after AUTH from unknown[185.234.216.66] Aug 12 05:13:12 web01.agentur-b-2.de postfix/smtpd[1171800]: warning: unknown[185.234.216.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 05:13:12 web01.agentur-b-2.de postfix/smtpd[1171800]: lost connection after AUTH from unknown[185.234.216.66] Aug 12 05:17:33 web01.agentur-b-2.de postfix/smtpd[1172474]: warning: unknown[185.234.216.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-08-12 14:40:24 |
| 112.85.42.180 | attackspam | 2020-08-12T07:09:33.034911server.espacesoutien.com sshd[15967]: Failed password for root from 112.85.42.180 port 23100 ssh2 2020-08-12T07:09:36.200204server.espacesoutien.com sshd[15967]: Failed password for root from 112.85.42.180 port 23100 ssh2 2020-08-12T07:09:39.782201server.espacesoutien.com sshd[15967]: Failed password for root from 112.85.42.180 port 23100 ssh2 2020-08-12T07:09:46.172214server.espacesoutien.com sshd[15967]: Failed password for root from 112.85.42.180 port 23100 ssh2 ... |
2020-08-12 15:21:00 |
| 118.24.2.59 | attack | Aug 12 07:28:58 pkdns2 sshd\[23535\]: Failed password for root from 118.24.2.59 port 47228 ssh2Aug 12 07:31:20 pkdns2 sshd\[23667\]: Failed password for root from 118.24.2.59 port 42426 ssh2Aug 12 07:32:26 pkdns2 sshd\[23696\]: Failed password for root from 118.24.2.59 port 54138 ssh2Aug 12 07:33:37 pkdns2 sshd\[23733\]: Failed password for root from 118.24.2.59 port 37622 ssh2Aug 12 07:34:42 pkdns2 sshd\[23762\]: Failed password for root from 118.24.2.59 port 49338 ssh2Aug 12 07:35:48 pkdns2 sshd\[23836\]: Failed password for root from 118.24.2.59 port 32812 ssh2 ... |
2020-08-12 15:19:45 |