City: Bari
Region: Regione Puglia
Country: Italy
Internet Service Provider: Vodafone
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 2.42.164.75 | attack | Telnet Server BruteForce Attack |
2019-06-26 12:46:59 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.42.164.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28435
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;2.42.164.28. IN A
;; AUTHORITY SECTION:
. 354 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2023052300 1800 900 604800 86400
;; Query time: 132 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 24 00:04:03 CST 2023
;; MSG SIZE rcvd: 10428.164.42.2.in-addr.arpa domain name pointer net-2-42-164-28.cust.vodafonedsl.it.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
28.164.42.2.in-addr.arpa name = net-2-42-164-28.cust.vodafonedsl.it.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 92.118.37.88 | attack | firewall-block, port(s): 4489/tcp, 7002/tcp, 7004/tcp, 7005/tcp, 7008/tcp, 7009/tcp, 7010/tcp, 8889/tcp, 44489/tcp, 45678/tcp, 55589/tcp |
2019-12-20 15:06:37 |
| 103.26.99.114 | attackbots | Dec 20 07:30:15 MK-Soft-Root1 sshd[27981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.99.114 Dec 20 07:30:17 MK-Soft-Root1 sshd[27981]: Failed password for invalid user ax400 from 103.26.99.114 port 29272 ssh2 ... |
2019-12-20 14:53:12 |
| 40.92.9.32 | attackbots | Dec 20 10:19:30 debian-2gb-vpn-nbg1-1 kernel: [1204729.962801] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.9.32 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=35618 DF PROTO=TCP SPT=58337 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0 |
2019-12-20 15:36:13 |
| 189.126.183.12 | attack | Dec 20 07:57:49 server010 sshd[12395]: Invalid user shuai from 189.126.183.12 Dec 20 07:57:49 server010 sshd[12395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.126.183.12 Dec 20 07:57:51 server010 sshd[12395]: Failed password for invalid user shuai from 189.126.183.12 port 5419 ssh2 Dec 20 07:58:48 server010 sshd[12422]: Invalid user tao from 189.126.183.12 Dec 20 07:58:48 server010 sshd[12422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.126.183.12 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=189.126.183.12 |
2019-12-20 15:07:57 |
| 164.132.62.233 | attackspambots | Dec 19 20:25:03 web9 sshd\[24666\]: Invalid user espina from 164.132.62.233 Dec 19 20:25:03 web9 sshd\[24666\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 Dec 19 20:25:06 web9 sshd\[24666\]: Failed password for invalid user espina from 164.132.62.233 port 54138 ssh2 Dec 19 20:30:07 web9 sshd\[25493\]: Invalid user karna from 164.132.62.233 Dec 19 20:30:07 web9 sshd\[25493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 |
2019-12-20 14:58:39 |
| 185.200.118.83 | attackspambots | Fail2Ban Ban Triggered |
2019-12-20 15:29:26 |
| 90.189.113.55 | attackbots | Unauthorized connection attempt detected from IP address 90.189.113.55 to port 445 |
2019-12-20 15:01:41 |
| 35.160.48.160 | attack | 12/20/2019-07:59:10.543409 35.160.48.160 Protocol: 6 SURICATA TLS invalid record/traffic |
2019-12-20 15:04:35 |
| 182.76.74.78 | attackspam | Dec 20 08:07:55 srv01 sshd[30230]: Invalid user faith from 182.76.74.78 port 27495 Dec 20 08:07:55 srv01 sshd[30230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.74.78 Dec 20 08:07:55 srv01 sshd[30230]: Invalid user faith from 182.76.74.78 port 27495 Dec 20 08:07:57 srv01 sshd[30230]: Failed password for invalid user faith from 182.76.74.78 port 27495 ssh2 Dec 20 08:14:22 srv01 sshd[30765]: Invalid user yabe from 182.76.74.78 port 34429 ... |
2019-12-20 15:27:02 |
| 92.63.194.91 | attackspambots | Excessive Port-Scanning |
2019-12-20 15:01:14 |
| 71.6.232.4 | attack | " " |
2019-12-20 15:08:40 |
| 87.117.3.77 | attackbotsspam | Unauthorized connection attempt detected from IP address 87.117.3.77 to port 445 |
2019-12-20 15:23:19 |
| 90.84.185.24 | attack | Dec 20 10:48:34 microserver sshd[46640]: Invalid user kibsgaard from 90.84.185.24 port 52228 Dec 20 10:48:34 microserver sshd[46640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.84.185.24 Dec 20 10:48:36 microserver sshd[46640]: Failed password for invalid user kibsgaard from 90.84.185.24 port 52228 ssh2 Dec 20 10:55:07 microserver sshd[47854]: Invalid user trungy from 90.84.185.24 port 42136 Dec 20 10:55:07 microserver sshd[47854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.84.185.24 Dec 20 11:05:55 microserver sshd[49573]: Invalid user dbus from 90.84.185.24 port 53860 Dec 20 11:05:55 microserver sshd[49573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.84.185.24 Dec 20 11:05:58 microserver sshd[49573]: Failed password for invalid user dbus from 90.84.185.24 port 53860 ssh2 Dec 20 11:11:24 microserver sshd[50382]: Invalid user user3 from 90.84.185.24 port 59768 Dec 20 |
2019-12-20 15:27:31 |
| 107.170.63.221 | attackspam | Dec 20 07:22:14 vps691689 sshd[25466]: Failed password for root from 107.170.63.221 port 52402 ssh2 Dec 20 07:30:20 vps691689 sshd[25718]: Failed password for backup from 107.170.63.221 port 60864 ssh2 ... |
2019-12-20 14:52:39 |
| 5.188.206.215 | attackspambots | TCP Port Scanning |
2019-12-20 15:25:28 |