City: unknown
Region: unknown
Country: Kyrgyzstan
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 212.42.103.46 | attack | Unauthorized connection attempt from IP address 212.42.103.46 on Port 445(SMB) |
2020-03-18 19:54:56 |
| 212.42.103.126 | attackspam | Unauthorized connection attempt from IP address 212.42.103.126 on Port 445(SMB) |
2020-03-07 00:05:22 |
| 212.42.103.112 | attackbotsspam | Aug 13 02:25:06 MK-Soft-VM5 sshd\[4025\]: Invalid user xapolicymgr from 212.42.103.112 port 11300 Aug 13 02:25:06 MK-Soft-VM5 sshd\[4025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.42.103.112 Aug 13 02:25:08 MK-Soft-VM5 sshd\[4025\]: Failed password for invalid user xapolicymgr from 212.42.103.112 port 11300 ssh2 ... |
2019-08-13 11:42:13 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.42.103.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50809
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;212.42.103.145. IN A
;; AUTHORITY SECTION:
. 358 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022020601 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 12:48:12 CST 2022
;; MSG SIZE rcvd: 107145.103.42.212.in-addr.arpa domain name pointer 212-42-103-145.elcat.kg.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
145.103.42.212.in-addr.arpa name = 212-42-103-145.elcat.kg.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 87.251.74.110 | attackbotsspam | May 28 16:27:53 debian-2gb-nbg1-2 kernel: \[12934863.218099\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.110 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=43350 PROTO=TCP SPT=48079 DPT=50800 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-05-28 23:13:04 |
| 121.168.55.114 | attackspam | May 28 14:01:08 fhem-rasp sshd[8840]: Failed password for root from 121.168.55.114 port 5361 ssh2 May 28 14:01:09 fhem-rasp sshd[8840]: Connection closed by authenticating user root 121.168.55.114 port 5361 [preauth] ... |
2020-05-28 23:30:10 |
| 2.60.85.191 | attackspambots | Unauthorized connection attempt from IP address 2.60.85.191 on Port 139(NETBIOS) |
2020-05-28 23:19:49 |
| 49.37.194.150 | attack | Unauthorized connection attempt from IP address 49.37.194.150 on Port 445(SMB) |
2020-05-28 23:43:49 |
| 152.136.108.226 | attack | fail2ban |
2020-05-28 23:34:15 |
| 116.49.142.70 | attackbotsspam | May 28 14:01:06 fhem-rasp sshd[8838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.49.142.70 May 28 14:01:08 fhem-rasp sshd[8838]: Failed password for invalid user admin from 116.49.142.70 port 41861 ssh2 ... |
2020-05-28 23:30:56 |
| 178.128.113.47 | attackspambots | May 28 15:57:42 server sshd[28051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.113.47 May 28 15:57:44 server sshd[28051]: Failed password for invalid user mashby from 178.128.113.47 port 52198 ssh2 May 28 16:02:17 server sshd[29216]: Failed password for root from 178.128.113.47 port 58436 ssh2 ... |
2020-05-28 23:12:32 |
| 58.250.89.46 | attack | detected by Fail2Ban |
2020-05-28 23:31:28 |
| 122.114.239.22 | attack | May 28 13:01:52 marvibiene sshd[7098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.239.22 user=root May 28 13:01:54 marvibiene sshd[7098]: Failed password for root from 122.114.239.22 port 36798 ssh2 May 28 13:13:49 marvibiene sshd[7299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.239.22 user=root May 28 13:13:52 marvibiene sshd[7299]: Failed password for root from 122.114.239.22 port 49546 ssh2 ... |
2020-05-28 23:19:24 |
| 138.68.13.226 | attackspam | Unauthorized connection attempt from IP address 138.68.13.226 on port 3389 |
2020-05-28 23:04:26 |
| 106.13.86.199 | attackspambots | (sshd) Failed SSH login from 106.13.86.199 (CN/China/-): 5 in the last 3600 secs |
2020-05-28 23:38:38 |
| 109.167.129.224 | attack | May 28 14:23:06 localhost sshd\[6766\]: Invalid user guest from 109.167.129.224 May 28 14:23:06 localhost sshd\[6766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.167.129.224 May 28 14:23:08 localhost sshd\[6766\]: Failed password for invalid user guest from 109.167.129.224 port 35732 ssh2 May 28 14:28:38 localhost sshd\[7031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.167.129.224 user=root May 28 14:28:40 localhost sshd\[7031\]: Failed password for root from 109.167.129.224 port 39884 ssh2 ... |
2020-05-28 23:07:50 |
| 175.24.61.126 | attack | May 28 13:57:15 OPSO sshd\[29663\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.61.126 user=admin May 28 13:57:18 OPSO sshd\[29663\]: Failed password for admin from 175.24.61.126 port 57348 ssh2 May 28 14:00:56 OPSO sshd\[30247\]: Invalid user gwendolen from 175.24.61.126 port 37228 May 28 14:00:56 OPSO sshd\[30247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.61.126 May 28 14:00:57 OPSO sshd\[30247\]: Failed password for invalid user gwendolen from 175.24.61.126 port 37228 ssh2 |
2020-05-28 23:44:48 |
| 134.175.55.42 | attack | SSH Honeypot -> SSH Bruteforce / Login |
2020-05-28 23:48:07 |
| 222.73.201.96 | attack | detected by Fail2Ban |
2020-05-28 23:46:56 |