City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.219.42.137 | attackbotsspam | Jan 18 06:06:37 v2hgb sshd[24639]: Invalid user hive from 104.219.42.137 port 38158 Jan 18 06:06:37 v2hgb sshd[24639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.219.42.137 Jan 18 06:06:39 v2hgb sshd[24639]: Failed password for invalid user hive from 104.219.42.137 port 38158 ssh2 Jan 18 06:06:40 v2hgb sshd[24639]: Received disconnect from 104.219.42.137 port 38158:11: Bye Bye [preauth] Jan 18 06:06:40 v2hgb sshd[24639]: Disconnected from invalid user hive 104.219.42.137 port 38158 [preauth] Jan 18 06:22:11 v2hgb sshd[25834]: Invalid user aguirre from 104.219.42.137 port 50522 Jan 18 06:22:11 v2hgb sshd[25834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.219.42.137 Jan 18 06:22:13 v2hgb sshd[25834]: Failed password for invalid user aguirre from 104.219.42.137 port 50522 ssh2 Jan 18 06:22:13 v2hgb sshd[25834]: Received disconnect from 104.219.42.137 port 50522:11: Bye Bye [........ ------------------------------- |
2020-01-20 04:40:32 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.219.42.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58708
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.219.42.73. IN A
;; AUTHORITY SECTION:
. 338 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400
;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 12:16:57 CST 2022
;; MSG SIZE rcvd: 10673.42.219.104.in-addr.arpa domain name pointer ip11.upscaleart.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
73.42.219.104.in-addr.arpa name = ip11.upscaleart.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 88.226.126.212 | attack | Port probing on unauthorized port 445 |
2020-07-17 15:46:03 |
| 89.248.167.141 | attackbotsspam | Jul 17 08:53:03 debian-2gb-nbg1-2 kernel: \[17227339.472425\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.167.141 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=50860 PROTO=TCP SPT=8080 DPT=4502 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-07-17 15:33:56 |
| 91.204.248.42 | attackbotsspam | Invalid user sms from 91.204.248.42 port 52300 |
2020-07-17 15:37:19 |
| 46.105.227.206 | attackspam | Jul 17 03:25:51 ny01 sshd[13752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.227.206 Jul 17 03:25:54 ny01 sshd[13752]: Failed password for invalid user elastic from 46.105.227.206 port 50630 ssh2 Jul 17 03:30:01 ny01 sshd[14456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.227.206 |
2020-07-17 15:36:28 |
| 103.60.212.2 | attackspambots | Invalid user admin from 103.60.212.2 port 56930 |
2020-07-17 15:23:36 |
| 115.159.99.61 | attackspambots | web-1 [ssh] SSH Attack |
2020-07-17 15:19:45 |
| 195.24.129.234 | attack | Jul 17 08:36:26 ajax sshd[30183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.24.129.234 Jul 17 08:36:28 ajax sshd[30183]: Failed password for invalid user midas from 195.24.129.234 port 54868 ssh2 |
2020-07-17 15:44:10 |
| 141.98.81.133 | attackbots | *Port Scan* detected from 141.98.81.133 (NL/Netherlands/South Holland/Dordrecht/-). 4 hits in the last 95 seconds |
2020-07-17 15:44:53 |
| 89.248.160.178 | attack | [Tue Jun 02 17:37:07 2020] - DDoS Attack From IP: 89.248.160.178 Port: 42779 |
2020-07-17 15:34:12 |
| 1.245.61.144 | attack | Jul 17 07:51:13 prod4 sshd\[14021\]: Invalid user koha from 1.245.61.144 Jul 17 07:51:15 prod4 sshd\[14021\]: Failed password for invalid user koha from 1.245.61.144 port 36266 ssh2 Jul 17 07:55:41 prod4 sshd\[15501\]: Invalid user rafael from 1.245.61.144 ... |
2020-07-17 15:33:26 |
| 116.196.117.97 | attackbotsspam | Jul 17 00:46:35 Host-KLAX-C sshd[5760]: Disconnected from invalid user admin 116.196.117.97 port 49566 [preauth] ... |
2020-07-17 15:29:10 |
| 212.129.29.229 | attackbotsspam | *Port Scan* detected from 212.129.29.229 (FR/France/Île-de-France/Clichy-sous-Bois/212-129-29-229.rev.poneytelecom.eu). 4 hits in the last 15 seconds |
2020-07-17 15:39:03 |
| 223.223.187.2 | attackspam | Invalid user kapil from 223.223.187.2 port 42978 |
2020-07-17 15:38:26 |
| 103.114.107.230 | attackbots | Jul 17 09:34:04 debian-2gb-nbg1-2 kernel: \[17229799.685824\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.114.107.230 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=51770 PROTO=TCP SPT=53048 DPT=10715 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-07-17 15:48:23 |
| 174.219.17.21 | attackspambots | Brute forcing email accounts |
2020-07-17 15:24:44 |