City: unknown
Region: unknown
Country: Taiwan (Province of China)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.13.214.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18253
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;39.13.214.58. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 06:50:40 CST 2025
;; MSG SIZE rcvd: 10558.214.13.39.in-addr.arpa domain name pointer 39-13-214-58.adsl.fetnet.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
58.214.13.39.in-addr.arpa name = 39-13-214-58.adsl.fetnet.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 119.28.51.99 | attack | detected by Fail2Ban |
2020-08-12 00:30:06 |
| 51.91.116.150 | attack | Lines containing failures of 51.91.116.150 Aug 10 11:22:58 shared04 sshd[18805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.116.150 user=r.r Aug 10 11:22:58 shared04 sshd[18807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.116.150 user=r.r Aug 10 11:23:00 shared04 sshd[18805]: Failed password for r.r from 51.91.116.150 port 48404 ssh2 Aug 10 11:23:00 shared04 sshd[18805]: Received disconnect from 51.91.116.150 port 48404:11: Normal Shutdown, Thank you for playing [preauth] Aug 10 11:23:00 shared04 sshd[18805]: Disconnected from authenticating user r.r 51.91.116.150 port 48404 [preauth] Aug 10 11:23:00 shared04 sshd[18807]: Failed password for r.r from 51.91.116.150 port 52610 ssh2 Aug 10 11:23:00 shared04 sshd[18807]: Received disconnect from 51.91.116.150 port 52610:11: Normal Shutdown, Thank you for playing [preauth] Aug 10 11:23:00 shared04 sshd[18807]: Disconnected ........ ------------------------------ |
2020-08-12 00:57:51 |
| 177.85.172.145 | attackspam | Banned for a week because repeated abuses, for example SSH, but not only |
2020-08-12 01:03:22 |
| 106.13.222.115 | attackspam | $f2bV_matches |
2020-08-12 00:26:49 |
| 222.186.180.147 | attack | detected by Fail2Ban |
2020-08-12 00:28:26 |
| 222.186.175.212 | attack | Aug 11 12:53:27 NPSTNNYC01T sshd[15935]: Failed password for root from 222.186.175.212 port 64304 ssh2 Aug 11 12:53:40 NPSTNNYC01T sshd[15935]: Failed password for root from 222.186.175.212 port 64304 ssh2 Aug 11 12:53:40 NPSTNNYC01T sshd[15935]: error: maximum authentication attempts exceeded for root from 222.186.175.212 port 64304 ssh2 [preauth] ... |
2020-08-12 00:54:54 |
| 186.206.157.34 | attackbots | Aug 11 17:28:40 rocket sshd[17781]: Failed password for root from 186.206.157.34 port 8726 ssh2 Aug 11 17:32:02 rocket sshd[18291]: Failed password for root from 186.206.157.34 port 1614 ssh2 ... |
2020-08-12 00:57:29 |
| 123.143.57.68 | attackbotsspam | Port probing on unauthorized port 23 |
2020-08-12 00:44:33 |
| 101.36.178.48 | attackbots | (sshd) Failed SSH login from 101.36.178.48 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 11 13:52:03 grace sshd[23818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.178.48 user=root Aug 11 13:52:05 grace sshd[23818]: Failed password for root from 101.36.178.48 port 60575 ssh2 Aug 11 14:05:37 grace sshd[26135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.178.48 user=root Aug 11 14:05:39 grace sshd[26135]: Failed password for root from 101.36.178.48 port 25690 ssh2 Aug 11 14:09:39 grace sshd[27054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.178.48 user=root |
2020-08-12 00:33:06 |
| 210.86.239.186 | attackspam | 2020-08-11T15:28:00.116254n23.at sshd[2165930]: Failed password for root from 210.86.239.186 port 53726 ssh2 2020-08-11T15:32:32.689146n23.at sshd[2170196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.86.239.186 user=root 2020-08-11T15:32:34.789018n23.at sshd[2170196]: Failed password for root from 210.86.239.186 port 32796 ssh2 ... |
2020-08-12 00:40:11 |
| 173.82.238.253 | attackspam | 173.82.238.253 info@soctrade.ga |
2020-08-12 00:35:07 |
| 45.55.233.213 | attackbots | 2020-08-11T15:56:08.596220v22018076590370373 sshd[5574]: Failed password for root from 45.55.233.213 port 38812 ssh2 2020-08-11T16:00:08.466084v22018076590370373 sshd[17985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.233.213 user=root 2020-08-11T16:00:10.239370v22018076590370373 sshd[17985]: Failed password for root from 45.55.233.213 port 47340 ssh2 2020-08-11T16:04:18.715192v22018076590370373 sshd[2428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.233.213 user=root 2020-08-11T16:04:21.477549v22018076590370373 sshd[2428]: Failed password for root from 45.55.233.213 port 55870 ssh2 ... |
2020-08-12 01:12:09 |
| 212.64.54.167 | attackbotsspam | 29599/tcp 8634/tcp 1929/tcp... [2020-06-23/08-11]15pkt,11pt.(tcp) |
2020-08-12 01:09:36 |
| 156.96.117.187 | attack | [2020-08-11 12:30:05] NOTICE[1185][C-0000109a] chan_sip.c: Call from '' (156.96.117.187:59772) to extension '78701146150341677' rejected because extension not found in context 'public'. [2020-08-11 12:30:05] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-11T12:30:05.961-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="78701146150341677",SessionID="0x7f10c405ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.117.187/59772",ACLName="no_extension_match" [2020-08-11 12:30:13] NOTICE[1185][C-0000109b] chan_sip.c: Call from '' (156.96.117.187:53806) to extension '0025500546162016024' rejected because extension not found in context 'public'. ... |
2020-08-12 00:40:50 |
| 113.178.162.232 | attack | Port scan: Attack repeated for 24 hours |
2020-08-12 00:53:00 |