City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 55.242.207.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30005
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;55.242.207.139. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022800 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 23:10:35 CST 2025
;; MSG SIZE rcvd: 107b'Host 139.207.242.55.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 55.242.207.139.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 206.189.88.75 | attack | Jul 15 06:29:55 unicornsoft sshd\[21499\]: Invalid user sven from 206.189.88.75 Jul 15 06:29:55 unicornsoft sshd\[21499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.88.75 Jul 15 06:29:58 unicornsoft sshd\[21499\]: Failed password for invalid user sven from 206.189.88.75 port 54678 ssh2 |
2019-07-15 14:36:24 |
| 103.212.140.135 | attackbotsspam | Jul 15 02:29:33 localhost kernel: [14416366.835441] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=103.212.140.135 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x20 TTL=48 ID=2112 DF PROTO=TCP SPT=58699 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Jul 15 02:29:33 localhost kernel: [14416366.835472] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=103.212.140.135 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x20 TTL=48 ID=2112 DF PROTO=TCP SPT=58699 DPT=8291 SEQ=1872484757 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405AC0103030201010402) Jul 15 02:29:36 localhost kernel: [14416370.044023] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=103.212.140.135 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x20 TTL=48 ID=28960 DF PROTO=TCP SPT=64314 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Jul 15 02:29:36 localhost kernel: [14416370.044052] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=103.2 |
2019-07-15 14:56:03 |
| 183.82.121.34 | attackspambots | Invalid user admin2 from 183.82.121.34 port 52752 |
2019-07-15 14:09:44 |
| 188.131.171.12 | attackspam | Jul 15 06:59:56 h2177944 sshd\[10275\]: Invalid user will from 188.131.171.12 port 49679 Jul 15 06:59:56 h2177944 sshd\[10275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.171.12 Jul 15 06:59:58 h2177944 sshd\[10275\]: Failed password for invalid user will from 188.131.171.12 port 49679 ssh2 Jul 15 07:04:02 h2177944 sshd\[10871\]: Invalid user testappl from 188.131.171.12 port 22938 ... |
2019-07-15 14:07:58 |
| 196.190.255.244 | attackbots | Lines containing failures of 196.190.255.244 Jul 14 22:56:47 omfg postfix/smtpd[915]: connect from unknown[196.190.255.244] Jul x@x Jul 14 22:56:59 omfg postfix/smtpd[915]: lost connection after DATA from unknown[196.190.255.244] Jul 14 22:56:59 omfg postfix/smtpd[915]: disconnect from unknown[196.190.255.244] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=196.190.255.244 |
2019-07-15 14:04:49 |
| 117.199.133.195 | attackbots | PHI,WP GET /wp-login.php |
2019-07-15 14:20:55 |
| 114.32.173.86 | attackspambots | Automatic report - Port Scan Attack |
2019-07-15 13:59:02 |
| 80.227.12.38 | attackspam | Jul 15 08:08:29 microserver sshd[31045]: Invalid user juliet from 80.227.12.38 port 52276 Jul 15 08:08:29 microserver sshd[31045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.227.12.38 Jul 15 08:08:32 microserver sshd[31045]: Failed password for invalid user juliet from 80.227.12.38 port 52276 ssh2 Jul 15 08:16:03 microserver sshd[32265]: Invalid user support from 80.227.12.38 port 43806 Jul 15 08:16:03 microserver sshd[32265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.227.12.38 Jul 15 08:26:55 microserver sshd[33662]: Invalid user accounting from 80.227.12.38 port 43800 Jul 15 08:26:55 microserver sshd[33662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.227.12.38 Jul 15 08:26:58 microserver sshd[33662]: Failed password for invalid user accounting from 80.227.12.38 port 43800 ssh2 Jul 15 08:32:33 microserver sshd[34380]: Invalid user admin from 80.227.12.38 port 43982 |
2019-07-15 14:39:00 |
| 103.108.144.134 | attack | Jul 15 02:23:49 TORMINT sshd\[10227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.144.134 user=root Jul 15 02:23:51 TORMINT sshd\[10227\]: Failed password for root from 103.108.144.134 port 59006 ssh2 Jul 15 02:29:38 TORMINT sshd\[10525\]: Invalid user scan from 103.108.144.134 Jul 15 02:29:38 TORMINT sshd\[10525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.144.134 ... |
2019-07-15 14:50:43 |
| 177.38.1.230 | attackspambots | $f2bV_matches |
2019-07-15 14:41:56 |
| 85.99.50.194 | attackbotsspam | " " |
2019-07-15 14:35:50 |
| 194.230.79.209 | attackbotsspam | firewall-block, port(s): 445/tcp |
2019-07-15 14:05:24 |
| 153.36.236.234 | attackspam | Jul 15 07:24:10 * sshd[18952]: Failed password for root from 153.36.236.234 port 49580 ssh2 |
2019-07-15 14:13:11 |
| 153.36.232.139 | attackspam | SSH Brute Force, server-1 sshd[481]: Failed password for root from 153.36.232.139 port 32943 ssh2 |
2019-07-15 14:26:27 |
| 190.220.31.11 | attack | Jul 15 07:47:30 debian sshd\[20374\]: Invalid user user from 190.220.31.11 port 47096 Jul 15 07:47:30 debian sshd\[20374\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.220.31.11 ... |
2019-07-15 14:50:05 |