City: Buffalo
Region: New York
Country: United States
Internet Service Provider: Verizon
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 173.64.50.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38111
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;173.64.50.97. IN A
;; AUTHORITY SECTION:
. 56 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024060301 1800 900 604800 86400
;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 04 12:46:15 CST 2024
;; MSG SIZE rcvd: 10597.50.64.173.in-addr.arpa domain name pointer pool-173-64-50-97.bflony.east.verizon.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
97.50.64.173.in-addr.arpa name = pool-173-64-50-97.bflony.east.verizon.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 37.156.5.2 | attackbots | Port probing on unauthorized port 9530 |
2020-04-24 02:59:35 |
| 67.205.162.223 | attackspambots | Invalid user admin from 67.205.162.223 port 42720 |
2020-04-24 03:17:20 |
| 158.69.202.100 | attackspambots | Address checking |
2020-04-24 03:04:17 |
| 163.172.148.255 | attackbots | Address checking |
2020-04-24 03:01:59 |
| 37.187.150.194 | attackspambots | Automated report - ssh fail2ban: Apr 23 20:52:11 Unable to negotiate with 37.187.150.194 port=60426: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Apr 23 20:52:49 Unable to negotiate with 37.187.150.194 port=35492: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Apr 23 20:53:28 Unable to negotiate with 37.187.150.194 port=38790: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Apr 23 20:54:08 Unable to negotiate with 37.187.150.194 port=42088: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] |
2020-04-24 03:18:50 |
| 92.47.105.155 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-04-24 03:12:17 |
| 134.209.33.62 | attackspambots | Apr 23 17:48:10 ip-172-31-61-156 sshd[10998]: Failed password for invalid user ne from 134.209.33.62 port 34016 ssh2 Apr 23 17:48:08 ip-172-31-61-156 sshd[10998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.33.62 Apr 23 17:48:08 ip-172-31-61-156 sshd[10998]: Invalid user ne from 134.209.33.62 Apr 23 17:48:10 ip-172-31-61-156 sshd[10998]: Failed password for invalid user ne from 134.209.33.62 port 34016 ssh2 Apr 23 17:53:26 ip-172-31-61-156 sshd[11265]: Invalid user wq from 134.209.33.62 ... |
2020-04-24 03:12:47 |
| 3.127.1.207 | attackspam | Address checking |
2020-04-24 03:01:36 |
| 223.71.167.166 | attackspambots | Apr 23 20:08:44 debian-2gb-nbg1-2 kernel: \[9924272.152885\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=223.71.167.166 DST=195.201.40.59 LEN=44 TOS=0x04 PREC=0x00 TTL=114 ID=13456 PROTO=TCP SPT=23334 DPT=623 WINDOW=29200 RES=0x00 SYN URGP=0 |
2020-04-24 03:13:18 |
| 157.32.72.116 | attackspambots | Apr 23 18:44:05 *host* sshd\[1008\]: User *user* from 157.32.72.116 not allowed because none of user's groups are listed in AllowGroups |
2020-04-24 03:08:41 |
| 103.8.119.166 | attackspam | Apr 23 20:10:37 ns382633 sshd\[18600\]: Invalid user tq from 103.8.119.166 port 46836 Apr 23 20:10:37 ns382633 sshd\[18600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.8.119.166 Apr 23 20:10:39 ns382633 sshd\[18600\]: Failed password for invalid user tq from 103.8.119.166 port 46836 ssh2 Apr 23 20:16:25 ns382633 sshd\[19672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.8.119.166 user=root Apr 23 20:16:27 ns382633 sshd\[19672\]: Failed password for root from 103.8.119.166 port 41856 ssh2 |
2020-04-24 02:52:41 |
| 138.197.221.114 | attackbotsspam | Apr 23 20:37:23 ourumov-web sshd\[12672\]: Invalid user ubuntu from 138.197.221.114 port 43688 Apr 23 20:37:23 ourumov-web sshd\[12672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.221.114 Apr 23 20:37:24 ourumov-web sshd\[12672\]: Failed password for invalid user ubuntu from 138.197.221.114 port 43688 ssh2 ... |
2020-04-24 03:21:57 |
| 175.99.95.246 | attackspam | (sshd) Failed SSH login from 175.99.95.246 (TW/Taiwan/175-99-95-246.static.tfn.net.tw): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 23 20:06:13 ubnt-55d23 sshd[15438]: Invalid user techuser from 175.99.95.246 port 52590 Apr 23 20:06:15 ubnt-55d23 sshd[15438]: Failed password for invalid user techuser from 175.99.95.246 port 52590 ssh2 |
2020-04-24 03:05:01 |
| 92.118.205.144 | attackbots | Invalid user admin from 92.118.205.144 port 42580 |
2020-04-24 03:16:07 |
| 37.59.98.64 | attackbotsspam | Apr 23 20:04:02 dev0-dcde-rnet sshd[29180]: Failed password for root from 37.59.98.64 port 50596 ssh2 Apr 23 20:12:47 dev0-dcde-rnet sshd[29320]: Failed password for root from 37.59.98.64 port 40034 ssh2 Apr 23 20:17:12 dev0-dcde-rnet sshd[29371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.98.64 |
2020-04-24 03:04:46 |