City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.102.134.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37049
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.102.134.129. IN A
;; AUTHORITY SECTION:
. 481 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022032000 1800 900 604800 86400
;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 20 16:20:56 CST 2022
;; MSG SIZE rcvd: 108129.134.102.104.in-addr.arpa domain name pointer a104-102-134-129.deploy.static.akamaitechnologies.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
129.134.102.104.in-addr.arpa name = a104-102-134-129.deploy.static.akamaitechnologies.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 218.92.0.185 | attackbots | Sep 10 08:24:40 scw-6657dc sshd[2333]: Failed password for root from 218.92.0.185 port 60542 ssh2 Sep 10 08:24:40 scw-6657dc sshd[2333]: Failed password for root from 218.92.0.185 port 60542 ssh2 Sep 10 08:24:44 scw-6657dc sshd[2333]: Failed password for root from 218.92.0.185 port 60542 ssh2 ... |
2020-09-10 16:26:02 |
| 46.105.163.8 | attackbots | Sep 10 05:42:29 ip106 sshd[31829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.163.8 Sep 10 05:42:31 ip106 sshd[31829]: Failed password for invalid user user from 46.105.163.8 port 47852 ssh2 ... |
2020-09-10 16:23:54 |
| 106.75.156.107 | attack | "fail2ban match" |
2020-09-10 16:17:01 |
| 222.186.175.169 | attack | [MK-VM6] SSH login failed |
2020-09-10 16:28:56 |
| 36.82.192.37 | attackspam | Sep 9 20:57:43 markkoudstaal sshd[11641]: Failed password for root from 36.82.192.37 port 58053 ssh2 Sep 9 21:04:18 markkoudstaal sshd[13554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.82.192.37 Sep 9 21:04:20 markkoudstaal sshd[13554]: Failed password for invalid user guest1 from 36.82.192.37 port 43869 ssh2 ... |
2020-09-10 16:14:10 |
| 92.138.80.245 | attack | [portscan] tcp/23 [TELNET] *(RWIN=14600)(09100830) |
2020-09-10 16:09:21 |
| 27.50.49.154 | attack | Sep 10 01:47:59 ssh2 sshd[78585]: Connection closed by invalid user root 27.50.49.154 port 48230 [preauth] Sep 10 01:47:59 ssh2 sshd[78587]: Connection from 27.50.49.154 port 48304 on 192.240.101.3 port 22 Sep 10 01:48:00 ssh2 sshd[78587]: User root from 27.50.49.154 not allowed because not listed in AllowUsers ... |
2020-09-10 16:24:56 |
| 120.132.13.206 | attackspambots | Time: Thu Sep 10 05:21:03 2020 +0000 IP: 120.132.13.206 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 10 05:09:45 vps1 sshd[25375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.13.206 user=root Sep 10 05:09:47 vps1 sshd[25375]: Failed password for root from 120.132.13.206 port 43866 ssh2 Sep 10 05:18:11 vps1 sshd[26097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.13.206 user=root Sep 10 05:18:13 vps1 sshd[26097]: Failed password for root from 120.132.13.206 port 47786 ssh2 Sep 10 05:20:59 vps1 sshd[26302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.13.206 user=root |
2020-09-10 16:32:31 |
| 138.197.131.66 | attack | 138.197.131.66 - - [10/Sep/2020:09:37:17 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.131.66 - - [10/Sep/2020:09:40:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 13510 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-09-10 16:32:12 |
| 218.92.0.200 | attackbots | Sep 10 10:36:58 itv-usvr-01 sshd[29432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.200 user=root Sep 10 10:37:00 itv-usvr-01 sshd[29432]: Failed password for root from 218.92.0.200 port 57173 ssh2 |
2020-09-10 16:37:30 |
| 91.134.173.100 | attackbotsspam | Sep 10 04:51:31 firewall sshd[21702]: Failed password for root from 91.134.173.100 port 59166 ssh2 Sep 10 04:54:51 firewall sshd[21797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.173.100 user=root Sep 10 04:54:53 firewall sshd[21797]: Failed password for root from 91.134.173.100 port 36064 ssh2 ... |
2020-09-10 16:18:42 |
| 122.51.204.45 | attackspam | $f2bV_matches |
2020-09-10 16:37:51 |
| 124.192.225.187 | attackbots | Sep 10 09:01:45 gospond sshd[14485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.192.225.187 user=root Sep 10 09:01:47 gospond sshd[14485]: Failed password for root from 124.192.225.187 port 38297 ssh2 Sep 10 09:05:20 gospond sshd[14533]: Invalid user apc from 124.192.225.187 port 40360 ... |
2020-09-10 16:36:50 |
| 190.109.43.252 | attack | (smtpauth) Failed SMTP AUTH login from 190.109.43.252 (AR/Argentina/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-09 21:22:03 plain authenticator failed for ([190.109.43.252]) [190.109.43.252]: 535 Incorrect authentication data (set_id=info@tochalfire.com) |
2020-09-10 16:02:28 |
| 181.114.208.102 | attackspam | (smtpauth) Failed SMTP AUTH login from 181.114.208.102 (AR/Argentina/host-208-102.adc.net.ar): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-09 21:22:11 plain authenticator failed for ([181.114.208.102]) [181.114.208.102]: 535 Incorrect authentication data (set_id=info) |
2020-09-10 15:58:24 |