City: unknown
Region: unknown
Country: Norway
Internet Service Provider: Telenor
Hostname: unknown
Organization: Telenor Norge AS
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 46.66.161.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16360
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;46.66.161.39. IN A
;; AUTHORITY SECTION:
. 3447 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019051500 1800 900 604800 86400
;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed May 15 21:57:30 CST 2019
;; MSG SIZE rcvd: 116
39.161.66.46.in-addr.arpa domain name pointer 46.66.161.39.tmi.telenormobil.no.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
39.161.66.46.in-addr.arpa name = 46.66.161.39.tmi.telenormobil.no.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.196.50.15 | attack | Sep 5 07:52:39 kapalua sshd\[29038\]: Invalid user test from 104.196.50.15 Sep 5 07:52:39 kapalua sshd\[29038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.50.196.104.bc.googleusercontent.com Sep 5 07:52:40 kapalua sshd\[29038\]: Failed password for invalid user test from 104.196.50.15 port 55008 ssh2 Sep 5 07:56:34 kapalua sshd\[29399\]: Invalid user guest@123 from 104.196.50.15 Sep 5 07:56:34 kapalua sshd\[29399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.50.196.104.bc.googleusercontent.com |
2019-09-06 02:06:39 |
| 1.84.161.53 | attackbots | Brute force SMTP login attempts. |
2019-09-06 02:16:38 |
| 223.72.91.121 | attackspam | Sep 5 19:30:19 markkoudstaal sshd[21736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.72.91.121 Sep 5 19:30:22 markkoudstaal sshd[21736]: Failed password for invalid user user1 from 223.72.91.121 port 19558 ssh2 Sep 5 19:36:02 markkoudstaal sshd[22182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.72.91.121 |
2019-09-06 02:13:02 |
| 81.171.14.34 | attackbots | 2019-09-05 03:27:32 dovecot_login authenticator failed for (oovsPilTw) [81.171.14.34]:59957 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=kwade@lerctr.org) 2019-09-05 03:27:39 dovecot_login authenticator failed for (cZTZGxAA21) [81.171.14.34]:60858 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=kwade@lerctr.org) 2019-09-05 03:27:50 dovecot_login authenticator failed for (okkxqn9r21) [81.171.14.34]:62508 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=kwade@lerctr.org) ... |
2019-09-06 01:45:30 |
| 218.65.230.163 | attack | Sep 5 14:00:50 eventyay sshd[3940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.65.230.163 Sep 5 14:00:53 eventyay sshd[3940]: Failed password for invalid user cvs from 218.65.230.163 port 44414 ssh2 Sep 5 14:05:02 eventyay sshd[3999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.65.230.163 ... |
2019-09-06 01:45:59 |
| 49.234.116.13 | attackspam | Sep 5 01:03:27 kapalua sshd\[19794\]: Invalid user test1234 from 49.234.116.13 Sep 5 01:03:27 kapalua sshd\[19794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.116.13 Sep 5 01:03:30 kapalua sshd\[19794\]: Failed password for invalid user test1234 from 49.234.116.13 port 42574 ssh2 Sep 5 01:06:53 kapalua sshd\[20110\]: Invalid user Passw0rd from 49.234.116.13 Sep 5 01:06:53 kapalua sshd\[20110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.116.13 |
2019-09-06 02:12:37 |
| 157.245.7.201 | attack | Probing for /webmail |
2019-09-06 02:05:44 |
| 185.60.88.110 | attack | Sep 5 02:27:27 php1 sshd\[23506\]: Invalid user test from 185.60.88.110 Sep 5 02:27:27 php1 sshd\[23506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.60.88.110 Sep 5 02:27:29 php1 sshd\[23506\]: Failed password for invalid user test from 185.60.88.110 port 41376 ssh2 Sep 5 02:32:19 php1 sshd\[23904\]: Invalid user 123 from 185.60.88.110 Sep 5 02:32:19 php1 sshd\[23904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.60.88.110 |
2019-09-06 02:05:22 |
| 59.37.204.89 | attackspam | port scan and connect, tcp 80 (http) |
2019-09-06 01:56:14 |
| 104.244.72.115 | attackbots | Sep 5 15:49:01 thevastnessof sshd[30521]: Failed password for root from 104.244.72.115 port 37498 ssh2 ... |
2019-09-06 02:06:08 |
| 74.208.235.29 | attack | 2019-09-05 05:39:34,658 fail2ban.actions [26179]: NOTICE [sshd] Ban 74.208.235.29 |
2019-09-06 02:15:22 |
| 159.65.164.133 | attack | 2019-09-05T14:09:12.192130centos sshd\[887\]: Invalid user test from 159.65.164.133 port 42320 2019-09-05T14:09:12.196592centos sshd\[887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=zonlytics.com 2019-09-05T14:09:14.708054centos sshd\[887\]: Failed password for invalid user test from 159.65.164.133 port 42320 ssh2 |
2019-09-06 02:10:58 |
| 165.22.99.108 | attackspam | Sep 5 18:13:04 fr01 sshd[28934]: Invalid user vandam2432462 from 165.22.99.108 ... |
2019-09-06 02:27:44 |
| 1.54.56.200 | attackbots | Unauthorised access (Sep 5) SRC=1.54.56.200 LEN=40 TTL=46 ID=43622 TCP DPT=23 WINDOW=8767 SYN |
2019-09-06 01:59:23 |
| 103.209.144.199 | attackspam | WordPress wp-login brute force :: 103.209.144.199 0.156 BYPASS [05/Sep/2019:22:21:45 1000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 3989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-09-06 01:50:55 |