City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.16.69.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16534
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.16.69.50. IN A
;; AUTHORITY SECTION:
. 104 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021602 1800 900 604800 86400
;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 17 12:51:55 CST 2022
;; MSG SIZE rcvd: 105Host 50.69.16.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 50.69.16.104.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 165.22.205.254 | attackspam | Dec 15 18:08:30 eola postfix/smtpd[29034]: connect from unknown[165.22.205.254] Dec 15 18:08:30 eola postfix/smtpd[29034]: lost connection after AUTH from unknown[165.22.205.254] Dec 15 18:08:30 eola postfix/smtpd[29034]: disconnect from unknown[165.22.205.254] ehlo=1 auth=0/1 commands=1/2 Dec 15 18:08:31 eola postfix/smtpd[29034]: connect from unknown[165.22.205.254] Dec 15 18:08:31 eola postfix/smtpd[29034]: lost connection after AUTH from unknown[165.22.205.254] Dec 15 18:08:31 eola postfix/smtpd[29034]: disconnect from unknown[165.22.205.254] ehlo=1 auth=0/1 commands=1/2 Dec 15 18:08:31 eola postfix/smtpd[29034]: connect from unknown[165.22.205.254] Dec 15 18:08:31 eola postfix/smtpd[29034]: lost connection after AUTH from unknown[165.22.205.254] Dec 15 18:08:31 eola postfix/smtpd[29034]: disconnect from unknown[165.22.205.254] ehlo=1 auth=0/1 commands=1/2 Dec 15 18:08:31 eola postfix/smtpd[29034]: connect from unknown[165.22.205.254] Dec 15 18:08:32 eola postfix/sm........ ------------------------------- |
2019-12-18 08:12:08 |
| 24.50.216.104 | attackbotsspam | Dec 17 23:03:50 mxgate1 postfix/postscreen[13276]: CONNECT from [24.50.216.104]:46735 to [176.31.12.44]:25 Dec 17 23:03:50 mxgate1 postfix/dnsblog[13277]: addr 24.50.216.104 listed by domain cbl.abuseat.org as 127.0.0.2 Dec 17 23:03:50 mxgate1 postfix/dnsblog[13280]: addr 24.50.216.104 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 17 23:03:50 mxgate1 postfix/dnsblog[13280]: addr 24.50.216.104 listed by domain zen.spamhaus.org as 127.0.0.3 Dec 17 23:03:50 mxgate1 postfix/dnsblog[13280]: addr 24.50.216.104 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 17 23:03:50 mxgate1 postfix/dnsblog[13279]: addr 24.50.216.104 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 17 23:03:56 mxgate1 postfix/postscreen[13276]: DNSBL rank 4 for [24.50.216.104]:46735 Dec x@x Dec 17 23:03:56 mxgate1 postfix/postscreen[13276]: HANGUP after 0.72 from [24.50.216.104]:46735 in tests after SMTP handshake Dec 17 23:03:56 mxgate1 postfix/postscreen[13276]: DISCONNECT [24.50.216.104]........ ------------------------------- |
2019-12-18 07:27:43 |
| 81.133.73.161 | attackspam | Invalid user nevarez from 81.133.73.161 port 55251 |
2019-12-18 07:12:40 |
| 139.59.7.76 | attackbotsspam | Dec 17 12:56:29 eddieflores sshd\[24520\]: Invalid user webadmin from 139.59.7.76 Dec 17 12:56:29 eddieflores sshd\[24520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.7.76 Dec 17 12:56:31 eddieflores sshd\[24520\]: Failed password for invalid user webadmin from 139.59.7.76 port 49384 ssh2 Dec 17 13:02:35 eddieflores sshd\[25254\]: Invalid user iat from 139.59.7.76 Dec 17 13:02:35 eddieflores sshd\[25254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.7.76 |
2019-12-18 07:08:38 |
| 93.152.159.11 | attack | Invalid user rinsky from 93.152.159.11 port 36040 |
2019-12-18 08:21:45 |
