City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.239.104.215
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26741
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;157.239.104.215. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021900 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 19:15:27 CST 2025
;; MSG SIZE rcvd: 108Host 215.104.239.157.in-addr.arpa not found: 2(SERVFAIL)
server can't find 157.239.104.215.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 191.53.198.238 | attack | Jul 10 23:41:21 web1 postfix/smtpd[18248]: warning: unknown[191.53.198.238]: SASL PLAIN authentication failed: authentication failure ... |
2019-07-11 20:56:43 |
| 164.163.99.10 | attackspambots | Invalid user nagios from 164.163.99.10 port 59102 |
2019-07-11 20:22:04 |
| 88.7.100.229 | attackspambots | Jul 11 04:31:35 ntop sshd[12296]: Bad protocol version identification '' from 88.7.100.229 port 45924 Jul 11 04:31:57 ntop sshd[12297]: Invalid user support from 88.7.100.229 port 48508 Jul 11 04:32:00 ntop sshd[12297]: Failed password for invalid user support from 88.7.100.229 port 48508 ssh2 Jul 11 04:32:59 ntop sshd[12297]: Connection closed by 88.7.100.229 port 48508 [preauth] Jul 11 04:33:27 ntop sshd[12369]: Invalid user ubnt from 88.7.100.229 port 50786 Jul 11 04:33:36 ntop sshd[12369]: Failed password for invalid user ubnt from 88.7.100.229 port 50786 ssh2 Jul 11 04:33:38 ntop sshd[12369]: Connection closed by 88.7.100.229 port 50786 [preauth] Jul 11 04:34:04 ntop sshd[12415]: Invalid user cisco from 88.7.100.229 port 45516 Jul 11 04:34:09 ntop sshd[12415]: Failed password for invalid user cisco from 88.7.100.229 port 45516 ssh2 Jul 11 04:34:10 ntop sshd[12415]: Connection closed by 88.7.100.229 port 45516 [preauth] Jul 11 04:34:49 ntop sshd[12450]: Invalid user........ ------------------------------- |
2019-07-11 20:18:15 |
| 114.100.208.8 | attack | [Thu Jul 11 05:25:08 2019] Failed password for invalid user support from 114.100.208.8 port 48765 ssh2 [Thu Jul 11 05:25:14 2019] Failed password for invalid user ubnt from 114.100.208.8 port 57670 ssh2 [Thu Jul 11 05:25:20 2019] Failed password for invalid user cisco from 114.100.208.8 port 41430 ssh2 [Thu Jul 11 05:25:28 2019] Failed password for invalid user pi from 114.100.208.8 port 53825 ssh2 [Thu Jul 11 05:25:37 2019] Failed password for r.r from 114.100.208.8 port 39796 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.100.208.8 |
2019-07-11 20:36:14 |
| 183.250.209.26 | attackbots | PHI,WP GET /wp-login.php |
2019-07-11 20:06:39 |
| 36.232.206.230 | attackbots | 37215/tcp [2019-07-11]1pkt |
2019-07-11 20:44:31 |
| 124.94.144.211 | attackspam | 23/tcp [2019-07-11]1pkt |
2019-07-11 20:13:24 |
| 193.9.27.175 | attackbots | SSH Bruteforce |
2019-07-11 20:55:15 |
| 113.172.233.229 | attackbots | Jul 11 14:02:15 srv-4 sshd\[31376\]: Invalid user admin from 113.172.233.229 Jul 11 14:02:15 srv-4 sshd\[31376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.233.229 Jul 11 14:02:17 srv-4 sshd\[31376\]: Failed password for invalid user admin from 113.172.233.229 port 52610 ssh2 ... |
2019-07-11 20:32:09 |
| 24.227.36.74 | attackspam | Invalid user tl from 24.227.36.74 port 50706 |
2019-07-11 20:23:28 |
| 86.110.116.21 | attackspam | Scanning (more than 2 packets) random ports - tries to find possible vulnerable services |
2019-07-11 20:08:27 |
| 182.246.58.119 | attack | Jul 11 01:32:54 l01 sshd[357237]: Invalid user admin from 182.246.58.119 Jul 11 01:32:54 l01 sshd[357237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.246.58.119 Jul 11 01:32:56 l01 sshd[357237]: Failed password for invalid user admin from 182.246.58.119 port 35050 ssh2 Jul 11 01:32:58 l01 sshd[357237]: Failed password for invalid user admin from 182.246.58.119 port 35050 ssh2 Jul 11 01:33:00 l01 sshd[357237]: Failed password for invalid user admin from 182.246.58.119 port 35050 ssh2 Jul 11 01:33:02 l01 sshd[357237]: Failed password for invalid user admin from 182.246.58.119 port 35050 ssh2 Jul 11 01:33:04 l01 sshd[357237]: Failed password for invalid user admin from 182.246.58.119 port 35050 ssh2 Jul 11 01:33:07 l01 sshd[357237]: Failed password for invalid user admin from 182.246.58.119 port 35050 ssh2 Jul 11 01:33:07 l01 sshd[357237]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.24........ ------------------------------- |
2019-07-11 20:10:16 |
| 152.250.73.88 | attackbots | DATE:2019-07-11 05:38:52, IP:152.250.73.88, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis) |
2019-07-11 20:43:10 |
| 46.83.92.134 | attackspambots | 8080/tcp [2019-07-11]1pkt |
2019-07-11 20:35:34 |
| 218.92.1.142 | attack | Jul 11 00:53:18 TORMINT sshd\[2916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.1.142 user=root Jul 11 00:53:20 TORMINT sshd\[2916\]: Failed password for root from 218.92.1.142 port 36671 ssh2 Jul 11 00:54:44 TORMINT sshd\[2955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.1.142 user=root ... |
2019-07-11 20:15:58 |