City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.172.38.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59087
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;2.172.38.69. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022800 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 20:27:22 CST 2025
;; MSG SIZE rcvd: 104Host 69.38.172.2.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 69.38.172.2.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 222.186.52.139 | attack | 04/19/2020-19:48:31.839801 222.186.52.139 Protocol: 6 ET SCAN Potential SSH Scan |
2020-04-20 07:56:49 |
| 185.50.149.2 | attack | Apr 20 01:34:58 relay postfix/smtpd\[11259\]: warning: unknown\[185.50.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 20 01:42:22 relay postfix/smtpd\[11239\]: warning: unknown\[185.50.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 20 01:42:41 relay postfix/smtpd\[11254\]: warning: unknown\[185.50.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 20 01:42:59 relay postfix/smtpd\[17445\]: warning: unknown\[185.50.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 20 01:46:25 relay postfix/smtpd\[11259\]: warning: unknown\[185.50.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-04-20 07:49:34 |
| 103.79.90.72 | attackbotsspam | 3x Failed Password |
2020-04-20 07:41:31 |
| 104.198.75.54 | attackspambots | k+ssh-bruteforce |
2020-04-20 07:33:26 |
| 94.191.61.57 | attack | Lines containing failures of 94.191.61.57 Apr 19 12:12:17 kmh-vmh-001-fsn05 sshd[1625]: Invalid user testtest from 94.191.61.57 port 59720 Apr 19 12:12:17 kmh-vmh-001-fsn05 sshd[1625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.61.57 Apr 19 12:12:19 kmh-vmh-001-fsn05 sshd[1625]: Failed password for invalid user testtest from 94.191.61.57 port 59720 ssh2 Apr 19 12:12:21 kmh-vmh-001-fsn05 sshd[1625]: Received disconnect from 94.191.61.57 port 59720:11: Bye Bye [preauth] Apr 19 12:12:21 kmh-vmh-001-fsn05 sshd[1625]: Disconnected from invalid user testtest 94.191.61.57 port 59720 [preauth] Apr 19 12:57:09 kmh-vmh-001-fsn05 sshd[9758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.61.57 user=r.r Apr 19 12:57:12 kmh-vmh-001-fsn05 sshd[9758]: Failed password for r.r from 94.191.61.57 port 46298 ssh2 Apr 19 12:57:14 kmh-vmh-001-fsn05 sshd[9758]: Received disconnect from 94.191......... ------------------------------ |
2020-04-20 07:48:08 |
| 39.97.124.97 | attackbotsspam | srv01 SSH BruteForce Attacks 22 .. |
2020-04-20 07:45:18 |
| 175.145.207.141 | attackspam | Apr 20 01:14:24 srv01 sshd[16559]: Invalid user user2 from 175.145.207.141 port 11529 Apr 20 01:14:24 srv01 sshd[16559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.145.207.141 Apr 20 01:14:24 srv01 sshd[16559]: Invalid user user2 from 175.145.207.141 port 11529 Apr 20 01:14:25 srv01 sshd[16559]: Failed password for invalid user user2 from 175.145.207.141 port 11529 ssh2 Apr 20 01:14:24 srv01 sshd[16559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.145.207.141 Apr 20 01:14:24 srv01 sshd[16559]: Invalid user user2 from 175.145.207.141 port 11529 Apr 20 01:14:25 srv01 sshd[16559]: Failed password for invalid user user2 from 175.145.207.141 port 11529 ssh2 ... |
2020-04-20 07:52:07 |
| 44.233.207.93 | attack | SSH brute force |
2020-04-20 08:07:37 |
| 80.211.45.85 | attackspam | Apr 19 22:40:45 legacy sshd[19432]: Failed password for root from 80.211.45.85 port 42882 ssh2 Apr 19 22:46:17 legacy sshd[19878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Apr 19 22:46:19 legacy sshd[19878]: Failed password for invalid user oracle from 80.211.45.85 port 33090 ssh2 ... |
2020-04-20 07:52:58 |
| 49.72.211.68 | attack | SASL broute force |
2020-04-20 07:37:33 |
| 167.172.207.89 | attackspambots | Too many connections or unauthorized access detected from Arctic banned ip |
2020-04-20 07:38:47 |
| 162.243.50.8 | attackbots | prod11 ... |
2020-04-20 08:08:34 |
| 103.124.92.184 | attackbots | Apr 19 22:50:05 haigwepa sshd[27084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.124.92.184 Apr 19 22:50:07 haigwepa sshd[27084]: Failed password for invalid user admin from 103.124.92.184 port 41642 ssh2 ... |
2020-04-20 07:33:57 |
| 104.248.176.46 | attackbotsspam | Apr 19 23:11:48 vlre-nyc-1 sshd\[5583\]: Invalid user ig from 104.248.176.46 Apr 19 23:11:48 vlre-nyc-1 sshd\[5583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.176.46 Apr 19 23:11:51 vlre-nyc-1 sshd\[5583\]: Failed password for invalid user ig from 104.248.176.46 port 32970 ssh2 Apr 19 23:15:48 vlre-nyc-1 sshd\[5727\]: Invalid user iy from 104.248.176.46 Apr 19 23:15:48 vlre-nyc-1 sshd\[5727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.176.46 ... |
2020-04-20 07:42:44 |
| 89.248.160.178 | attack | 04/19/2020-19:26:33.276462 89.248.160.178 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-04-20 07:44:47 |