City: Wuppertal
Region: Nordrhein-Westfalen
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.23.131.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59053
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;212.23.131.14. IN A
;; AUTHORITY SECTION:
. 305 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024060100 1800 900 604800 86400
;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 02 01:39:03 CST 2024
;; MSG SIZE rcvd: 106Host 14.131.23.212.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 14.131.23.212.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.145.13.229 | attackbots | ET DROP Dshield Block Listed Source group 1 - port: 5060 proto: sip cat: Misc Attackbytes: 461 |
2020-10-14 04:59:54 |
| 193.169.252.205 | attack | 2020-10-13 22:10:50 auth_plain authenticator failed for (95.216.137.45) [193.169.252.205]: 535 Incorrect authentication data (set_id=rpc) 2020-10-13 22:30:14 auth_plain authenticator failed for (95.216.137.45) [193.169.252.205]: 535 Incorrect authentication data (set_id=stone) ... |
2020-10-14 04:55:15 |
| 177.42.216.164 | attackbots | 1602535371 - 10/12/2020 22:42:51 Host: 177.42.216.164/177.42.216.164 Port: 445 TCP Blocked |
2020-10-14 04:52:37 |
| 161.35.45.62 | attackbots | various type of attack |
2020-10-14 04:36:42 |
| 211.155.225.104 | attackspam | Oct 13 16:03:27 george sshd[9432]: Invalid user spy from 211.155.225.104 port 51453 Oct 13 16:03:27 george sshd[9432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.155.225.104 Oct 13 16:03:30 george sshd[9432]: Failed password for invalid user spy from 211.155.225.104 port 51453 ssh2 Oct 13 16:08:19 george sshd[9463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.155.225.104 user=root Oct 13 16:08:22 george sshd[9463]: Failed password for root from 211.155.225.104 port 53748 ssh2 ... |
2020-10-14 04:43:01 |
| 94.127.144.179 | attack | Dovecot Invalid User Login Attempt. |
2020-10-14 04:44:51 |
| 104.248.81.158 | attackbots | Oct 13 16:35:52 DAAP sshd[4594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.81.158 Oct 13 16:35:52 DAAP sshd[4594]: Invalid user noel from 104.248.81.158 port 42650 Oct 13 16:35:54 DAAP sshd[4594]: Failed password for invalid user noel from 104.248.81.158 port 42650 ssh2 Oct 13 16:39:23 DAAP sshd[4662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.81.158 user=root Oct 13 16:39:25 DAAP sshd[4662]: Failed password for root from 104.248.81.158 port 47340 ssh2 Oct 13 16:42:51 DAAP sshd[4699]: Invalid user lixia from 104.248.81.158 port 52028 ... |
2020-10-14 04:22:27 |
| 139.59.98.138 | attack | Lines containing failures of 139.59.98.138 (max 1000) Oct 12 20:00:49 UTC__SANYALnet-Labs__cac1 sshd[5496]: Connection from 139.59.98.138 port 55274 on 64.137.179.160 port 22 Oct 12 20:00:51 UTC__SANYALnet-Labs__cac1 sshd[5496]: User r.r from 139.59.98.138 not allowed because not listed in AllowUsers Oct 12 20:00:51 UTC__SANYALnet-Labs__cac1 sshd[5496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.138 user=r.r Oct 12 20:00:53 UTC__SANYALnet-Labs__cac1 sshd[5496]: Failed password for invalid user r.r from 139.59.98.138 port 55274 ssh2 Oct 12 20:00:53 UTC__SANYALnet-Labs__cac1 sshd[5496]: Received disconnect from 139.59.98.138 port 55274:11: Bye Bye [preauth] Oct 12 20:00:53 UTC__SANYALnet-Labs__cac1 sshd[5496]: Disconnected from 139.59.98.138 port 55274 [preauth] Oct 12 20:15:17 UTC__SANYALnet-Labs__cac1 sshd[6045]: Connection from 139.59.98.138 port 47234 on 64.137.179.160 port 22 Oct 12 20:15:18 UTC__SANYALnet-Labs__........ ------------------------------ |
2020-10-14 04:26:19 |
| 186.121.251.3 | attack | 186.121.251.3 - - [13/Oct/2020:21:30:00 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 186.121.251.3 - - [13/Oct/2020:21:30:02 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 186.121.251.3 - - [13/Oct/2020:21:30:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-10-14 04:30:39 |
