City: unknown
Region: unknown
Country: United States of America
Internet Service Provider: QuadraNet Enterprises LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | Feb 25 19:59:26 WHD8 postfix/smtpd\[27531\]: warning: unknown\[104.129.2.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 25 19:59:33 WHD8 postfix/smtpd\[27538\]: warning: unknown\[104.129.2.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 25 19:59:49 WHD8 postfix/smtpd\[27375\]: warning: unknown\[104.129.2.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-05-06 04:44:17 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.129.29.92 | attack | Unauthorized IMAP connection attempt |
2020-08-08 15:59:58 |
| 104.129.25.27 | attackbotsspam | Brute forcing email accounts |
2020-07-27 00:50:00 |
| 104.129.2.174 | attack | Jun 24 03:39:10 mail postfix/postscreen[10005]: DNSBL rank 4 for [104.129.2.174]:37414 ... |
2020-07-14 13:51:10 |
| 104.129.2.174 | attack | 3 failed Login Attempts - (Email Service) |
2020-06-21 21:23:32 |
| 104.129.2.80 | attack | $f2bV_matches |
2020-05-16 18:36:57 |
| 104.129.2.168 | attackbotsspam | Brute forcing email accounts |
2020-03-03 09:12:47 |
| 104.129.204.80 | attackproxy | appears to ipv6 to ipv4 redirect ssl with dns cache poisoning |
2020-02-11 02:35:32 |
| 104.129.204.79 | attackbots | 20/1/11@23:57:20: FAIL: Alarm-Network address from=104.129.204.79 ... |
2020-01-12 14:04:23 |
| 104.129.29.26 | attackspambots | fire |
2019-11-17 02:35:58 |
| 104.129.200.69 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 23:50:59,525 INFO [amun_request_handler] PortScan Detected on Port: 445 (104.129.200.69) |
2019-07-12 16:09:05 |
| 104.129.202.132 | attack | NAME : ZSCALER-QLA1 CIDR : 104.129.198.0/24 DDoS attack USA - California - block certain countries :) IP: 104.129.202.132 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl |
2019-07-01 05:47:39 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.129.2.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59482
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.129.2.67. IN A
;; AUTHORITY SECTION:
. 582 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020050501 1800 900 604800 86400
;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 06 04:44:13 CST 2020
;; MSG SIZE rcvd: 11667.2.129.104.in-addr.arpa domain name pointer 104.129.2.67.static.quadranet.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
67.2.129.104.in-addr.arpa name = 104.129.2.67.static.quadranet.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 164.132.81.106 | attackbotsspam | $f2bV_matches_ltvn |
2019-09-08 17:17:22 |
| 213.137.50.184 | attack | Automatic report - Port Scan Attack |
2019-09-08 16:35:48 |
| 173.208.130.202 | attackspambots | 20 attempts against mh-misbehave-ban on pluto.magehost.pro |
2019-09-08 17:08:10 |
| 193.194.89.146 | attackbots | SSH Brute Force, server-1 sshd[2623]: Failed password for invalid user devops from 193.194.89.146 port 60890 ssh2 |
2019-09-08 17:12:17 |
| 37.195.209.169 | attack | proto=tcp . spt=53727 . dpt=25 . (listed on Dark List de Sep 08) (838) |
2019-09-08 17:01:17 |
| 43.225.151.142 | attack | Sep 8 03:44:35 meumeu sshd[12719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.151.142 Sep 8 03:44:37 meumeu sshd[12719]: Failed password for invalid user buildbot from 43.225.151.142 port 57682 ssh2 Sep 8 03:49:58 meumeu sshd[13418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.151.142 ... |
2019-09-08 16:17:52 |
| 35.232.92.131 | attack | $f2bV_matches_ltvn |
2019-09-08 16:40:12 |
| 162.251.158.215 | attackspambots | proto=tcp . spt=41883 . dpt=25 . (listed on Blocklist de Sep 07) (833) |
2019-09-08 17:18:20 |
| 210.1.58.193 | attackbots | proto=tcp . spt=39514 . dpt=25 . (listed on Blocklist de Sep 07) (846) |
2019-09-08 16:27:21 |
| 128.199.235.18 | attack | Sep 8 10:17:47 herz-der-gamer sshd[2751]: Invalid user jtsai from 128.199.235.18 port 56330 Sep 8 10:17:47 herz-der-gamer sshd[2751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.235.18 Sep 8 10:17:47 herz-der-gamer sshd[2751]: Invalid user jtsai from 128.199.235.18 port 56330 Sep 8 10:17:49 herz-der-gamer sshd[2751]: Failed password for invalid user jtsai from 128.199.235.18 port 56330 ssh2 ... |
2019-09-08 16:36:44 |
| 14.160.26.178 | attack | Sep 8 11:12:31 pkdns2 sshd\[28014\]: Address 14.160.26.178 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 8 11:12:31 pkdns2 sshd\[28014\]: Invalid user newuser from 14.160.26.178Sep 8 11:12:33 pkdns2 sshd\[28014\]: Failed password for invalid user newuser from 14.160.26.178 port 33062 ssh2Sep 8 11:17:50 pkdns2 sshd\[28235\]: Address 14.160.26.178 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 8 11:17:50 pkdns2 sshd\[28235\]: Invalid user radio from 14.160.26.178Sep 8 11:17:51 pkdns2 sshd\[28235\]: Failed password for invalid user radio from 14.160.26.178 port 55033 ssh2 ... |
2019-09-08 16:33:34 |
| 80.219.86.40 | attackbotsspam | Looking for resource vulnerabilities |
2019-09-08 17:16:17 |
| 98.210.48.44 | attackspam | 22/tcp 22/tcp 22/tcp... [2019-08-10/09-08]6pkt,1pt.(tcp) |
2019-09-08 16:42:08 |
| 176.31.181.171 | attack | Sep 8 13:47:47 areeb-Workstation sshd[7133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.181.171 Sep 8 13:47:50 areeb-Workstation sshd[7133]: Failed password for invalid user anna from 176.31.181.171 port 55878 ssh2 ... |
2019-09-08 16:34:31 |
| 104.248.62.208 | attackspambots | Sep 7 22:47:05 hpm sshd\[6918\]: Invalid user password from 104.248.62.208 Sep 7 22:47:05 hpm sshd\[6918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.62.208 Sep 7 22:47:07 hpm sshd\[6918\]: Failed password for invalid user password from 104.248.62.208 port 36870 ssh2 Sep 7 22:51:23 hpm sshd\[7272\]: Invalid user suporte123 from 104.248.62.208 Sep 7 22:51:23 hpm sshd\[7272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.62.208 |
2019-09-08 17:00:52 |