199.59.150.104

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Twitter Inc.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	From n04905b0a24-f20319f821954814-adm.george===alkosa.com.br@bounce.twitter.com Sun Aug 16 09:20:56 2020 Received: from spruce-goose-bi.twitter.com ([199.59.150.104]:35389)	2020-08-17 02:54:28

Comments on same subnet:

IP	Type	Details	Datetime
199.59.150.70	attackspambots	Spam Timestamp : 12-Oct-19 14:32 BlockList Provider SORBS open web (873)	2019-10-13 02:39:41
199.59.150.77	attackspambots	Brute force attack stopped by firewall	2019-07-05 10:12:07
199.59.150.80	attackbotsspam	Brute force attack stopped by firewall	2019-07-05 10:11:37
199.59.150.85	attackspambots	Brute force attack stopped by firewall	2019-07-05 10:10:07
199.59.150.99	attackspambots	Brute force attack stopped by firewall	2019-07-01 10:08:51
199.59.150.90	attack	Brute force attack stopped by firewall	2019-07-01 10:03:13
199.59.150.84	attackbotsspam	Brute force attack stopped by firewall	2019-06-27 10:27:17
199.59.150.90	attack	Brute force attack stopped by firewall	2019-06-27 10:18:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 199.59.150.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47141
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;199.59.150.104.			IN	A

;; AUTHORITY SECTION:
.			234	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081601 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 17 02:54:24 CST 2020
;; MSG SIZE  rcvd: 118

