City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.239.55.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43823
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;158.239.55.70. IN A
;; AUTHORITY SECTION:
. 272 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022072202 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 23 08:58:30 CST 2022
;; MSG SIZE rcvd: 106b'70.55.239.158.in-addr.arpa is an alias for 254.255.239.158.in-addr.arpa.
254.255.239.158.in-addr.arpa domain name pointer 158-239-host.usmc.mil.
'Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
70.55.239.158.in-addr.arpa canonical name = 254.255.239.158.in-addr.arpa.
254.255.239.158.in-addr.arpa name = 158-239-host.usmc.mil.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 220.94.205.234 | attackbots | 2019-12-10T15:26:04.114139abusebot-5.cloudsearch.cf sshd\[23877\]: Invalid user hp from 220.94.205.234 port 58208 |
2019-12-10 23:42:58 |
| 61.177.172.128 | attack | --- report --- Dec 10 11:41:38 sshd: Connection from 61.177.172.128 port 52999 Dec 10 11:41:49 sshd: Did not receive identification string from 61.177.172.128 |
2019-12-10 23:15:07 |
| 103.126.6.245 | attack | Autoban 103.126.6.245 AUTH/CONNECT |
2019-12-10 23:06:22 |
| 137.74.47.22 | attackbotsspam | Dec 10 16:38:49 vpn01 sshd[16457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.47.22 Dec 10 16:38:51 vpn01 sshd[16457]: Failed password for invalid user guest from 137.74.47.22 port 34734 ssh2 ... |
2019-12-10 23:48:58 |
| 185.176.27.254 | attackspambots | 12/10/2019-10:05:11.102400 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-12-10 23:10:42 |
| 121.164.156.107 | attackbots | Dec 10 05:06:47 wbs sshd\[5298\]: Invalid user www from 121.164.156.107 Dec 10 05:06:47 wbs sshd\[5298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.164.156.107 Dec 10 05:06:49 wbs sshd\[5298\]: Failed password for invalid user www from 121.164.156.107 port 49408 ssh2 Dec 10 05:13:19 wbs sshd\[6054\]: Invalid user oracle from 121.164.156.107 Dec 10 05:13:19 wbs sshd\[6054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.164.156.107 |
2019-12-10 23:29:47 |
| 111.67.197.14 | attackspam | 2019-12-10T15:27:01.505025abusebot-6.cloudsearch.cf sshd\[28612\]: Invalid user Metal@2017 from 111.67.197.14 port 40572 |
2019-12-10 23:51:01 |
| 125.227.223.38 | attackspambots | Dec 10 15:53:56 MK-Soft-VM6 sshd[16740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.227.223.38 Dec 10 15:53:58 MK-Soft-VM6 sshd[16740]: Failed password for invalid user admin from 125.227.223.38 port 41820 ssh2 ... |
2019-12-10 23:31:26 |
| 185.153.197.149 | attackbots | Port scan: Attack repeated for 24 hours |
2019-12-10 23:44:31 |
| 105.112.106.186 | attackspam | Unauthorized connection attempt detected from IP address 105.112.106.186 to port 445 |
2019-12-10 23:40:12 |
| 187.163.102.142 | attackbots | Dec 10 15:53:35 vps339862 kernel: \[662389.519948\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:22:9b:64:31:28:de:08:00 SRC=187.163.102.142 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=57015 DF PROTO=TCP SPT=43878 DPT=23 SEQ=4170139424 ACK=0 WINDOW=5840 RES=0x00 SYN URGP=0 OPT \(020405B40402080A838299970000000001030302\) Dec 10 15:53:38 vps339862 kernel: \[662392.519887\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:22:9b:64:31:28:de:08:00 SRC=187.163.102.142 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=57016 DF PROTO=TCP SPT=43878 DPT=23 SEQ=4170139424 ACK=0 WINDOW=5840 RES=0x00 SYN URGP=0 OPT \(020405B40402080A8382A54F0000000001030302\) Dec 10 15:53:44 vps339862 kernel: \[662398.519643\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:22:9b:64:31:28:de:08:00 SRC=187.163.102.142 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=57017 DF PROTO=TCP SPT=43878 DPT=23 SEQ=4170139424 ACK=0 WINDOW=5840 RES=0x00 SYN URGP=0 ... |
2019-12-10 23:33:46 |
| 212.243.158.2 | attackspambots | Dec 10 15:25:13 zeus sshd[23286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.243.158.2 Dec 10 15:25:16 zeus sshd[23286]: Failed password for invalid user asphaug from 212.243.158.2 port 39359 ssh2 Dec 10 15:31:01 zeus sshd[23460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.243.158.2 Dec 10 15:31:03 zeus sshd[23460]: Failed password for invalid user nobody6666 from 212.243.158.2 port 42600 ssh2 |
2019-12-10 23:34:40 |
| 110.35.173.103 | attack | 2019-12-10T15:17:22.103633shield sshd\[11284\]: Invalid user dedo from 110.35.173.103 port 59992 2019-12-10T15:17:22.108059shield sshd\[11284\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.173.103 2019-12-10T15:17:23.997468shield sshd\[11284\]: Failed password for invalid user dedo from 110.35.173.103 port 59992 ssh2 2019-12-10T15:23:46.770555shield sshd\[13110\]: Invalid user kusum from 110.35.173.103 port 39596 2019-12-10T15:23:46.775232shield sshd\[13110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.173.103 |
2019-12-10 23:30:13 |
| 178.128.223.243 | attackbots | Dec 10 15:47:12 vps691689 sshd[4472]: Failed password for root from 178.128.223.243 port 36672 ssh2 Dec 10 15:54:14 vps691689 sshd[4705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.223.243 ... |
2019-12-10 23:08:44 |
| 207.96.90.42 | attackspambots | proto=tcp . spt=34039 . dpt=25 . (Listed on MailSpike (spam wave plus L3-L5) also unsubscore and rbldns-ru) (786) |
2019-12-10 23:50:46 |