City: unknown
Region: unknown
Country: unknown
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.196.172.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29614
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.196.172.99. IN A
;; AUTHORITY SECTION:
. 555 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400
;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:18:46 CST 2022
;; MSG SIZE rcvd: 107Host 99.172.196.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 99.172.196.139.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 109.202.0.14 | attackspambots | Failed password for invalid user heikekk from 109.202.0.14 port 33046 ssh2 Invalid user saf145645 from 109.202.0.14 port 41760 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.202.0.14 Failed password for invalid user saf145645 from 109.202.0.14 port 41760 ssh2 Invalid user 1q2w3es from 109.202.0.14 port 50482 |
2019-11-09 15:04:34 |
| 222.186.180.8 | attack | Nov 9 03:21:30 firewall sshd[21863]: Failed password for root from 222.186.180.8 port 12216 ssh2 Nov 9 03:21:30 firewall sshd[21863]: error: maximum authentication attempts exceeded for root from 222.186.180.8 port 12216 ssh2 [preauth] Nov 9 03:21:30 firewall sshd[21863]: Disconnecting: Too many authentication failures [preauth] ... |
2019-11-09 14:27:11 |
| 106.241.16.119 | attackspam | Nov 9 01:42:31 ny01 sshd[32672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.241.16.119 Nov 9 01:42:33 ny01 sshd[32672]: Failed password for invalid user hztest0105 from 106.241.16.119 port 57044 ssh2 Nov 9 01:47:04 ny01 sshd[638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.241.16.119 |
2019-11-09 14:58:27 |
| 42.112.27.171 | attackspambots | Nov 9 08:06:53 herz-der-gamer sshd[17838]: Invalid user stacey from 42.112.27.171 port 50316 ... |
2019-11-09 15:07:36 |
| 40.117.238.50 | attackspam | Nov 6 06:37:23 rb06 sshd[6830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.238.50 user=r.r Nov 6 06:37:25 rb06 sshd[6830]: Failed password for r.r from 40.117.238.50 port 43124 ssh2 Nov 6 06:37:26 rb06 sshd[6830]: Received disconnect from 40.117.238.50: 11: Bye Bye [preauth] Nov 6 06:41:06 rb06 sshd[8086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.238.50 user=r.r Nov 6 06:41:08 rb06 sshd[8086]: Failed password for r.r from 40.117.238.50 port 53626 ssh2 Nov 6 06:41:08 rb06 sshd[8086]: Received disconnect from 40.117.238.50: 11: Bye Bye [preauth] Nov 6 06:44:43 rb06 sshd[17780]: Failed password for invalid user posp from 40.117.238.50 port 35852 ssh2 Nov 6 06:44:43 rb06 sshd[17780]: Received disconnect from 40.117.238.50: 11: Bye Bye [preauth] Nov 6 06:48:14 rb06 sshd[17847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= r........ ------------------------------- |
2019-11-09 15:04:02 |
| 80.210.28.44 | attackbots | Automatic report - Port Scan Attack |
2019-11-09 15:13:12 |
| 35.231.6.102 | attackbots | Nov 9 03:25:20 firewall sshd[21950]: Invalid user wodezuiai2 from 35.231.6.102 Nov 9 03:25:22 firewall sshd[21950]: Failed password for invalid user wodezuiai2 from 35.231.6.102 port 54368 ssh2 Nov 9 03:29:15 firewall sshd[22068]: Invalid user interchange from 35.231.6.102 ... |
2019-11-09 15:08:49 |
| 54.38.222.82 | attackspam | Lines containing failures of 54.38.222.82 Nov 8 12:09:26 kopano sshd[27639]: Did not receive identification string from 54.38.222.82 port 60986 Nov 8 14:47:11 kopano sshd[963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.222.82 user=r.r Nov 8 14:47:13 kopano sshd[963]: Failed password for r.r from 54.38.222.82 port 43772 ssh2 Nov 8 14:47:13 kopano sshd[963]: Received disconnect from 54.38.222.82 port 43772:11: Normal Shutdown, Thank you for playing [preauth] Nov 8 14:47:13 kopano sshd[963]: Disconnected from authenticating user r.r 54.38.222.82 port 43772 [preauth] Nov 8 14:47:13 kopano sshd[965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.222.82 user=r.r Nov 8 14:47:15 kopano sshd[965]: Failed password for r.r from 54.38.222.82 port 45362 ssh2 Nov 8 14:47:15 kopano sshd[965]: Received disconnect from 54.38.222.82 port 45362:11: Normal Shutdown, Thank you for pl........ ------------------------------ |
2019-11-09 14:45:52 |
| 132.232.93.48 | attack | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.93.48 user=root Failed password for root from 132.232.93.48 port 37640 ssh2 Invalid user temp from 132.232.93.48 port 33724 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.93.48 Failed password for invalid user temp from 132.232.93.48 port 33724 ssh2 |
2019-11-09 14:59:05 |
| 185.222.211.166 | attack | Nov 9 05:12:36 h2177944 kernel: \[6148348.424520\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.222.211.166 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=8322 PROTO=TCP SPT=8080 DPT=3401 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 05:16:10 h2177944 kernel: \[6148562.872810\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.222.211.166 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=59928 PROTO=TCP SPT=8080 DPT=444 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 05:16:18 h2177944 kernel: \[6148570.882767\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.222.211.166 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=58318 PROTO=TCP SPT=8080 DPT=13389 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 05:26:10 h2177944 kernel: \[6149162.385920\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.222.211.166 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=29248 PROTO=TCP SPT=8080 DPT=33398 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 05:53:16 h2177944 kernel: \[6150787.990897\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.222.211.166 DST=85.214 |
2019-11-09 14:27:43 |
| 84.244.180.7 | attackbots | 2019-11-09T07:24:51.247853mail01 postfix/smtpd[14724]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-09T07:29:03.004742mail01 postfix/smtpd[3596]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-09T07:29:42.470378mail01 postfix/smtpd[23279]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-09 14:53:35 |
| 106.0.6.33 | attackspambots | Port Scan 1433 |
2019-11-09 14:56:10 |
| 118.24.178.224 | attackbotsspam | Nov 9 06:18:19 localhost sshd\[27924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.178.224 user=root Nov 9 06:18:21 localhost sshd\[27924\]: Failed password for root from 118.24.178.224 port 46112 ssh2 Nov 9 06:23:47 localhost sshd\[28047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.178.224 user=root Nov 9 06:23:48 localhost sshd\[28047\]: Failed password for root from 118.24.178.224 port 53288 ssh2 Nov 9 06:29:50 localhost sshd\[28252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.178.224 user=root ... |
2019-11-09 14:49:44 |
| 46.242.57.105 | attackspambots | Chat Spam |
2019-11-09 14:24:58 |
| 140.143.222.95 | attack | Nov 9 07:20:57 vps647732 sshd[14161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.222.95 Nov 9 07:20:59 vps647732 sshd[14161]: Failed password for invalid user romans from 140.143.222.95 port 33360 ssh2 ... |
2019-11-09 14:26:54 |