| 118.89.26.127 | attackbotsspam | Dec 17 23:56:09 Ubuntu-1404-trusty-64-minimal sshd\[8722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.26.127 user=root Dec 17 23:56:11 Ubuntu-1404-trusty-64-minimal sshd\[8722\]: Failed password for root from 118.89.26.127 port 10372 ssh2 Dec 18 00:00:48 Ubuntu-1404-trusty-64-minimal sshd\[16328\]: Invalid user coro from 118.89.26.127 Dec 18 00:00:48 Ubuntu-1404-trusty-64-minimal sshd\[16328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.26.127 Dec 18 00:00:50 Ubuntu-1404-trusty-64-minimal sshd\[16328\]: Failed password for invalid user coro from 118.89.26.127 port 52060 ssh2 |
2019-12-18 08:30:32 |
| 112.85.42.227 | attackspambots | Dec 17 19:25:07 TORMINT sshd\[12674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.227 user=root Dec 17 19:25:08 TORMINT sshd\[12674\]: Failed password for root from 112.85.42.227 port 27720 ssh2 Dec 17 19:25:11 TORMINT sshd\[12674\]: Failed password for root from 112.85.42.227 port 27720 ssh2 ... |
2019-12-18 08:31:17 |
| 222.186.175.154 | attackbots | Dec 17 14:11:03 php1 sshd\[8775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Dec 17 14:11:05 php1 sshd\[8775\]: Failed password for root from 222.186.175.154 port 19214 ssh2 Dec 17 14:11:21 php1 sshd\[8811\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Dec 17 14:11:23 php1 sshd\[8811\]: Failed password for root from 222.186.175.154 port 35950 ssh2 Dec 17 14:11:26 php1 sshd\[8811\]: Failed password for root from 222.186.175.154 port 35950 ssh2 |
2019-12-18 08:23:20 |
| 40.92.5.41 | attackspam | Dec 18 01:26:25 debian-2gb-vpn-nbg1-1 kernel: [999951.231737] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.5.41 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=54470 DF PROTO=TCP SPT=44942 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0 |
2019-12-18 07:14:04 |
| 221.148.45.168 | attackspam | SSH-BruteForce |
2019-12-18 08:06:28 |
| 132.232.112.25 | attackspam | Too many connections or unauthorized access detected from Arctic banned ip |
2019-12-18 07:28:19 |
| 23.97.180.45 | attackbotsspam | 2019-12-17T23:14:29.395962 sshd[16310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.97.180.45 user=root 2019-12-17T23:14:31.558230 sshd[16310]: Failed password for root from 23.97.180.45 port 60598 ssh2 2019-12-17T23:26:54.017184 sshd[16627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.97.180.45 user=root 2019-12-17T23:26:55.648117 sshd[16627]: Failed password for root from 23.97.180.45 port 38743 ssh2 2019-12-17T23:34:59.346650 sshd[16851]: Invalid user ching from 23.97.180.45 port 44759 ... |
2019-12-18 07:21:37 |
| 223.220.159.78 | attackbotsspam | Dec 17 12:59:42 php1 sshd\[2686\]: Invalid user com from 223.220.159.78 Dec 17 12:59:42 php1 sshd\[2686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.220.159.78 Dec 17 12:59:44 php1 sshd\[2686\]: Failed password for invalid user com from 223.220.159.78 port 39087 ssh2 Dec 17 13:06:27 php1 sshd\[3845\]: Invalid user 123 from 223.220.159.78 Dec 17 13:06:27 php1 sshd\[3845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.220.159.78 |
2019-12-18 07:11:21 |
| 106.13.139.26 | attackbotsspam | Dec 17 23:59:34 loxhost sshd\[24482\]: Invalid user currans from 106.13.139.26 port 54856 Dec 17 23:59:35 loxhost sshd\[24482\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.139.26 Dec 17 23:59:36 loxhost sshd\[24482\]: Failed password for invalid user currans from 106.13.139.26 port 54856 ssh2 Dec 18 00:06:07 loxhost sshd\[24694\]: Invalid user fabiana from 106.13.139.26 port 55860 Dec 18 00:06:07 loxhost sshd\[24694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.139.26 ... |
2019-12-18 07:09:12 |
| 148.251.125.12 | attack | Automatic report - Banned IP Access |
2019-12-18 07:24:56 |