| 124.244.15.151 | attack | (sshd) Failed SSH login from 124.244.15.151 (HK/Hong Kong/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 12 16:42:57 server2 sshd[11915]: Invalid user admin from 124.244.15.151 Oct 12 16:42:59 server2 sshd[11915]: Failed password for invalid user admin from 124.244.15.151 port 39223 ssh2 Oct 12 16:43:01 server2 sshd[11935]: Invalid user admin from 124.244.15.151 Oct 12 16:43:03 server2 sshd[11935]: Failed password for invalid user admin from 124.244.15.151 port 39329 ssh2 Oct 12 16:43:04 server2 sshd[12221]: Invalid user admin from 124.244.15.151 |
2020-10-14 04:34:01 |
| 113.118.185.180 | attackspambots | 2020-10-13T18:27:44.859045vps-d63064a2 sshd[110449]: User root from 113.118.185.180 not allowed because not listed in AllowUsers 2020-10-13T18:27:46.764540vps-d63064a2 sshd[110449]: Failed password for invalid user root from 113.118.185.180 port 63914 ssh2 2020-10-13T18:30:07.436205vps-d63064a2 sshd[110456]: User root from 113.118.185.180 not allowed because not listed in AllowUsers 2020-10-13T18:30:07.452292vps-d63064a2 sshd[110456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.118.185.180 user=root 2020-10-13T18:30:07.436205vps-d63064a2 sshd[110456]: User root from 113.118.185.180 not allowed because not listed in AllowUsers 2020-10-13T18:30:09.289494vps-d63064a2 sshd[110456]: Failed password for invalid user root from 113.118.185.180 port 61542 ssh2 ... |
2020-10-14 04:27:14 |
| 58.56.164.66 | attackbots | 2020-10-13T15:11:24.5495341495-001 sshd[30134]: Invalid user applprod from 58.56.164.66 port 38732 2020-10-13T15:11:27.1145041495-001 sshd[30134]: Failed password for invalid user applprod from 58.56.164.66 port 38732 ssh2 2020-10-13T15:13:29.2157811495-001 sshd[30248]: Invalid user applprod from 58.56.164.66 port 38024 2020-10-13T15:13:29.2191071495-001 sshd[30248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.56.164.66 2020-10-13T15:13:29.2157811495-001 sshd[30248]: Invalid user applprod from 58.56.164.66 port 38024 2020-10-13T15:13:31.2665281495-001 sshd[30248]: Failed password for invalid user applprod from 58.56.164.66 port 38024 ssh2 ... |
2020-10-14 04:44:17 |
| 43.254.54.96 | attackspambots | Oct 14 01:56:45 mx sshd[1426623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.54.96 Oct 14 01:56:45 mx sshd[1426623]: Invalid user ken from 43.254.54.96 port 56159 Oct 14 01:56:47 mx sshd[1426623]: Failed password for invalid user ken from 43.254.54.96 port 56159 ssh2 Oct 14 01:59:19 mx sshd[1426659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.54.96 user=root Oct 14 01:59:21 mx sshd[1426659]: Failed password for root from 43.254.54.96 port 44272 ssh2 ... |
2020-10-14 04:29:45 |
| 77.233.4.133 | attackbots | 2020-10-13T12:30:42.820761server.mjenks.net sshd[622778]: Invalid user livia from 77.233.4.133 port 38846 2020-10-13T12:30:42.826599server.mjenks.net sshd[622778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.233.4.133 2020-10-13T12:30:42.820761server.mjenks.net sshd[622778]: Invalid user livia from 77.233.4.133 port 38846 2020-10-13T12:30:44.583755server.mjenks.net sshd[622778]: Failed password for invalid user livia from 77.233.4.133 port 38846 ssh2 2020-10-13T12:34:28.902108server.mjenks.net sshd[623019]: Invalid user www-data from 77.233.4.133 port 40124 ... |
2020-10-14 04:41:45 |
| 167.99.73.88 | attackspam | (sshd) Failed SSH login from 167.99.73.88 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 13:37:23 server4 sshd[32463]: Invalid user julien from 167.99.73.88 Oct 13 13:37:23 server4 sshd[32463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.73.88 Oct 13 13:37:25 server4 sshd[32463]: Failed password for invalid user julien from 167.99.73.88 port 52180 ssh2 Oct 13 13:47:36 server4 sshd[8798]: Invalid user ant from 167.99.73.88 Oct 13 13:47:36 server4 sshd[8798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.73.88 |
2020-10-14 04:36:17 |