City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.248.34.219 | attack | 2020/06/30 14:47:45 [error] 20617#20617: *3577399 open() "/usr/share/nginx/html/wp-login.php" failed (2: No such file or directory), client: 104.248.34.219, server: _, request: "GET /wp-login.php HTTP/1.1", host: "1-2-dsl.net" 2020/06/30 14:47:45 [error] 20617#20617: *3577400 open() "/usr/share/nginx/html/wp-login.php" failed (2: No such file or directory), client: 104.248.34.219, server: _, request: "GET /wp-login.php HTTP/1.1", host: "1-2-dsl.org" |
2020-07-01 21:38:38 |
| 104.248.34.219 | attackbots | 104.248.34.219 - - [14/Jun/2020:14:43:38 +0200] "POST /xmlrpc.php HTTP/1.1" 403 11040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/Jun/2020:14:47:37 +0200] "POST /xmlrpc.php HTTP/1.1" 403 9565 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-06-14 23:57:53 |
| 104.248.34.219 | attackbotsspam | 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.34.219 - - [14/May/2020:18:49:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2009 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ... |
2020-05-15 04:04:32 |
| 104.248.34.192 | attackbotsspam | Feb 9 08:59:09 MK-Soft-VM8 sshd[28974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 Feb 9 08:59:11 MK-Soft-VM8 sshd[28974]: Failed password for invalid user phi from 104.248.34.192 port 45958 ssh2 ... |
2020-02-09 16:23:24 |
| 104.248.34.192 | attackbotsspam | Feb 9 00:22:32 game-panel sshd[7635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 Feb 9 00:22:33 game-panel sshd[7635]: Failed password for invalid user zql from 104.248.34.192 port 38890 ssh2 Feb 9 00:25:22 game-panel sshd[7754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 |
2020-02-09 08:33:10 |
| 104.248.34.192 | attackspambots | Unauthorized connection attempt detected from IP address 104.248.34.192 to port 2220 [J] |
2020-02-06 02:07:07 |
| 104.248.34.192 | attackspam | Jan 27 08:35:41 ns381471 sshd[19625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 Jan 27 08:35:44 ns381471 sshd[19625]: Failed password for invalid user es from 104.248.34.192 port 57222 ssh2 |
2020-01-27 17:10:59 |
| 104.248.34.192 | attackspam | Unauthorized connection attempt detected from IP address 104.248.34.192 to port 2220 [J] |
2020-01-22 00:53:16 |
| 104.248.34.192 | attack | Brute SSH |
2020-01-14 20:41:14 |
| 104.248.34.192 | attackspambots | SSH-BruteForce |
2020-01-07 08:47:43 |
| 104.248.34.192 | attack | Dec 25 15:34:32 localhost sshd[34987]: Failed password for invalid user lexst from 104.248.34.192 port 40436 ssh2 Dec 25 15:52:01 localhost sshd[35954]: Failed password for invalid user petryna from 104.248.34.192 port 53592 ssh2 Dec 25 15:54:27 localhost sshd[36194]: Failed password for invalid user bagnato from 104.248.34.192 port 47490 ssh2 |
2019-12-26 01:05:58 |
| 104.248.34.192 | attack | [ssh] SSH attack |
2019-12-19 02:15:32 |
| 104.248.34.192 | attack | Dec 17 11:46:50 php1 sshd\[24898\]: Invalid user roberts from 104.248.34.192 Dec 17 11:46:50 php1 sshd\[24898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 Dec 17 11:46:52 php1 sshd\[24898\]: Failed password for invalid user roberts from 104.248.34.192 port 32942 ssh2 Dec 17 11:52:58 php1 sshd\[25510\]: Invalid user admin from 104.248.34.192 Dec 17 11:52:58 php1 sshd\[25510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 |
2019-12-18 06:17:22 |
