City: unknown
Region: unknown
Country: Sierra Leone
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.134.96.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41221
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;31.134.96.139. IN A
;; AUTHORITY SECTION:
. 353 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400
;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 09:29:11 CST 2022
;; MSG SIZE rcvd: 106139.96.134.31.in-addr.arpa domain name pointer 139.96-134-31.detronics.sk.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
139.96.134.31.in-addr.arpa name = 139.96-134-31.detronics.sk.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.59.136.64 | attack | 139.59.136.64 - - \[18/Nov/2019:05:54:24 +0100\] "POST /wp-login.php HTTP/1.0" 200 4532 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.136.64 - - \[18/Nov/2019:05:54:32 +0100\] "POST /wp-login.php HTTP/1.0" 200 5222 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.136.64 - - \[18/Nov/2019:05:54:40 +0100\] "POST /wp-login.php HTTP/1.0" 200 5148 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-11-18 13:15:40 |
| 45.125.66.66 | attack | \[2019-11-18 00:17:22\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-18T00:17:22.347-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="0025748957156001",SessionID="0x7fdf2c23e548",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.66/61169",ACLName="no_extension_match" \[2019-11-18 00:17:57\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-18T00:17:57.239-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="0025848957156001",SessionID="0x7fdf2cd1cd48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.66/49963",ACLName="no_extension_match" \[2019-11-18 00:18:24\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-18T00:18:24.983-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="0026048957156001",SessionID="0x7fdf2cc12668",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.66/60570",ACLName="no_ext |
2019-11-18 13:31:14 |
| 185.234.219.105 | attack | Nov 18 05:54:33 andromeda postfix/smtpd\[23732\]: warning: unknown\[185.234.219.105\]: SASL LOGIN authentication failed: authentication failure Nov 18 05:54:35 andromeda postfix/smtpd\[21423\]: warning: unknown\[185.234.219.105\]: SASL LOGIN authentication failed: authentication failure Nov 18 05:54:36 andromeda postfix/smtpd\[23732\]: warning: unknown\[185.234.219.105\]: SASL LOGIN authentication failed: authentication failure Nov 18 05:54:36 andromeda postfix/smtpd\[21423\]: warning: unknown\[185.234.219.105\]: SASL LOGIN authentication failed: authentication failure Nov 18 05:54:37 andromeda postfix/smtpd\[23732\]: warning: unknown\[185.234.219.105\]: SASL LOGIN authentication failed: authentication failure |
2019-11-18 13:16:43 |
| 222.186.173.238 | attack | Nov 17 22:19:46 firewall sshd[5622]: Failed password for root from 222.186.173.238 port 38468 ssh2 Nov 17 22:19:59 firewall sshd[5622]: error: maximum authentication attempts exceeded for root from 222.186.173.238 port 38468 ssh2 [preauth] Nov 17 22:19:59 firewall sshd[5622]: Disconnecting: Too many authentication failures [preauth] ... |
2019-11-18 09:20:35 |
| 223.197.243.5 | attackbotsspam | Nov 17 23:39:09 andromeda sshd\[42005\]: Invalid user red5 from 223.197.243.5 port 38196 Nov 17 23:39:09 andromeda sshd\[42005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.243.5 Nov 17 23:39:11 andromeda sshd\[42005\]: Failed password for invalid user red5 from 223.197.243.5 port 38196 ssh2 |
2019-11-18 09:18:16 |
| 112.171.248.197 | attackbotsspam | 2019-11-18T04:54:46.196615abusebot-5.cloudsearch.cf sshd\[13153\]: Invalid user service from 112.171.248.197 port 58638 |
2019-11-18 13:13:31 |
| 63.88.23.173 | attackspambots | 63.88.23.173 was recorded 10 times by 7 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 10, 38, 168 |
2019-11-18 13:16:29 |
| 159.65.229.162 | attackspambots | 159.65.229.162 - - \[18/Nov/2019:05:54:42 +0100\] "POST /wp-login.php HTTP/1.0" 200 4404 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 159.65.229.162 - - \[18/Nov/2019:05:54:49 +0100\] "POST /wp-login.php HTTP/1.0" 200 4236 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 159.65.229.162 - - \[18/Nov/2019:05:54:55 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-11-18 13:10:18 |
| 46.198.153.15 | attack | Automatic report - Port Scan Attack |
2019-11-18 09:19:38 |
| 85.98.208.214 | attackspam | Telnet/23 MH Probe, BF, Hack - |
2019-11-18 09:19:18 |
| 181.177.251.2 | attack | Unauthorised access (Nov 18) SRC=181.177.251.2 LEN=40 TOS=0x10 PREC=0x40 TTL=238 ID=8710 TCP DPT=1433 WINDOW=1024 SYN |
2019-11-18 13:25:30 |
| 166.62.100.99 | attack | Wordpress bruteforce |
2019-11-18 13:09:17 |
| 89.248.167.131 | attackbotsspam | 11/18/2019-05:55:03.262772 89.248.167.131 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 99 |
2019-11-18 13:07:35 |
| 106.12.61.64 | attackbots | Nov 17 19:34:57 firewall sshd[3829]: Invalid user nepenthes from 106.12.61.64 Nov 17 19:34:58 firewall sshd[3829]: Failed password for invalid user nepenthes from 106.12.61.64 port 35622 ssh2 Nov 17 19:39:22 firewall sshd[3871]: Invalid user emmalyn from 106.12.61.64 ... |
2019-11-18 09:15:39 |
| 128.75.74.124 | attackspam | Automatic report - Port Scan Attack |
2019-11-18 13:19:54 |