City: Oslo
Region: Oslo County
Country: Norway
Internet Service Provider: Microsoft Corporation
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspam | persona non grata |
2020-05-27 07:51:34 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 40.92.55.35
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44203
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;40.92.55.35. IN A
;; AUTHORITY SECTION:
. 519 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020052602 1800 900 604800 86400
;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 27 07:51:30 CST 2020
;; MSG SIZE rcvd: 115
Host 35.55.92.40.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 35.55.92.40.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 194.38.2.99 | attack | [portscan] Port scan |
2019-08-21 04:26:38 |
| 115.159.143.217 | attack | Aug 20 06:55:32 hiderm sshd\[12376\]: Invalid user 123 from 115.159.143.217 Aug 20 06:55:32 hiderm sshd\[12376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.143.217 Aug 20 06:55:34 hiderm sshd\[12376\]: Failed password for invalid user 123 from 115.159.143.217 port 33672 ssh2 Aug 20 06:59:21 hiderm sshd\[12731\]: Invalid user agent123 from 115.159.143.217 Aug 20 06:59:21 hiderm sshd\[12731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.143.217 |
2019-08-21 04:57:06 |
| 82.117.190.170 | attackbotsspam | Aug 20 18:12:11 lnxmail61 sshd[4085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.117.190.170 |
2019-08-21 04:44:39 |
| 23.31.99.4 | attackspambots | RDP Bruteforce |
2019-08-21 04:53:13 |
| 101.255.56.42 | attackbotsspam | Automated report - ssh fail2ban: Aug 20 22:33:43 authentication failure Aug 20 22:33:45 wrong password, user=ivory, port=34678, ssh2 Aug 20 22:45:28 authentication failure |
2019-08-21 04:59:42 |
| 89.64.128.142 | attack | $f2bV_matches |
2019-08-21 04:24:47 |
| 185.238.0.123 | attackspam | Aug 20 23:31:02 server sshd\[23272\]: Invalid user heroin from 185.238.0.123 port 58984 Aug 20 23:31:02 server sshd\[23272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.238.0.123 Aug 20 23:31:04 server sshd\[23272\]: Failed password for invalid user heroin from 185.238.0.123 port 58984 ssh2 Aug 20 23:35:42 server sshd\[2607\]: Invalid user school from 185.238.0.123 port 48832 Aug 20 23:35:42 server sshd\[2607\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.238.0.123 |
2019-08-21 04:40:06 |
| 119.29.53.107 | attackbots | Automatic report - Banned IP Access |
2019-08-21 04:50:17 |
| 188.166.72.240 | attackspam | Aug 19 17:48:07 *** sshd[6736]: Failed password for invalid user applmgr from 188.166.72.240 port 53300 ssh2 Aug 20 01:49:39 *** sshd[19418]: Failed password for invalid user qhsupport from 188.166.72.240 port 38674 ssh2 |
2019-08-21 04:54:37 |
| 37.156.190.164 | attack | Automatic report - Port Scan Attack |
2019-08-21 04:30:16 |
| 115.178.24.77 | attack | Automatic report - Banned IP Access |
2019-08-21 04:51:57 |
| 213.6.16.226 | attack | Aug 20 22:07:14 srv206 sshd[7419]: Invalid user arma3 from 213.6.16.226 Aug 20 22:07:14 srv206 sshd[7419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.6.16.226 Aug 20 22:07:14 srv206 sshd[7419]: Invalid user arma3 from 213.6.16.226 Aug 20 22:07:16 srv206 sshd[7419]: Failed password for invalid user arma3 from 213.6.16.226 port 52588 ssh2 ... |
2019-08-21 04:41:43 |
| 89.252.19.66 | attack | Aug 20 08:49:00 mail postfix/postscreen[93963]: PREGREET 34 after 0.48 from [89.252.19.66]:39188: EHLO 89.252.19.66.freenet.com.ua ... |
2019-08-21 04:43:02 |
| 181.48.116.50 | attackbots | Aug 20 22:26:07 vps691689 sshd[4892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.116.50 Aug 20 22:26:09 vps691689 sshd[4892]: Failed password for invalid user postgres from 181.48.116.50 port 42688 ssh2 ... |
2019-08-21 04:45:30 |
| 103.249.100.12 | attack | Invalid user mongouser from 103.249.100.12 port 52387 |
2019-08-21 04:41:28 |