City: unknown
Region: unknown
Country: Brazil
Internet Service Provider: Lanteca Telecom Ltda - ME
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attackspam | Sep 16 18:09:37 mail.srvfarm.net postfix/smtpd[3597748]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: Sep 16 18:09:37 mail.srvfarm.net postfix/smtpd[3597748]: lost connection after AUTH from 138-122-222-239.lanteca.com.br[138.122.222.239] Sep 16 18:18:04 mail.srvfarm.net postfix/smtps/smtpd[3600179]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: Sep 16 18:18:04 mail.srvfarm.net postfix/smtps/smtpd[3600179]: lost connection after AUTH from 138-122-222-239.lanteca.com.br[138.122.222.239] Sep 16 18:18:34 mail.srvfarm.net postfix/smtps/smtpd[3584298]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: |
2020-09-18 01:50:56 |
| attack | Sep 16 18:09:37 mail.srvfarm.net postfix/smtpd[3597748]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: Sep 16 18:09:37 mail.srvfarm.net postfix/smtpd[3597748]: lost connection after AUTH from 138-122-222-239.lanteca.com.br[138.122.222.239] Sep 16 18:18:04 mail.srvfarm.net postfix/smtps/smtpd[3600179]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: Sep 16 18:18:04 mail.srvfarm.net postfix/smtps/smtpd[3600179]: lost connection after AUTH from 138-122-222-239.lanteca.com.br[138.122.222.239] Sep 16 18:18:34 mail.srvfarm.net postfix/smtps/smtpd[3584298]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: |
2020-09-17 17:52:04 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 138.122.222.207 | attack | Attempted Brute Force (dovecot) |
2020-10-08 00:48:42 |
| 138.122.222.207 | attackspambots | Attempted Brute Force (dovecot) |
2020-10-07 16:57:44 |
| 138.122.222.213 | attack | Sep 16 18:33:38 mail.srvfarm.net postfix/smtps/smtpd[3600946]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:33:39 mail.srvfarm.net postfix/smtps/smtpd[3600946]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:38:10 mail.srvfarm.net postfix/smtps/smtpd[3601499]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: |
2020-09-18 01:34:33 |
| 138.122.222.213 | attack | Sep 16 18:33:38 mail.srvfarm.net postfix/smtps/smtpd[3600946]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:33:39 mail.srvfarm.net postfix/smtps/smtpd[3600946]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:38:10 mail.srvfarm.net postfix/smtps/smtpd[3601499]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: |
2020-09-17 17:36:03 |
| 138.122.222.213 | attack | Sep 16 18:33:38 mail.srvfarm.net postfix/smtps/smtpd[3600946]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:33:39 mail.srvfarm.net postfix/smtps/smtpd[3600946]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:38:10 mail.srvfarm.net postfix/smtps/smtpd[3601499]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: |
2020-09-17 08:42:48 |
| 138.122.222.207 | attackbotsspam | Aug 16 05:21:35 mail.srvfarm.net postfix/smtps/smtpd[1874192]: warning: 138-122-222-207.lanteca.com.br[138.122.222.207]: SASL PLAIN authentication failed: Aug 16 05:21:36 mail.srvfarm.net postfix/smtps/smtpd[1874192]: lost connection after AUTH from 138-122-222-207.lanteca.com.br[138.122.222.207] Aug 16 05:26:15 mail.srvfarm.net postfix/smtps/smtpd[1888818]: warning: 138-122-222-207.lanteca.com.br[138.122.222.207]: SASL PLAIN authentication failed: Aug 16 05:26:15 mail.srvfarm.net postfix/smtps/smtpd[1888818]: lost connection after AUTH from 138-122-222-207.lanteca.com.br[138.122.222.207] Aug 16 05:29:00 mail.srvfarm.net postfix/smtpd[1888504]: warning: 138-122-222-207.lanteca.com.br[138.122.222.207]: SASL PLAIN authentication failed: |
2020-08-16 13:01:31 |
| 138.122.222.82 | attackbotsspam | SASL PLAIN auth failed: ruser=... |
2020-07-16 09:09:03 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.122.222.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25637
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.122.222.239. IN A
;; AUTHORITY SECTION:
. 565 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020091602 1800 900 604800 86400
;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 17 09:03:48 CST 2020
;; MSG SIZE rcvd: 119239.222.122.138.in-addr.arpa domain name pointer 138-122-222-239.lanteca.com.br.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
239.222.122.138.in-addr.arpa name = 138-122-222-239.lanteca.com.br.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 212.233.211.68 | attackspambots | MYH,DEF GET /index.php/rss/order/new |
2019-11-15 02:27:54 |
| 104.131.8.137 | attackbotsspam | Nov 14 17:00:50 lnxmysql61 sshd[24667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.8.137 |
2019-11-15 02:03:15 |
