City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.35.239.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41264
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.35.239.57. IN A
;; AUTHORITY SECTION:
. 232 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024053002 1800 900 604800 86400
;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 31 10:38:47 CST 2024
;; MSG SIZE rcvd: 10657.239.35.104.in-addr.arpa domain name pointer syn-104-035-239-057.res.spectrum.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
57.239.35.104.in-addr.arpa name = syn-104-035-239-057.res.spectrum.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 146.164.21.68 | attackspam | $f2bV_matches_ltvn |
2019-10-01 03:59:52 |
| 212.152.35.78 | attackbots | Sep 30 07:03:28 wbs sshd\[20994\]: Invalid user webster from 212.152.35.78 Sep 30 07:03:28 wbs sshd\[20994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host35-78.ip.pdlsk.cifra1.ru Sep 30 07:03:30 wbs sshd\[20994\]: Failed password for invalid user webster from 212.152.35.78 port 59460 ssh2 Sep 30 07:08:00 wbs sshd\[21386\]: Invalid user hai from 212.152.35.78 Sep 30 07:08:00 wbs sshd\[21386\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host35-78.ip.pdlsk.cifra1.ru |
2019-10-01 04:03:17 |
| 139.199.133.160 | attack | Sep 30 19:21:19 microserver sshd[48728]: Invalid user musicbot from 139.199.133.160 port 48092 Sep 30 19:21:19 microserver sshd[48728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Sep 30 19:21:21 microserver sshd[48728]: Failed password for invalid user musicbot from 139.199.133.160 port 48092 ssh2 Sep 30 19:26:27 microserver sshd[49361]: Invalid user oracle from 139.199.133.160 port 50306 Sep 30 19:26:27 microserver sshd[49361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Sep 30 19:36:59 microserver sshd[50644]: Invalid user hiperg from 139.199.133.160 port 54730 Sep 30 19:36:59 microserver sshd[50644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Sep 30 19:37:01 microserver sshd[50644]: Failed password for invalid user hiperg from 139.199.133.160 port 54730 ssh2 Sep 30 19:42:02 microserver sshd[51506]: Invalid user titan from 139.1 |
2019-10-01 03:43:47 |
| 89.219.10.226 | attackspam | Honeypot attack, port: 445, PTR: PTR record not found |
2019-10-01 03:44:10 |
| 125.214.115.11 | attackspambots | firewall-block, port(s): 8080/tcp |
2019-10-01 03:39:42 |
| 54.37.151.239 | attack | Sep 30 19:21:20 lnxmail61 sshd[30132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 |
2019-10-01 03:47:17 |
| 156.223.60.241 | attackspam | Telnet/23 MH Probe, BF, Hack - |
2019-10-01 03:25:02 |
| 36.112.137.55 | attackbots | Sep 30 12:00:46 ip-172-31-62-245 sshd\[22733\]: Invalid user luca from 36.112.137.55\ Sep 30 12:00:48 ip-172-31-62-245 sshd\[22733\]: Failed password for invalid user luca from 36.112.137.55 port 34275 ssh2\ Sep 30 12:05:50 ip-172-31-62-245 sshd\[22785\]: Invalid user tasatje from 36.112.137.55\ Sep 30 12:05:52 ip-172-31-62-245 sshd\[22785\]: Failed password for invalid user tasatje from 36.112.137.55 port 52521 ssh2\ Sep 30 12:10:46 ip-172-31-62-245 sshd\[22898\]: Invalid user done from 36.112.137.55\ |
2019-10-01 03:50:12 |
| 125.162.65.224 | attackspambots | Honeypot attack, port: 445, PTR: 224.subnet125-162-65.speedy.telkom.net.id. |
2019-10-01 03:32:03 |
| 157.245.13.175 | attackbotsspam | Sep 30 04:08:02 localhost kernel: [3568701.484310] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=157.245.13.175 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=59 ID=40494 PROTO=TCP SPT=5827 DPT=23 WINDOW=59939 RES=0x00 SYN URGP=0 Sep 30 04:08:02 localhost kernel: [3568701.484317] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=157.245.13.175 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=59 ID=40494 PROTO=TCP SPT=5827 DPT=23 SEQ=758669438 ACK=0 WINDOW=59939 RES=0x00 SYN URGP=0 Sep 30 13:51:35 localhost kernel: [3603714.500963] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=157.245.13.175 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=59 ID=37405 PROTO=TCP SPT=54787 DPT=23 WINDOW=61987 RES=0x00 SYN URGP=0 Sep 30 13:51:35 localhost kernel: [3603714.500996] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=157.245.13.175 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 |
2019-10-01 03:23:09 |
| 112.48.132.198 | attack | 112.48.132.198 has been banned from MailServer for Abuse ... |
2019-10-01 03:29:41 |
| 193.112.68.108 | attack | Sep 30 12:10:40 localhost sshd\[4255\]: Invalid user administrador from 193.112.68.108 port 45024 Sep 30 12:10:40 localhost sshd\[4255\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.68.108 Sep 30 12:10:42 localhost sshd\[4255\]: Failed password for invalid user administrador from 193.112.68.108 port 45024 ssh2 ... |
2019-10-01 03:53:19 |
| 190.186.170.83 | attack | $f2bV_matches |
2019-10-01 03:47:48 |
| 125.161.76.146 | attackspam | 445/tcp [2019-09-30]1pkt |
2019-10-01 04:00:25 |
| 173.239.37.163 | attackspambots | $f2bV_matches |
2019-10-01 03:36:54 |