City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.238.189.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11021
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.238.189.139. IN A
;; AUTHORITY SECTION:
. 202 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400
;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 20:20:13 CST 2022
;; MSG SIZE rcvd: 108139.189.238.104.in-addr.arpa domain name pointer 104.238.189.139.vultr.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
139.189.238.104.in-addr.arpa name = 104.238.189.139.vultr.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 149.56.142.198 | attack | Apr 24 23:46:22 ns392434 sshd[20155]: Invalid user sumit from 149.56.142.198 port 55576 Apr 24 23:46:22 ns392434 sshd[20155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.198 Apr 24 23:46:22 ns392434 sshd[20155]: Invalid user sumit from 149.56.142.198 port 55576 Apr 24 23:46:24 ns392434 sshd[20155]: Failed password for invalid user sumit from 149.56.142.198 port 55576 ssh2 Apr 24 23:54:00 ns392434 sshd[20425]: Invalid user viktor from 149.56.142.198 port 40792 Apr 24 23:54:00 ns392434 sshd[20425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.198 Apr 24 23:54:00 ns392434 sshd[20425]: Invalid user viktor from 149.56.142.198 port 40792 Apr 24 23:54:02 ns392434 sshd[20425]: Failed password for invalid user viktor from 149.56.142.198 port 40792 ssh2 Apr 24 23:59:40 ns392434 sshd[20754]: Invalid user at from 149.56.142.198 port 52792 |
2020-04-26 19:26:34 |
| 49.234.87.24 | attackspam | Apr 26 09:20:24 pve1 sshd[536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.87.24 Apr 26 09:20:26 pve1 sshd[536]: Failed password for invalid user akhilesh from 49.234.87.24 port 37898 ssh2 ... |
2020-04-26 19:05:01 |
| 5.39.223.62 | attackbots | spam |
2020-04-26 19:24:32 |
| 201.159.95.94 | attack | IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking. |
2020-04-26 19:01:23 |
| 74.208.65.41 | attack | Apr 26 05:47:49 debian-2gb-nbg1-2 kernel: \[10131806.747080\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=74.208.65.41 DST=195.201.40.59 LEN=438 TOS=0x00 PREC=0x00 TTL=49 ID=37410 DF PROTO=UDP SPT=5174 DPT=5060 LEN=418 |
2020-04-26 18:58:09 |
| 94.23.160.185 | attackspambots | Apr 26 10:19:01 l03 sshd[17359]: Invalid user sergio from 94.23.160.185 port 48010 ... |
2020-04-26 19:07:54 |
| 125.212.228.183 | attackspam | Apr 26 05:47:08 debian-2gb-nbg1-2 kernel: \[10131765.644937\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=125.212.228.183 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=10126 PROTO=TCP SPT=52755 DPT=3388 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-26 19:22:38 |
| 35.231.211.161 | attackbotsspam | Apr 26 06:37:12 124388 sshd[14343]: Failed password for root from 35.231.211.161 port 57796 ssh2 Apr 26 06:38:48 124388 sshd[14357]: Invalid user try from 35.231.211.161 port 57554 Apr 26 06:38:48 124388 sshd[14357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.231.211.161 Apr 26 06:38:48 124388 sshd[14357]: Invalid user try from 35.231.211.161 port 57554 Apr 26 06:38:49 124388 sshd[14357]: Failed password for invalid user try from 35.231.211.161 port 57554 ssh2 |
2020-04-26 19:15:56 |
| 116.218.131.188 | attack | DATE:2020-04-26 11:13:58, IP:116.218.131.188, PORT:ssh SSH brute force auth (docker-dc) |
2020-04-26 19:19:53 |
| 200.56.45.10 | attack | Apr 26 12:55:37 plex sshd[23207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.56.45.10 user=root Apr 26 12:55:40 plex sshd[23207]: Failed password for root from 200.56.45.10 port 34352 ssh2 |
2020-04-26 18:56:19 |
| 159.89.207.146 | attackbotsspam | Apr 26 10:47:48 marvibiene sshd[16392]: Invalid user rcg from 159.89.207.146 port 54964 Apr 26 10:47:48 marvibiene sshd[16392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.207.146 Apr 26 10:47:48 marvibiene sshd[16392]: Invalid user rcg from 159.89.207.146 port 54964 Apr 26 10:47:50 marvibiene sshd[16392]: Failed password for invalid user rcg from 159.89.207.146 port 54964 ssh2 ... |
2020-04-26 18:56:40 |
| 2.121.70.161 | attackspam | port scan and connect, tcp 23 (telnet) |
2020-04-26 19:33:23 |
| 111.231.141.141 | attackbots | Invalid user xs from 111.231.141.141 port 42912 |
2020-04-26 18:57:40 |
| 106.12.17.107 | attack | Dec 26 03:39:37 ms-srv sshd[3830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.17.107 Dec 26 03:39:40 ms-srv sshd[3830]: Failed password for invalid user admin from 106.12.17.107 port 60436 ssh2 |
2020-04-26 19:31:31 |
| 122.51.58.42 | attackspambots | 2020-04-26T06:36:39.0588371495-001 sshd[40508]: Invalid user tanghua from 122.51.58.42 port 41456 2020-04-26T06:36:40.7292981495-001 sshd[40508]: Failed password for invalid user tanghua from 122.51.58.42 port 41456 ssh2 2020-04-26T06:42:34.8318051495-001 sshd[40843]: Invalid user ubuntu from 122.51.58.42 port 43112 2020-04-26T06:42:34.8386731495-001 sshd[40843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.42 2020-04-26T06:42:34.8318051495-001 sshd[40843]: Invalid user ubuntu from 122.51.58.42 port 43112 2020-04-26T06:42:36.9037741495-001 sshd[40843]: Failed password for invalid user ubuntu from 122.51.58.42 port 43112 ssh2 ... |
2020-04-26 19:21:50 |