City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.226.139.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14836
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;137.226.139.12. IN A
;; AUTHORITY SECTION:
. 237 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022061201 1800 900 604800 86400
;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 13 06:28:31 CST 2022
;; MSG SIZE rcvd: 107Host 12.139.226.137.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 12.139.226.137.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 210.212.145.125 | attack | Oct 4 04:13:53 www_kotimaassa_fi sshd[18458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.212.145.125 Oct 4 04:13:55 www_kotimaassa_fi sshd[18458]: Failed password for invalid user dg from 210.212.145.125 port 27767 ssh2 ... |
2019-10-04 13:49:53 |
| 190.14.38.128 | attackspambots | Oct 3 23:46:06 localhost kernel: [3898585.975446] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.38.128 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=65 ID=9348 DF PROTO=TCP SPT=60026 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:46:06 localhost kernel: [3898585.975474] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.38.128 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=65 ID=9348 DF PROTO=TCP SPT=60026 DPT=22 SEQ=524906690 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:56:49 localhost kernel: [3899228.873309] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.38.128 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=76 ID=65006 DF PROTO=TCP SPT=58207 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:56:49 localhost kernel: [3899228.873334] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.38.128 DST=[mungedIP2] LEN=40 TOS=0x08 PREC |
2019-10-04 14:08:57 |
| 218.3.139.85 | attackspam | Oct 1 01:18:29 ntop sshd[15790]: Invalid user servermc from 218.3.139.85 port 34532 Oct 1 01:18:31 ntop sshd[15790]: Failed password for invalid user servermc from 218.3.139.85 port 34532 ssh2 Oct 1 01:18:31 ntop sshd[15790]: Received disconnect from 218.3.139.85 port 34532:11: Bye Bye [preauth] Oct 1 01:18:31 ntop sshd[15790]: Disconnected from 218.3.139.85 port 34532 [preauth] Oct 1 01:34:32 ntop sshd[16679]: Invalid user system from 218.3.139.85 port 50042 Oct 1 01:34:34 ntop sshd[16679]: Failed password for invalid user system from 218.3.139.85 port 50042 ssh2 Oct 1 01:34:34 ntop sshd[16679]: Received disconnect from 218.3.139.85 port 50042:11: Bye Bye [preauth] Oct 1 01:34:34 ntop sshd[16679]: Disconnected from 218.3.139.85 port 50042 [preauth] Oct 1 01:41:07 ntop sshd[17092]: User r.r from 218.3.139.85 not allowed because not listed in AllowUsers Oct 1 01:41:07 ntop sshd[17092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh r........ ------------------------------- |
2019-10-04 13:48:34 |
| 89.248.169.94 | attackbotsspam | UTC: 2019-10-03 pkts: 2 ports(tcp): 1008, 1010 |
2019-10-04 13:29:31 |
| 92.188.124.228 | attackbots | Invalid user lara from 92.188.124.228 port 45638 |
2019-10-04 14:05:48 |
| 182.116.36.103 | attackspambots | Unauthorised access (Oct 4) SRC=182.116.36.103 LEN=40 TTL=49 ID=25376 TCP DPT=8080 WINDOW=23195 SYN |
2019-10-04 13:15:39 |
| 94.71.80.72 | attackbotsspam | port scan and connect, tcp 80 (http) |
2019-10-04 13:51:25 |
| 186.220.252.20 | attack | Attempts against SMTP/SSMTP |
2019-10-04 13:22:30 |
| 50.63.15.171 | attackspam | Automatic report - XMLRPC Attack |
2019-10-04 14:09:48 |
| 119.85.36.46 | attack | Automatic report - Port Scan |
2019-10-04 13:47:32 |
| 37.49.231.131 | attackbots | Oct 1 08:05:54 srv1 sshd[7751]: Invalid user admin from 37.49.231.131 Oct 1 08:05:54 srv1 sshd[7751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.231.131 Oct 1 08:05:56 srv1 sshd[7751]: Failed password for invalid user admin from 37.49.231.131 port 53119 ssh2 Oct 1 08:05:56 srv1 sshd[7752]: Received disconnect from 37.49.231.131: 3: com.jcraft.jsch.JSchException: Auth fail Oct 1 08:05:56 srv1 sshd[7753]: Invalid user support from 37.49.231.131 Oct 1 08:05:56 srv1 sshd[7753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.231.131 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.49.231.131 |
2019-10-04 13:15:12 |
| 45.114.244.56 | attackbots | Oct 4 05:57:03 MK-Soft-Root1 sshd[9442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.114.244.56 Oct 4 05:57:05 MK-Soft-Root1 sshd[9442]: Failed password for invalid user test from 45.114.244.56 port 51724 ssh2 ... |
2019-10-04 13:53:08 |
| 39.79.87.235 | attackbots | Unauthorised access (Oct 4) SRC=39.79.87.235 LEN=40 TTL=49 ID=6157 TCP DPT=8080 WINDOW=55377 SYN Unauthorised access (Oct 3) SRC=39.79.87.235 LEN=40 TTL=49 ID=37883 TCP DPT=8080 WINDOW=59673 SYN Unauthorised access (Oct 3) SRC=39.79.87.235 LEN=40 TTL=49 ID=28217 TCP DPT=8080 WINDOW=46393 SYN Unauthorised access (Oct 3) SRC=39.79.87.235 LEN=40 TTL=49 ID=3059 TCP DPT=8080 WINDOW=55377 SYN Unauthorised access (Oct 3) SRC=39.79.87.235 LEN=40 TTL=49 ID=42629 TCP DPT=8080 WINDOW=52769 SYN Unauthorised access (Oct 3) SRC=39.79.87.235 LEN=40 TTL=49 ID=20346 TCP DPT=8080 WINDOW=4159 SYN Unauthorised access (Oct 2) SRC=39.79.87.235 LEN=40 TTL=49 ID=60523 TCP DPT=8080 WINDOW=4159 SYN Unauthorised access (Oct 2) SRC=39.79.87.235 LEN=40 TTL=49 ID=28794 TCP DPT=8080 WINDOW=13591 SYN Unauthorised access (Oct 2) SRC=39.79.87.235 LEN=40 TTL=49 ID=45536 TCP DPT=8080 WINDOW=13591 SYN |
2019-10-04 14:05:19 |
| 103.120.178.112 | attackspambots | Automatic report - XMLRPC Attack |
2019-10-04 13:43:28 |
| 218.28.76.99 | attack | failed_logins |
2019-10-04 13:53:47 |