City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.9.195.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33960
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;159.9.195.134. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022800 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 16:52:32 CST 2025
;; MSG SIZE rcvd: 106Host 134.195.9.159.in-addr.arpa not found: 2(SERVFAIL)
server can't find 159.9.195.134.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 51.68.198.75 | attackspam | SSH Invalid Login |
2020-08-28 08:02:45 |
| 82.150.35.74 | attackspambots | Aug 27 05:26:11 mail.srvfarm.net postfix/smtpd[1355303]: warning: unknown[82.150.35.74]: SASL PLAIN authentication failed: Aug 27 05:26:11 mail.srvfarm.net postfix/smtpd[1355303]: lost connection after AUTH from unknown[82.150.35.74] Aug 27 05:32:47 mail.srvfarm.net postfix/smtps/smtpd[1355455]: warning: unknown[82.150.35.74]: SASL PLAIN authentication failed: Aug 27 05:32:47 mail.srvfarm.net postfix/smtps/smtpd[1355455]: lost connection after AUTH from unknown[82.150.35.74] Aug 27 05:35:28 mail.srvfarm.net postfix/smtpd[1362102]: warning: unknown[82.150.35.74]: SASL PLAIN authentication failed: |
2020-08-28 07:36:59 |
| 172.82.239.21 | attackbots | Aug 27 19:30:53 mail.srvfarm.net postfix/smtpd[1702612]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Aug 27 19:32:05 mail.srvfarm.net postfix/smtpd[1702147]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Aug 27 19:33:27 mail.srvfarm.net postfix/smtpd[1703304]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Aug 27 19:34:23 mail.srvfarm.net postfix/smtpd[1703309]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Aug 27 19:34:30 mail.srvfarm.net postfix/smtpd[1703312]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] |
2020-08-28 07:31:45 |
| 58.87.78.80 | attackbots | Aug 28 08:44:31 localhost sshd[2046401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.78.80 user=root Aug 28 08:44:33 localhost sshd[2046401]: Failed password for root from 58.87.78.80 port 45390 ssh2 ... |
2020-08-28 08:02:21 |
| 172.82.239.22 | attackspam | Aug 27 19:30:53 mail.srvfarm.net postfix/smtpd[1703066]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 27 19:32:05 mail.srvfarm.net postfix/smtpd[1703120]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 27 19:33:27 mail.srvfarm.net postfix/smtpd[1703301]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 27 19:34:23 mail.srvfarm.net postfix/smtpd[1703121]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 27 19:34:30 mail.srvfarm.net postfix/smtpd[1702147]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] |
2020-08-28 07:31:19 |
| 14.29.239.215 | attack | Aug 27 23:34:30 PorscheCustomer sshd[1106]: Failed password for root from 14.29.239.215 port 36576 ssh2 Aug 27 23:38:27 PorscheCustomer sshd[1204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.239.215 Aug 27 23:38:29 PorscheCustomer sshd[1204]: Failed password for invalid user gv from 14.29.239.215 port 41158 ssh2 ... |
2020-08-28 08:01:37 |
| 5.188.84.115 | attackspambots | fell into ViewStateTrap:brussels |
2020-08-28 07:53:41 |
| 72.44.25.0 | attackspam | 20/8/27@17:07:02: FAIL: Alarm-Telnet address from=72.44.25.0 ... |
2020-08-28 07:47:01 |
| 177.74.254.88 | attack | Aug 27 05:37:23 mail.srvfarm.net postfix/smtpd[1362101]: warning: unknown[177.74.254.88]: SASL PLAIN authentication failed: Aug 27 05:37:24 mail.srvfarm.net postfix/smtpd[1362101]: lost connection after AUTH from unknown[177.74.254.88] Aug 27 05:43:07 mail.srvfarm.net postfix/smtps/smtpd[1359584]: warning: unknown[177.74.254.88]: SASL PLAIN authentication failed: Aug 27 05:43:07 mail.srvfarm.net postfix/smtps/smtpd[1359584]: lost connection after AUTH from unknown[177.74.254.88] Aug 27 05:43:49 mail.srvfarm.net postfix/smtps/smtpd[1357931]: warning: unknown[177.74.254.88]: SASL PLAIN authentication failed: |
2020-08-28 07:31:01 |
| 167.249.11.57 | attack | SSH invalid-user multiple login try |
2020-08-28 07:46:10 |
| 210.16.187.206 | attackspambots | SSH Brute-Force. Ports scanning. |
2020-08-28 07:43:07 |
| 141.98.10.197 | attack | Mailserver and mailaccount attacks |
2020-08-28 07:54:34 |
| 198.35.47.13 | attack | Aug 28 01:06:14 abendstille sshd\[26322\]: Invalid user otr from 198.35.47.13 Aug 28 01:06:14 abendstille sshd\[26322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.35.47.13 Aug 28 01:06:16 abendstille sshd\[26322\]: Failed password for invalid user otr from 198.35.47.13 port 53786 ssh2 Aug 28 01:10:48 abendstille sshd\[31494\]: Invalid user support from 198.35.47.13 Aug 28 01:10:48 abendstille sshd\[31494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.35.47.13 ... |
2020-08-28 07:51:09 |
| 103.40.200.211 | attackbots | Aug 27 05:42:34 mail.srvfarm.net postfix/smtpd[1361436]: warning: unknown[103.40.200.211]: SASL PLAIN authentication failed: Aug 27 05:42:35 mail.srvfarm.net postfix/smtpd[1361436]: lost connection after AUTH from unknown[103.40.200.211] Aug 27 05:42:50 mail.srvfarm.net postfix/smtps/smtpd[1357931]: warning: unknown[103.40.200.211]: SASL PLAIN authentication failed: Aug 27 05:42:50 mail.srvfarm.net postfix/smtps/smtpd[1357931]: lost connection after AUTH from unknown[103.40.200.211] Aug 27 05:49:22 mail.srvfarm.net postfix/smtpd[1361463]: warning: unknown[103.40.200.211]: SASL PLAIN authentication failed: |
2020-08-28 07:35:41 |
| 180.76.172.178 | attackbots | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-27T21:15:49Z and 2020-08-27T21:24:59Z |
2020-08-28 07:45:48 |