| 31.222.195.30 | attackbotsspam | Nov 11 20:56:54 sanyalnet-cloud-vps3 sshd[24193]: Connection from 31.222.195.30 port 14611 on 45.62.248.66 port 22 Nov 11 20:56:54 sanyalnet-cloud-vps3 sshd[24193]: User sync from 31.222.195.30 not allowed because not listed in AllowUsers Nov 11 20:56:54 sanyalnet-cloud-vps3 sshd[24193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.222.195.30 user=sync Nov 11 20:56:56 sanyalnet-cloud-vps3 sshd[24193]: Failed password for invalid user sync from 31.222.195.30 port 14611 ssh2 Nov 11 20:56:56 sanyalnet-cloud-vps3 sshd[24193]: Received disconnect from 31.222.195.30: 11: Bye Bye [preauth] Nov 11 21:59:52 sanyalnet-cloud-vps3 sshd[25587]: Connection from 31.222.195.30 port 33231 on 45.62.248.66 port 22 Nov 11 21:59:53 sanyalnet-cloud-vps3 sshd[25587]: User r.r from 31.222.195.30 not allowed because not listed in AllowUsers Nov 11 21:59:53 sanyalnet-cloud-vps3 sshd[25587]: pam_unix(sshd:auth): authentication failure; logname= uid=0........ ------------------------------- |
2019-11-15 02:30:50 |
| 38.132.118.239 | attackspam | spam-mail via contact-form 14.11.2019 / 00:33 IP-Adresse | 38.132.118.239 |
2019-11-15 02:18:27 |
| 31.179.144.190 | attack | Nov 14 04:31:52 auw2 sshd\[17389\]: Invalid user Michelle2017 from 31.179.144.190 Nov 14 04:31:52 auw2 sshd\[17389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.179.144.190 Nov 14 04:31:54 auw2 sshd\[17389\]: Failed password for invalid user Michelle2017 from 31.179.144.190 port 33436 ssh2 Nov 14 04:35:49 auw2 sshd\[17688\]: Invalid user test from 31.179.144.190 Nov 14 04:35:49 auw2 sshd\[17688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.179.144.190 |
2019-11-15 02:34:44 |
| 104.236.228.46 | attackbotsspam | 2019-11-14T17:43:59.478650abusebot-5.cloudsearch.cf sshd\[6214\]: Invalid user wwwrun from 104.236.228.46 port 57722 |
2019-11-15 02:12:35 |
| 177.157.65.93 | attackspambots | Nov 7 16:21:49 localhost postfix/smtpd[28592]: disconnect from unknown[177.157.65.93] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Nov 7 16:22:13 localhost postfix/smtpd[28563]: lost connection after EHLO from unknown[177.157.65.93] Nov 7 16:24:33 localhost postfix/smtpd[28848]: disconnect from unknown[177.157.65.93] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Nov 7 16:29:34 localhost postfix/smtpd[30714]: disconnect from unknown[177.157.65.93] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Nov 7 16:30:22 localhost postfix/smtpd[30714]: disconnect from unknown[177.157.65.93] ehlo=1 auth=0/1 quhostname=1 commands=2/3 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.157.65.93 |
2019-11-15 02:40:46 |
| 51.158.67.13 | attack | Nov 14 15:34:54 srv-ubuntu-dev3 sshd[4325]: Did not receive identification string from 51.158.67.13 Nov 14 15:35:34 srv-ubuntu-dev3 sshd[4379]: Invalid user ts3 from 51.158.67.13 Nov 14 15:35:35 srv-ubuntu-dev3 sshd[4382]: Invalid user judge from 51.158.67.13 Nov 14 15:35:34 srv-ubuntu-dev3 sshd[4379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.67.13 Nov 14 15:35:34 srv-ubuntu-dev3 sshd[4379]: Invalid user ts3 from 51.158.67.13 Nov 14 15:35:36 srv-ubuntu-dev3 sshd[4379]: Failed password for invalid user ts3 from 51.158.67.13 port 37698 ssh2 Nov 14 15:35:36 srv-ubuntu-dev3 sshd[4389]: Invalid user minerhub from 51.158.67.13 ... |
2019-11-15 02:42:36 |
| 31.214.157.196 | attackbots | $f2bV_matches |
2019-11-15 02:12:57 |
| 5.101.51.71 | attackspam | Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.101.51.71 |
2019-11-15 02:35:42 |
| 91.121.103.175 | attackbotsspam | (sshd) Failed SSH login from 91.121.103.175 (FR/France/ns354139.ip-91-121-103.eu): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Nov 14 13:02:36 host sshd[27082]: Invalid user lucie from 91.121.103.175 port 35526 |
2019-11-15 02:21:44 |
| 92.253.23.7 | attackspam | Nov 14 10:07:41 dallas01 sshd[860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.253.23.7 Nov 14 10:07:43 dallas01 sshd[860]: Failed password for invalid user plex from 92.253.23.7 port 51996 ssh2 Nov 14 10:12:20 dallas01 sshd[1817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.253.23.7 |
2019-11-15 02:44:44 |
| 115.79.60.104 | attackbots | Nov 14 16:58:02 zeus sshd[31635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.79.60.104 Nov 14 16:58:04 zeus sshd[31635]: Failed password for invalid user nobash from 115.79.60.104 port 35878 ssh2 Nov 14 17:02:36 zeus sshd[31755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.79.60.104 Nov 14 17:02:38 zeus sshd[31755]: Failed password for invalid user ident from 115.79.60.104 port 45526 ssh2 |
2019-11-15 02:09:22 |
| 167.86.94.107 | attackspam | Automatic report - XMLRPC Attack |
2019-11-15 02:23:22 |
| 112.198.115.44 | attack | Lag internet connection |
2019-11-15 02:23:02 |