| 104.248.34.192 | attackbots | Dec 13 05:50:10 localhost sshd\[1358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 user=root Dec 13 05:50:12 localhost sshd\[1358\]: Failed password for root from 104.248.34.192 port 48630 ssh2 Dec 13 05:56:09 localhost sshd\[1995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.34.192 user=root |
2019-12-13 13:15:04 |
| 104.248.34.43 | attackspambots | Port scan attempt detected by AWS-CCS, CTS, India |
2019-07-15 18:04:26 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.34.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.248.34.166. IN A
;; AUTHORITY SECTION:
. 560 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030301 1800 900 604800 86400
;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 02:02:18 CST 2022
;; MSG SIZE rcvd: 107
Host 166.34.248.104.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 166.34.248.104.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 59.74.224.236 | attackspambots | Dec 12 15:53:17 ns3042688 sshd\[25761\]: Invalid user mellinger from 59.74.224.236 Dec 12 15:53:17 ns3042688 sshd\[25761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.74.224.236 Dec 12 15:53:19 ns3042688 sshd\[25761\]: Failed password for invalid user mellinger from 59.74.224.236 port 57316 ssh2 Dec 12 16:01:22 ns3042688 sshd\[29024\]: Invalid user emile from 59.74.224.236 Dec 12 16:01:22 ns3042688 sshd\[29024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.74.224.236 ... |
2019-12-13 02:32:05 |
| 189.69.21.28 | attack | fail2ban |
2019-12-13 02:23:18 |
| 103.141.137.39 | attackbotsspam | Unauthorized connection attempt from IP address 103.141.137.39 on Port 25(SMTP) |
2019-12-13 02:21:53 |
| 167.86.99.247 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-13 02:20:58 |
| 129.211.75.184 | attackbotsspam | 2019-12-12T14:28:49.750041shield sshd\[28164\]: Invalid user octuser3 from 129.211.75.184 port 57720 2019-12-12T14:28:49.754251shield sshd\[28164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.75.184 2019-12-12T14:28:51.832017shield sshd\[28164\]: Failed password for invalid user octuser3 from 129.211.75.184 port 57720 ssh2 2019-12-12T14:38:36.193239shield sshd\[30610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.75.184 user=root 2019-12-12T14:38:37.854748shield sshd\[30610\]: Failed password for root from 129.211.75.184 port 38716 ssh2 |
2019-12-13 02:44:32 |
| 61.9.48.99 | attack | Autoban 61.9.48.99 AUTH/CONNECT |
2019-12-13 02:31:32 |
| 159.203.17.176 | attackspam | Dec 12 08:19:39 web1 sshd\[14875\]: Invalid user ui from 159.203.17.176 Dec 12 08:19:39 web1 sshd\[14875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.17.176 Dec 12 08:19:41 web1 sshd\[14875\]: Failed password for invalid user ui from 159.203.17.176 port 47981 ssh2 Dec 12 08:26:55 web1 sshd\[15613\]: Invalid user wwwrun from 159.203.17.176 Dec 12 08:26:55 web1 sshd\[15613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.17.176 |
2019-12-13 02:39:07 |
| 61.32.154.211 | attackspambots | Autoban 61.32.154.211 AUTH/CONNECT |
2019-12-13 02:38:23 |
| 207.46.13.65 | attackbotsspam | Automatic report - Banned IP Access |
2019-12-13 02:28:57 |
| 60.184.213.69 | attackbots | Autoban 60.184.213.69 AUTH/CONNECT |
2019-12-13 02:43:52 |
| 62.204.138.68 | attackspam | Autoban 62.204.138.68 AUTH/CONNECT |
2019-12-13 02:18:02 |
| 62.138.18.196 | attack | Autoban 62.138.18.196 AUTH/CONNECT |
2019-12-13 02:24:03 |
| 59.110.227.189 | attackbots | Autoban 59.110.227.189 AUTH/CONNECT |
2019-12-13 02:52:56 |
| 61.232.0.130 | attackbots | Autoban 61.232.0.130 AUTH/CONNECT |
2019-12-13 02:39:47 |
| 62.10.152.164 | attack | Autoban 62.10.152.164 AUTH/CONNECT |
2019-12-13 02:27:32 |