City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.40.23.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1548
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.40.23.2. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 01:23:35 CST 2025
;; MSG SIZE rcvd: 104
Host 2.23.40.139.in-addr.arpa not found: 2(SERVFAIL)
server can't find 139.40.23.2.in-addr.arpa: SERVFAIL
| IP | Type | Details | Datetime |
|---|---|---|---|
| 67.205.135.65 | attackbotsspam | *Port Scan* detected from 67.205.135.65 (US/United States/New Jersey/North Bergen/-). 4 hits in the last 210 seconds |
2020-08-24 13:26:03 |
| 222.186.175.151 | attackspambots | Aug 24 07:16:06 nextcloud sshd\[30605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Aug 24 07:16:07 nextcloud sshd\[30605\]: Failed password for root from 222.186.175.151 port 54754 ssh2 Aug 24 07:16:25 nextcloud sshd\[30879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root |
2020-08-24 13:17:00 |
| 106.13.228.33 | attack | Aug 23 21:55:16 Host-KLAX-C sshd[28064]: User root from 106.13.228.33 not allowed because not listed in AllowUsers ... |
2020-08-24 13:28:40 |
| 104.248.160.58 | attackspambots | Aug 24 07:46:36 ip40 sshd[3591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.160.58 Aug 24 07:46:38 ip40 sshd[3591]: Failed password for invalid user test01 from 104.248.160.58 port 58716 ssh2 ... |
2020-08-24 13:53:27 |
| 106.13.60.222 | attack | Time: Mon Aug 24 05:58:49 2020 +0200 IP: 106.13.60.222 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 24 05:32:25 mail-01 sshd[14986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.222 user=root Aug 24 05:32:27 mail-01 sshd[14986]: Failed password for root from 106.13.60.222 port 35924 ssh2 Aug 24 05:54:11 mail-01 sshd[16143]: Invalid user apotre from 106.13.60.222 port 59296 Aug 24 05:54:13 mail-01 sshd[16143]: Failed password for invalid user apotre from 106.13.60.222 port 59296 ssh2 Aug 24 05:58:48 mail-01 sshd[16455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.222 user=root |
2020-08-24 13:29:32 |
| 185.234.216.28 | attackspam | CMS (WordPress or Joomla) login attempt. |
2020-08-24 13:38:49 |
| 106.12.69.35 | attack | 2020-08-24T04:37:54.855410vps-d63064a2 sshd[216081]: Invalid user sonar from 106.12.69.35 port 57590 2020-08-24T04:37:56.346819vps-d63064a2 sshd[216081]: Failed password for invalid user sonar from 106.12.69.35 port 57590 ssh2 2020-08-24T04:42:34.261066vps-d63064a2 sshd[216167]: User root from 106.12.69.35 not allowed because not listed in AllowUsers 2020-08-24T04:42:34.302360vps-d63064a2 sshd[216167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.69.35 user=root 2020-08-24T04:42:34.261066vps-d63064a2 sshd[216167]: User root from 106.12.69.35 not allowed because not listed in AllowUsers 2020-08-24T04:42:35.887629vps-d63064a2 sshd[216167]: Failed password for invalid user root from 106.12.69.35 port 52328 ssh2 ... |
2020-08-24 13:44:08 |
| 190.186.250.245 | attack |
|
2020-08-24 13:56:13 |
| 190.171.41.42 | attackbotsspam | 2020-08-23 22:52:22.128612-0500 localhost sshd[55430]: Failed password for invalid user pi from 190.171.41.42 port 58626 ssh2 |
2020-08-24 13:45:25 |
| 46.164.143.82 | attackbotsspam | Aug 24 07:15:20 jane sshd[13752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.164.143.82 Aug 24 07:15:22 jane sshd[13752]: Failed password for invalid user oracle from 46.164.143.82 port 53166 ssh2 ... |
2020-08-24 13:44:26 |
| 104.198.172.68 | attack | 104.198.172.68 - - [24/Aug/2020:05:15:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.198.172.68 - - [24/Aug/2020:05:15:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1858 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.198.172.68 - - [24/Aug/2020:05:15:17 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-24 13:34:47 |
| 190.145.78.65 | attackbotsspam | Aug 24 00:26:11 NPSTNNYC01T sshd[19296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.78.65 Aug 24 00:26:13 NPSTNNYC01T sshd[19296]: Failed password for invalid user minecraft from 190.145.78.65 port 50816 ssh2 Aug 24 00:30:53 NPSTNNYC01T sshd[19713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.78.65 ... |
2020-08-24 13:45:52 |
| 47.17.177.110 | attackbots | Aug 24 07:32:00 abendstille sshd\[16472\]: Invalid user brendan from 47.17.177.110 Aug 24 07:32:00 abendstille sshd\[16472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.17.177.110 Aug 24 07:32:02 abendstille sshd\[16472\]: Failed password for invalid user brendan from 47.17.177.110 port 58716 ssh2 Aug 24 07:36:39 abendstille sshd\[20695\]: Invalid user ksl from 47.17.177.110 Aug 24 07:36:39 abendstille sshd\[20695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.17.177.110 ... |
2020-08-24 13:51:21 |
| 198.12.248.77 | attack | 198.12.248.77 - - [24/Aug/2020:05:36:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.248.77 - - [24/Aug/2020:05:36:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.248.77 - - [24/Aug/2020:05:36:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2019 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-24 13:52:33 |
| 51.68.190.223 | attackbots | Aug 24 07:32:36 srv-ubuntu-dev3 sshd[44045]: Invalid user tomy from 51.68.190.223 Aug 24 07:32:36 srv-ubuntu-dev3 sshd[44045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.190.223 Aug 24 07:32:36 srv-ubuntu-dev3 sshd[44045]: Invalid user tomy from 51.68.190.223 Aug 24 07:32:38 srv-ubuntu-dev3 sshd[44045]: Failed password for invalid user tomy from 51.68.190.223 port 56360 ssh2 Aug 24 07:36:29 srv-ubuntu-dev3 sshd[44622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.190.223 user=root Aug 24 07:36:31 srv-ubuntu-dev3 sshd[44622]: Failed password for root from 51.68.190.223 port 35462 ssh2 Aug 24 07:40:24 srv-ubuntu-dev3 sshd[45191]: Invalid user hz from 51.68.190.223 Aug 24 07:40:24 srv-ubuntu-dev3 sshd[45191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.190.223 Aug 24 07:40:24 srv-ubuntu-dev3 sshd[45191]: Invalid user hz from 51.68.190.223 A ... |
2020-08-24 13:55:15 |