City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.55.135.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52342
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;131.55.135.1. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 04:46:29 CST 2025
;; MSG SIZE rcvd: 105Host 1.135.55.131.in-addr.arpa not found: 2(SERVFAIL)
server can't find 131.55.135.1.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.236.58.55 | attackspambots | SSH Brute Force, server-1 sshd[7742]: Failed password for invalid user gitlab-runner from 104.236.58.55 port 42854 ssh2 |
2019-09-10 15:39:26 |
| 51.254.210.53 | attackspam | Sep 10 07:09:37 www sshd\[218189\]: Invalid user admin from 51.254.210.53 Sep 10 07:09:37 www sshd\[218189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.210.53 Sep 10 07:09:39 www sshd\[218189\]: Failed password for invalid user admin from 51.254.210.53 port 34930 ssh2 ... |
2019-09-10 14:57:09 |
| 157.230.168.4 | attack | Sep 9 21:14:30 hiderm sshd\[16296\]: Invalid user webadmin123 from 157.230.168.4 Sep 9 21:14:30 hiderm sshd\[16296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.168.4 Sep 9 21:14:32 hiderm sshd\[16296\]: Failed password for invalid user webadmin123 from 157.230.168.4 port 60742 ssh2 Sep 9 21:20:45 hiderm sshd\[16945\]: Invalid user qwertyuiop from 157.230.168.4 Sep 9 21:20:45 hiderm sshd\[16945\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.168.4 |
2019-09-10 15:38:54 |
| 89.139.162.98 | attackbots | Attempts to probe for or exploit a Drupal site on url: /wp-login.php. Reported by the module https://www.drupal.org/project/abuseipdb. |
2019-09-10 15:15:57 |
| 164.132.81.106 | attack | Sep 10 08:50:07 SilenceServices sshd[5738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.81.106 Sep 10 08:50:09 SilenceServices sshd[5738]: Failed password for invalid user deployer from 164.132.81.106 port 42542 ssh2 Sep 10 08:55:36 SilenceServices sshd[7989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.81.106 |
2019-09-10 15:04:45 |
| 112.85.42.179 | attack | Sep 10 01:17:44 vm-dfa0dd01 sshd[79881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.179 user=root Sep 10 01:17:46 vm-dfa0dd01 sshd[79881]: Failed password for root from 112.85.42.179 port 9861 ssh2 ... |
2019-09-10 15:12:16 |
| 190.211.141.217 | attackbotsspam | Sep 10 09:19:41 microserver sshd[22670]: Invalid user plex from 190.211.141.217 port 22639 Sep 10 09:19:41 microserver sshd[22670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.211.141.217 Sep 10 09:19:43 microserver sshd[22670]: Failed password for invalid user plex from 190.211.141.217 port 22639 ssh2 Sep 10 09:24:58 microserver sshd[23380]: Invalid user vbox from 190.211.141.217 port 20229 Sep 10 09:24:58 microserver sshd[23380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.211.141.217 Sep 10 09:36:36 microserver sshd[25341]: Invalid user userftp from 190.211.141.217 port 64218 Sep 10 09:36:36 microserver sshd[25341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.211.141.217 Sep 10 09:36:38 microserver sshd[25341]: Failed password for invalid user userftp from 190.211.141.217 port 64218 ssh2 Sep 10 09:42:12 microserver sshd[26108]: Invalid user test from 190.211.141.21 |
2019-09-10 15:40:44 |
| 203.128.242.166 | attackspam | Sep 9 21:30:32 aiointranet sshd\[22603\]: Invalid user tomcat from 203.128.242.166 Sep 9 21:30:32 aiointranet sshd\[22603\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.128.242.166 Sep 9 21:30:35 aiointranet sshd\[22603\]: Failed password for invalid user tomcat from 203.128.242.166 port 51730 ssh2 Sep 9 21:36:17 aiointranet sshd\[23074\]: Invalid user student2 from 203.128.242.166 Sep 9 21:36:17 aiointranet sshd\[23074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.128.242.166 |
2019-09-10 15:44:21 |
| 144.217.242.111 | attack | 2019-09-10T05:39:24.308510abusebot-7.cloudsearch.cf sshd\[5759\]: Invalid user admin from 144.217.242.111 port 50848 |
2019-09-10 15:33:58 |
| 112.223.180.164 | attackbots | Sep 9 19:58:09 aat-srv002 sshd[30564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.223.180.164 Sep 9 19:58:10 aat-srv002 sshd[30564]: Failed password for invalid user testuser from 112.223.180.164 port 50325 ssh2 Sep 9 20:17:39 aat-srv002 sshd[31062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.223.180.164 Sep 9 20:17:40 aat-srv002 sshd[31062]: Failed password for invalid user vbox from 112.223.180.164 port 43747 ssh2 ... |
2019-09-10 15:17:34 |
| 79.7.217.174 | attackspambots | Sep 9 21:28:53 aiointranet sshd\[22455\]: Invalid user template from 79.7.217.174 Sep 9 21:28:53 aiointranet sshd\[22455\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host174-217-static.7-79-b.business.telecomitalia.it Sep 9 21:28:55 aiointranet sshd\[22455\]: Failed password for invalid user template from 79.7.217.174 port 54871 ssh2 Sep 9 21:34:43 aiointranet sshd\[22916\]: Invalid user weblogic from 79.7.217.174 Sep 9 21:34:43 aiointranet sshd\[22916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host174-217-static.7-79-b.business.telecomitalia.it |
2019-09-10 15:37:37 |
| 54.38.241.162 | attackspam | Sep 10 06:51:14 taivassalofi sshd[117669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.241.162 Sep 10 06:51:16 taivassalofi sshd[117669]: Failed password for invalid user guest from 54.38.241.162 port 33614 ssh2 ... |
2019-09-10 15:11:21 |
| 140.143.241.79 | attackspambots | Sep 10 00:04:01 lanister sshd[17703]: Invalid user oracle from 140.143.241.79 Sep 10 00:04:01 lanister sshd[17703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.241.79 Sep 10 00:04:01 lanister sshd[17703]: Invalid user oracle from 140.143.241.79 Sep 10 00:04:03 lanister sshd[17703]: Failed password for invalid user oracle from 140.143.241.79 port 54572 ssh2 ... |
2019-09-10 15:30:16 |
| 95.85.28.28 | attackbotsspam | Auto reported by IDS |
2019-09-10 15:43:57 |
| 103.92.30.33 | attack | 103.92.30.33 - - [10/Sep/2019:06:00:54 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.92.30.33 - - [10/Sep/2019:06:00:56 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.92.30.33 - - [10/Sep/2019:06:00:57 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.92.30.33 - - [10/Sep/2019:06:00:59 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.92.30.33 - - [10/Sep/2019:06:01:00 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.92.30.33 - - [10/Sep/2019:06:01:02 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-09-10 15:12:49 |