City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.9.192
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23978
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.21.9.192. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400
;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:12:39 CST 2022
;; MSG SIZE rcvd: 105Host 192.9.21.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 192.9.21.104.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 51.38.112.45 | attackspambots | B: f2b ssh aggressive 3x |
2020-01-10 19:39:57 |
| 138.99.216.171 | attackspambots | IP: 138.99.216.171
Ports affected
Simple Mail Transfer (25)
http protocol over TLS/SSL (443)
Message Submission (587)
World Wide Web HTTP (80)
IMAP over TLS protocol (993)
Abuse Confidence rating 100%
Found in DNSBL('s)
ASN Details
AS43350 NForce Entertainment B.V.
Belize (BZ)
CIDR 138.99.216.0/24
Log Date: 10/01/2020 8:08:27 AM UTC |
2020-01-10 20:00:35 |
| 114.119.37.38 | attack | 445/tcp 1433/tcp... [2019-12-30/2020-01-10]8pkt,2pt.(tcp) |
2020-01-10 19:39:30 |
| 79.6.229.236 | attack | Unauthorized connection attempt detected from IP address 79.6.229.236 to port 81 |
2020-01-10 19:45:10 |
| 185.200.118.45 | attackspambots | [portscan] tcp/3389 [MS RDP] *(RWIN=65535)(01101146) |
2020-01-10 19:54:47 |
| 118.24.121.69 | attackspam | Unauthorized connection attempt detected from IP address 118.24.121.69 to port 7001 [T] |
2020-01-10 19:51:51 |
| 106.12.156.160 | attack | ssh failed login |
2020-01-10 20:07:05 |
| 193.251.189.244 | attackspambots | Jan 10 06:47:37 server2 sshd\[23394\]: User root from lputeaux-658-1-54-244.w193-251.abo.wanadoo.fr not allowed because not listed in AllowUsers Jan 10 06:47:42 server2 sshd\[23400\]: User root from lputeaux-658-1-54-244.w193-251.abo.wanadoo.fr not allowed because not listed in AllowUsers Jan 10 06:47:49 server2 sshd\[23402\]: User root from lputeaux-658-1-54-244.w193-251.abo.wanadoo.fr not allowed because not listed in AllowUsers Jan 10 06:47:57 server2 sshd\[23407\]: User root from lputeaux-658-1-54-244.w193-251.abo.wanadoo.fr not allowed because not listed in AllowUsers Jan 10 06:48:05 server2 sshd\[23413\]: Invalid user admin from 193.251.189.244 Jan 10 06:48:11 server2 sshd\[23448\]: Invalid user admin from 193.251.189.244 |
2020-01-10 20:00:18 |
| 169.197.108.197 | attackbots | 3389/tcp 21/tcp 6443/tcp... [2019-11-09/2020-01-10]7pkt,6pt.(tcp) |
2020-01-10 19:58:00 |
| 95.9.61.234 | attackbotsspam | 37215/tcp 23/tcp 23/tcp [2019-12-22/2020-01-10]3pkt |
2020-01-10 19:41:40 |
| 200.73.127.8 | attackspam | 23/tcp 8080/tcp [2019-11-26/2020-01-10]2pkt |
2020-01-10 19:47:57 |
| 111.68.98.152 | attackspam | <6 unauthorized SSH connections |
2020-01-10 19:52:13 |
| 37.119.230.22 | attackbotsspam | Jan 10 11:15:00 MainVPS sshd[12145]: Invalid user elena from 37.119.230.22 port 41076 Jan 10 11:15:00 MainVPS sshd[12145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.119.230.22 Jan 10 11:15:00 MainVPS sshd[12145]: Invalid user elena from 37.119.230.22 port 41076 Jan 10 11:15:02 MainVPS sshd[12145]: Failed password for invalid user elena from 37.119.230.22 port 41076 ssh2 Jan 10 11:23:33 MainVPS sshd[28811]: Invalid user ftpnew from 37.119.230.22 port 39575 ... |
2020-01-10 20:09:04 |
| 40.124.4.131 | attackspam | ssh bruteforce or scan ... |
2020-01-10 20:07:56 |
| 190.214.9.150 | attackspam | firewall-block, port(s): 23/tcp |
2020-01-10 20:08:12 |