City: unknown
Region: unknown
Country: Finland
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.194.186.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63937
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;192.194.186.39. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 11:04:06 CST 2025
;; MSG SIZE rcvd: 107Host 39.186.194.192.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 39.186.194.192.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.199.45.83 | attack | Aug 5 23:14:00 dignus sshd[29884]: Failed password for root from 139.199.45.83 port 40906 ssh2 Aug 5 23:15:51 dignus sshd[30126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 user=root Aug 5 23:15:52 dignus sshd[30126]: Failed password for root from 139.199.45.83 port 59928 ssh2 Aug 5 23:17:32 dignus sshd[30351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 user=root Aug 5 23:17:34 dignus sshd[30351]: Failed password for root from 139.199.45.83 port 50740 ssh2 ... |
2020-08-06 14:20:32 |
| 178.238.239.38 | attackspambots | 178.238.239.38 - - [06/Aug/2020:07:54:19 +0200] "GET /wp-login.php HTTP/1.1" 200 5990 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.238.239.38 - - [06/Aug/2020:07:54:21 +0200] "POST /wp-login.php HTTP/1.1" 200 6220 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.238.239.38 - - [06/Aug/2020:07:54:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-08-06 13:58:35 |
| 47.96.80.168 | attackbots | " " |
2020-08-06 14:31:23 |
| 218.14.80.46 | attackspam | [H1.VM7] Blocked by UFW |
2020-08-06 14:22:17 |
| 68.183.219.181 | attackspambots | Aug 6 01:35:50 ny01 sshd[22364]: Failed password for root from 68.183.219.181 port 38960 ssh2 Aug 6 01:39:36 ny01 sshd[22792]: Failed password for root from 68.183.219.181 port 50854 ssh2 |
2020-08-06 13:58:12 |
| 52.205.190.131 | attackspambots | Port Scan |
2020-08-06 14:16:13 |
| 222.186.31.166 | attackspambots | detected by Fail2Ban |
2020-08-06 14:02:52 |
| 139.155.86.130 | attackspam | Aug 6 07:45:22 buvik sshd[8951]: Failed password for root from 139.155.86.130 port 58958 ssh2 Aug 6 07:49:57 buvik sshd[9464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root Aug 6 07:49:58 buvik sshd[9464]: Failed password for root from 139.155.86.130 port 55240 ssh2 ... |
2020-08-06 13:54:45 |
| 59.126.194.91 | attackspambots | Port probing on unauthorized port 23 |
2020-08-06 14:24:03 |
| 51.77.194.232 | attackspambots | Aug 6 06:51:54 rocket sshd[12522]: Failed password for root from 51.77.194.232 port 44658 ssh2 Aug 6 06:54:55 rocket sshd[14092]: Failed password for root from 51.77.194.232 port 36992 ssh2 ... |
2020-08-06 13:56:27 |
| 39.45.20.236 | attackbots | 1596691488 - 08/06/2020 07:24:48 Host: 39.45.20.236/39.45.20.236 Port: 445 TCP Blocked |
2020-08-06 13:49:59 |
| 58.16.145.208 | attackbots | Lines containing failures of 58.16.145.208 Aug 3 20:39:31 ntop sshd[5189]: User r.r from 58.16.145.208 not allowed because not listed in AllowUsers Aug 3 20:39:31 ntop sshd[5189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.16.145.208 user=r.r Aug 3 20:39:33 ntop sshd[5189]: Failed password for invalid user r.r from 58.16.145.208 port 54434 ssh2 Aug 3 20:39:34 ntop sshd[5189]: Received disconnect from 58.16.145.208 port 54434:11: Bye Bye [preauth] Aug 3 20:39:34 ntop sshd[5189]: Disconnected from invalid user r.r 58.16.145.208 port 54434 [preauth] Aug 3 20:55:23 ntop sshd[6851]: User r.r from 58.16.145.208 not allowed because not listed in AllowUsers Aug 3 20:55:23 ntop sshd[6851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.16.145.208 user=r.r Aug 3 20:55:26 ntop sshd[6851]: Failed password for invalid user r.r from 58.16.145.208 port 58386 ssh2 Aug 3 20:55:26 ntop s........ ------------------------------ |
2020-08-06 14:07:28 |
| 61.177.172.41 | attack | Aug 6 06:52:23 rocket sshd[12562]: Failed password for root from 61.177.172.41 port 32122 ssh2 Aug 6 06:52:36 rocket sshd[12562]: error: maximum authentication attempts exceeded for root from 61.177.172.41 port 32122 ssh2 [preauth] ... |
2020-08-06 14:06:02 |
| 159.192.168.178 | attackbots | Unauthorised access (Aug 6) SRC=159.192.168.178 LEN=52 TOS=0x10 PREC=0x40 TTL=115 ID=29490 DF TCP DPT=445 WINDOW=8192 SYN |
2020-08-06 13:52:32 |
| 123.207.142.208 | attackbotsspam | Aug 6 06:45:01 h2646465 sshd[28453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.142.208 user=root Aug 6 06:45:03 h2646465 sshd[28453]: Failed password for root from 123.207.142.208 port 42902 ssh2 Aug 6 07:06:55 h2646465 sshd[31926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.142.208 user=root Aug 6 07:06:57 h2646465 sshd[31926]: Failed password for root from 123.207.142.208 port 46496 ssh2 Aug 6 07:13:08 h2646465 sshd[32672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.142.208 user=root Aug 6 07:13:10 h2646465 sshd[32672]: Failed password for root from 123.207.142.208 port 51594 ssh2 Aug 6 07:19:24 h2646465 sshd[970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.142.208 user=root Aug 6 07:19:26 h2646465 sshd[970]: Failed password for root from 123.207.142.208 port 56688 ssh2 Aug 6 07:25:17 |
2020-08-06 13:54:17 |