City: unknown
Region: unknown
Country: Philippines
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.93.57.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62476
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;116.93.57.242. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024123001 1800 900 604800 86400
;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 13:11:42 CST 2024
;; MSG SIZE rcvd: 106
b'242.57.93.116.in-addr.arpa domain name pointer smtp1-17.aftga.info.
'
b'242.57.93.116.in-addr.arpa name = smtp1-17.aftga.info.
Authoritative answers can be found from:
'
| IP | Type | Details | Datetime |
|---|---|---|---|
| 107.172.211.29 | attackspam | 2020-09-03 11:48:11.817564-0500 localhost smtpd[18583]: NOQUEUE: reject: RCPT from unknown[107.172.211.29]: 554 5.7.1 Service unavailable; Client host [107.172.211.29] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= |
2020-09-04 20:30:25 |
| 189.80.37.70 | attackbots | 2020-09-01 18:03:48,944 fail2ban.actions [1312]: NOTICE [sshd] Ban 189.80.37.70 2020-09-01 18:21:58,903 fail2ban.actions [1312]: NOTICE [sshd] Ban 189.80.37.70 2020-09-01 18:40:08,494 fail2ban.actions [1312]: NOTICE [sshd] Ban 189.80.37.70 2020-09-01 18:58:12,325 fail2ban.actions [1312]: NOTICE [sshd] Ban 189.80.37.70 2020-09-01 19:16:06,021 fail2ban.actions [1312]: NOTICE [sshd] Ban 189.80.37.70 ... |
2020-09-04 20:40:24 |
| 125.212.203.113 | attackspam | Sep 4 12:44:03 mellenthin sshd[14943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.203.113 Sep 4 12:44:05 mellenthin sshd[14943]: Failed password for invalid user elastic from 125.212.203.113 port 37004 ssh2 |
2020-09-04 20:44:46 |
| 37.187.100.50 | attackbots | Brute%20Force%20SSH |
2020-09-04 20:33:32 |
| 213.108.161.64 | attackspambots | Attempted Brute Force (dovecot) |
2020-09-04 20:34:13 |
| 46.245.222.203 | attackbots | *Port Scan* detected from 46.245.222.203 (DE/Germany/North Rhine-Westphalia/Borken (Gemen)/2ef5decb.static.network.bornet.de). 4 hits in the last 170 seconds |
2020-09-04 20:47:58 |
| 142.93.154.174 | attackspambots | TCP ports : 3601 / 17328 |
2020-09-04 20:36:16 |
| 59.127.251.94 | attackbots | port scan and connect, tcp 23 (telnet) |
2020-09-04 20:35:31 |
| 185.220.102.245 | attackspam | Sep 4 11:24:20 django-0 sshd[22715]: Failed password for root from 185.220.102.245 port 11590 ssh2 Sep 4 11:24:31 django-0 sshd[22715]: error: maximum authentication attempts exceeded for root from 185.220.102.245 port 11590 ssh2 [preauth] Sep 4 11:24:31 django-0 sshd[22715]: Disconnecting: Too many authentication failures for root [preauth] ... |
2020-09-04 20:44:19 |
| 62.210.206.78 | attackspam | $f2bV_matches |
2020-09-04 20:40:58 |
| 111.93.41.206 | attackbots | Unauthorized connection attempt from IP address 111.93.41.206 on Port 445(SMB) |
2020-09-04 20:24:41 |
| 13.57.26.19 | attack | 2020-09-03 19:05 Unauthorized connection attempt to IMAP/POP |
2020-09-04 20:29:24 |
| 202.153.37.195 | attackspam | Sep 4 12:47:23 *hidden* sshd[43113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.153.37.195 Sep 4 12:47:24 *hidden* sshd[43113]: Failed password for invalid user virtual from 202.153.37.195 port 60976 ssh2 Sep 4 12:52:29 *hidden* sshd[43207]: Invalid user somnath from 202.153.37.195 port 30026 |
2020-09-04 20:36:01 |
| 150.136.208.168 | attackbots | Invalid user nina from 150.136.208.168 port 41906 |
2020-09-04 20:42:29 |
| 222.186.42.7 | attack | Brute%20Force%20SSH |
2020-09-04 20:29:54 |