City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.66.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16360
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.168.66.52. IN A
;; AUTHORITY SECTION:
. 467 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 26 00:49:14 CST 2022
;; MSG SIZE rcvd: 10652.66.168.104.in-addr.arpa domain name pointer 104-168-66-52-host.colocrossing.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
52.66.168.104.in-addr.arpa name = 104-168-66-52-host.colocrossing.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 81.22.45.239 | attackspam | Sep 12 10:33:12 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.239 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=43220 PROTO=TCP SPT=57325 DPT=5514 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-09-12 17:12:05 |
| 159.65.9.28 | attack | Sep 12 10:36:31 MK-Soft-Root2 sshd\[12232\]: Invalid user test7 from 159.65.9.28 port 57640 Sep 12 10:36:31 MK-Soft-Root2 sshd\[12232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.9.28 Sep 12 10:36:33 MK-Soft-Root2 sshd\[12232\]: Failed password for invalid user test7 from 159.65.9.28 port 57640 ssh2 ... |
2019-09-12 17:29:22 |
| 218.98.40.145 | attackspam | Sep 12 09:26:19 nginx sshd[32305]: Connection from 218.98.40.145 port 51273 on 10.23.102.80 port 22 Sep 12 09:26:23 nginx sshd[32305]: Received disconnect from 218.98.40.145 port 51273:11: [preauth] |
2019-09-12 17:41:52 |
| 84.54.144.161 | attackbotsspam | Lines containing failures of 84.54.144.161 Sep 10 08:12:56 shared02 sshd[2489]: Invalid user steam from 84.54.144.161 port 40930 Sep 10 08:12:56 shared02 sshd[2489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.54.144.161 Sep 10 08:12:59 shared02 sshd[2489]: Failed password for invalid user steam from 84.54.144.161 port 40930 ssh2 Sep 10 08:12:59 shared02 sshd[2489]: Received disconnect from 84.54.144.161 port 40930:11: Bye Bye [preauth] Sep 10 08:12:59 shared02 sshd[2489]: Disconnected from invalid user steam 84.54.144.161 port 40930 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=84.54.144.161 |
2019-09-12 17:08:01 |
| 79.170.93.251 | attackspam | CloudCIX Reconnaissance Scan Detected, PTR: navigationssoftwareupdate.de. |
2019-09-12 18:00:32 |
| 51.254.123.131 | attack | 2019-09-12T08:51:11.922679abusebot-3.cloudsearch.cf sshd\[29514\]: Invalid user fai from 51.254.123.131 port 59296 |
2019-09-12 16:59:35 |
| 164.132.56.243 | attackbots | Sep 11 23:02:04 kapalua sshd\[21820\]: Invalid user amsftp from 164.132.56.243 Sep 11 23:02:04 kapalua sshd\[21820\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=243.ip-164-132-56.eu Sep 11 23:02:06 kapalua sshd\[21820\]: Failed password for invalid user amsftp from 164.132.56.243 port 50552 ssh2 Sep 11 23:07:46 kapalua sshd\[22359\]: Invalid user postgres from 164.132.56.243 Sep 11 23:07:46 kapalua sshd\[22359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=243.ip-164-132-56.eu |
2019-09-12 17:13:00 |
| 92.62.238.185 | attackbots | SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM - |
2019-09-12 17:33:38 |
| 218.98.26.180 | attackbots | web-1 [ssh] SSH Attack |
2019-09-12 17:18:30 |
| 177.32.123.6 | attackspambots | Lines containing failures of 177.32.123.6 Sep 10 02:51:03 install sshd[23903]: Invalid user plex from 177.32.123.6 port 12289 Sep 10 02:51:03 install sshd[23903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.32.123.6 Sep 10 02:51:05 install sshd[23903]: Failed password for invalid user plex from 177.32.123.6 port 12289 ssh2 Sep 10 02:51:05 install sshd[23903]: Received disconnect from 177.32.123.6 port 12289:11: Bye Bye [preauth] Sep 10 02:51:05 install sshd[23903]: Disconnected from invalid user plex 177.32.123.6 port 12289 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.32.123.6 |
2019-09-12 17:47:58 |
| 70.54.203.67 | attack | $f2bV_matches |
2019-09-12 17:18:09 |
| 66.249.79.241 | attack | 66.249.79.241 - - \[12/Sep/2019:11:53:57 +0800\] "GET /install.php HTTP/1.1" 404 38452 "-" "Mozilla/5.0 \(Linux\; Android 6.0.1\; Nexus 5X Build/MMB29P\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/41.0.2272.96 Mobile Safari/537.36 \(compatible\; Googlebot/2.1\; +http://www.google.com/bot.html\)" |
2019-09-12 17:00:21 |
| 106.12.83.135 | attackbotsspam | Sep 12 03:53:13 MK-Soft-VM3 sshd\[29509\]: Invalid user 123123 from 106.12.83.135 port 58616 Sep 12 03:53:13 MK-Soft-VM3 sshd\[29509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.83.135 Sep 12 03:53:15 MK-Soft-VM3 sshd\[29509\]: Failed password for invalid user 123123 from 106.12.83.135 port 58616 ssh2 ... |
2019-09-12 17:33:12 |
| 167.99.81.101 | attackbots | Sep 12 10:12:40 MK-Soft-Root1 sshd\[26871\]: Invalid user mongouser from 167.99.81.101 port 35380 Sep 12 10:12:40 MK-Soft-Root1 sshd\[26871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.81.101 Sep 12 10:12:42 MK-Soft-Root1 sshd\[26871\]: Failed password for invalid user mongouser from 167.99.81.101 port 35380 ssh2 ... |
2019-09-12 17:15:26 |
| 218.92.0.207 | attackspam | 2019-09-12T08:55:03.283995abusebot-8.cloudsearch.cf sshd\[5685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.207 user=root |
2019-09-12 17:16:08 |