City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.57.75.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35296
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;18.57.75.85. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025032900 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 29 17:02:38 CST 2025
;; MSG SIZE rcvd: 104b'Host 85.75.57.18.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 18.57.75.85.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.13.191.132 | attackbots | SSH Brute-Force reported by Fail2Ban |
2020-07-13 16:11:11 |
| 142.44.139.12 | attackbotsspam | srv02 SSH BruteForce Attacks 22 .. |
2020-07-13 15:55:50 |
| 139.155.24.139 | attack | Jul 13 07:53:28 lukav-desktop sshd\[9236\]: Invalid user password from 139.155.24.139 Jul 13 07:53:28 lukav-desktop sshd\[9236\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.24.139 Jul 13 07:53:30 lukav-desktop sshd\[9236\]: Failed password for invalid user password from 139.155.24.139 port 45466 ssh2 Jul 13 07:55:07 lukav-desktop sshd\[9253\]: Invalid user fuq from 139.155.24.139 Jul 13 07:55:07 lukav-desktop sshd\[9253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.24.139 |
2020-07-13 15:58:12 |
| 2.180.27.2 | attackbotsspam | Automatic report - Port Scan Attack |
2020-07-13 16:03:32 |
| 185.143.73.134 | attackbotsspam | Jul 13 10:05:37 srv01 postfix/smtpd\[15600\]: warning: unknown\[185.143.73.134\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 10:06:25 srv01 postfix/smtpd\[21733\]: warning: unknown\[185.143.73.134\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 10:07:09 srv01 postfix/smtpd\[22882\]: warning: unknown\[185.143.73.134\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 10:07:53 srv01 postfix/smtpd\[15602\]: warning: unknown\[185.143.73.134\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 10:08:33 srv01 postfix/smtpd\[22723\]: warning: unknown\[185.143.73.134\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-07-13 16:08:45 |
| 111.229.163.149 | attack | 2020-07-13T04:19:12.652911shield sshd\[5587\]: Invalid user telegraf from 111.229.163.149 port 41770 2020-07-13T04:19:12.661776shield sshd\[5587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.163.149 2020-07-13T04:19:14.736999shield sshd\[5587\]: Failed password for invalid user telegraf from 111.229.163.149 port 41770 ssh2 2020-07-13T04:23:07.802195shield sshd\[6766\]: Invalid user rtorrent from 111.229.163.149 port 56842 2020-07-13T04:23:07.810627shield sshd\[6766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.163.149 |
2020-07-13 15:35:48 |
| 45.141.84.110 | attack | Port scan on 3 port(s): 6952 7513 8373 |
2020-07-13 16:10:20 |
| 85.209.0.100 | attackbotsspam | (sshd) Failed SSH login from 85.209.0.100 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 13 10:06:55 amsweb01 sshd[2066]: Did not receive identification string from 85.209.0.100 port 26164 Jul 13 10:06:56 amsweb01 sshd[2067]: Did not receive identification string from 85.209.0.100 port 28364 Jul 13 10:07:01 amsweb01 sshd[2075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.100 user=root Jul 13 10:07:01 amsweb01 sshd[2074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.100 user=root Jul 13 10:07:02 amsweb01 sshd[2073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.100 user=root |
2020-07-13 16:10:06 |
| 51.38.83.164 | attackspambots | $f2bV_matches |
2020-07-13 15:42:59 |
| 107.172.249.111 | attack | SSH bruteforce |
2020-07-13 15:51:28 |
| 42.236.10.123 | attack | Automatic report - Banned IP Access |
2020-07-13 16:03:01 |
| 138.197.171.149 | attack | Jul 13 09:53:39 cp sshd[11832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.171.149 Jul 13 09:53:41 cp sshd[11832]: Failed password for invalid user sarah from 138.197.171.149 port 40278 ssh2 Jul 13 10:00:42 cp sshd[16231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.171.149 |
2020-07-13 16:05:03 |
| 192.241.233.101 | attack | Port scan denied |
2020-07-13 15:37:57 |
| 191.92.124.82 | attackbotsspam | 2020-07-13T04:53:48.488545shield sshd\[17553\]: Invalid user gaurav from 191.92.124.82 port 35824 2020-07-13T04:53:48.499266shield sshd\[17553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.92.124.82 2020-07-13T04:53:50.241875shield sshd\[17553\]: Failed password for invalid user gaurav from 191.92.124.82 port 35824 ssh2 2020-07-13T04:56:50.913443shield sshd\[18659\]: Invalid user portal from 191.92.124.82 port 45276 2020-07-13T04:56:50.925158shield sshd\[18659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.92.124.82 |
2020-07-13 16:07:09 |
| 203.172.76.4 | attackbotsspam | Jul 13 07:38:21 lnxweb62 sshd[6769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.76.4 |
2020-07-13 15:54:18 |