Host info

104.150.59.199.in-addr.arpa domain name pointer spruce-goose-bi.twitter.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.150.59.199.in-addr.arpa	name = spruce-goose-bi.twitter.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.47.158.130	attack	[ssh] SSH attack	2019-08-27 14:57:48
222.161.56.248	attackbots	" "	2019-08-27 15:30:33
113.21.242.90	attackbots	Unauthorized connection attempt from IP address 113.21.242.90 on Port 445(SMB)	2019-08-27 15:12:47
51.77.140.111	attackbots	Aug 26 20:58:45 friendsofhawaii sshd\[3181\]: Invalid user iris from 51.77.140.111 Aug 26 20:58:45 friendsofhawaii sshd\[3181\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.ip-51-77-140.eu Aug 26 20:58:48 friendsofhawaii sshd\[3181\]: Failed password for invalid user iris from 51.77.140.111 port 43262 ssh2 Aug 26 21:02:47 friendsofhawaii sshd\[3516\]: Invalid user jason from 51.77.140.111 Aug 26 21:02:47 friendsofhawaii sshd\[3516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.ip-51-77-140.eu	2019-08-27 15:06:44
162.247.74.7	attack	Aug 27 10:14:21 hosting sshd[11774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=korematsu.tor-exit.calyxinstitute.org user=ftp Aug 27 10:14:23 hosting sshd[11774]: Failed password for ftp from 162.247.74.7 port 54786 ssh2 Aug 27 10:14:23 hosting sshd[11774]: Failed password for ftp from 162.247.74.7 port 54786 ssh2 Aug 27 10:14:21 hosting sshd[11774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=korematsu.tor-exit.calyxinstitute.org user=ftp Aug 27 10:14:23 hosting sshd[11774]: Failed password for ftp from 162.247.74.7 port 54786 ssh2 Aug 27 10:14:23 hosting sshd[11774]: Failed password for ftp from 162.247.74.7 port 54786 ssh2 ...	2019-08-27 15:19:17
94.176.76.188	attack	(Aug 27) LEN=40 TTL=244 ID=7515 DF TCP DPT=23 WINDOW=14600 SYN (Aug 27) LEN=40 TTL=244 ID=19377 DF TCP DPT=23 WINDOW=14600 SYN (Aug 27) LEN=40 TTL=244 ID=36579 DF TCP DPT=23 WINDOW=14600 SYN (Aug 27) LEN=40 TTL=244 ID=27548 DF TCP DPT=23 WINDOW=14600 SYN (Aug 27) LEN=40 TTL=244 ID=19872 DF TCP DPT=23 WINDOW=14600 SYN (Aug 27) LEN=40 TTL=244 ID=31687 DF TCP DPT=23 WINDOW=14600 SYN (Aug 27) LEN=40 TTL=244 ID=36740 DF TCP DPT=23 WINDOW=14600 SYN (Aug 27) LEN=40 TTL=244 ID=3410 DF TCP DPT=23 WINDOW=14600 SYN (Aug 26) LEN=40 TTL=244 ID=64799 DF TCP DPT=23 WINDOW=14600 SYN (Aug 26) LEN=40 TTL=244 ID=26557 DF TCP DPT=23 WINDOW=14600 SYN (Aug 26) LEN=40 TTL=244 ID=37982 DF TCP DPT=23 WINDOW=14600 SYN (Aug 26) LEN=40 TTL=244 ID=10498 DF TCP DPT=23 WINDOW=14600 SYN (Aug 26) LEN=40 TTL=244 ID=12259 DF TCP DPT=23 WINDOW=14600 SYN (Aug 26) LEN=40 TTL=244 ID=40010 DF TCP DPT=23 WINDOW=14600 SYN (Aug 26) LEN=40 TTL=244 ID=33558 DF TCP DPT=23 WINDOW=14600 SY...	2019-08-27 15:20:59
23.249.162.136	attack	\[2019-08-27 02:41:41\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '23.249.162.136:59728' - Wrong password \[2019-08-27 02:41:41\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-27T02:41:41.315-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="614271",SessionID="0x7f7b30be0af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/23.249.162.136/59728",Challenge="4cbae9d5",ReceivedChallenge="4cbae9d5",ReceivedHash="df4cbdc1cd8eccf344b680d5b2fcdd94" \[2019-08-27 02:44:23\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '23.249.162.136:62051' - Wrong password \[2019-08-27 02:44:23\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-27T02:44:23.782-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9453",SessionID="0x7f7b30796868",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/23	2019-08-27 15:08:41
216.244.66.236	attack	20 attempts against mh-misbehave-ban on milky.magehost.pro	2019-08-27 14:56:24
217.61.121.23	attackspambots	2019-08-27T00:33:23.336328beta postfix/smtpd[4702]: warning: unknown[217.61.121.23]: SASL LOGIN authentication failed: authentication failure 2019-08-27T00:33:26.013273beta postfix/smtpd[4702]: warning: unknown[217.61.121.23]: SASL LOGIN authentication failed: authentication failure 2019-08-27T00:33:28.441159beta postfix/smtpd[4702]: warning: unknown[217.61.121.23]: SASL LOGIN authentication failed: authentication failure ...	2019-08-27 15:10:24
134.209.126.154	attackbotsspam	Invalid user cyp from 134.209.126.154 port 33182	2019-08-27 15:20:21
187.101.38.44	attackspam	Aug 27 00:45:06 ny01 sshd[7812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.101.38.44 Aug 27 00:45:08 ny01 sshd[7812]: Failed password for invalid user mortimer from 187.101.38.44 port 35726 ssh2 Aug 27 00:50:45 ny01 sshd[8778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.101.38.44	2019-08-27 15:32:01
176.110.126.55	attackspambots	Unauthorized connection attempt from IP address 176.110.126.55 on Port 445(SMB)	2019-08-27 15:27:37
187.44.223.202	attack	Autoban 187.44.223.202 AUTH/CONNECT	2019-08-27 15:24:19
197.59.25.13	attack	Unauthorized connection attempt from IP address 197.59.25.13 on Port 445(SMB)	2019-08-27 15:13:29
111.1.89.230	attackspam	$f2bV_matches	2019-08-27 15:38:55

Recently Reported IPs

181.97.33.117	35.198.225.191	170.78.232.96	195.214.39.230
206.13.126.59	35.229.89.37	236.66.217.20	160.251.6.207
14.226.41.159	125.71.216.50	27.214.226.247	185.244.173.106
161.35.158.247	126.189.214.151	67.227.239.116	67.227.239.117
108.129.159.89	122.51.49.181	163.108.64.123	83.166.4.17