City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: CenturyLink Communications, LLC
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 209.3.99.205
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64565
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;209.3.99.205. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019080101 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 02 04:23:43 CST 2019
;; MSG SIZE rcvd: 116205.99.3.209.in-addr.arpa has no PTR record
Server: 183.60.82.98
Address: 183.60.82.98#53
Non-authoritative answer:
*** Can't find 205.99.3.209.in-addr.arpa.: No answer
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 89.248.174.201 | attack | NL_IPV_<177>1592695131 [1:2403468:58145] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 85 [Classification: Misc Attack] [Priority: 2]: |
2020-06-21 07:40:30 |
| 89.248.160.150 | attack | NL_IPV_<177>1592693458 [1:2403469:58145] ET CINS Active Threat Intelligence Poor Reputation IP UDP group 85 [Classification: Misc Attack] [Priority: 2]: |
2020-06-21 07:41:43 |
| 24.201.180.166 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 10 - port: 8080 proto: TCP cat: Misc Attack |
2020-06-21 07:49:25 |
| 45.143.220.240 | attackbots | Multiport scan 31 ports : 5051 5053 5054 5055 5056 5057 5058 5059 5061(x2) 5090 5091(x2) 5092(x2) 5093(x2) 5094(x2) 5097 5098 5099 5160(x2) 5161 5260 5360 5460 5560 5660 5760(x2) 5860 5960 6070 6080 6666 7100 |
2020-06-21 07:31:03 |
| 185.153.196.126 | attack | RU_RM Engineering LLC_<177>1592696247 [1:2402000:5581] ET DROP Dshield Block Listed Source group 1 [Classification: Misc Attack] [Priority: 2]: |
2020-06-21 07:53:53 |
| 92.63.197.86 | attack | ET DROP Dshield Block Listed Source group 1 - port: 41529 proto: TCP cat: Misc Attack |
2020-06-21 08:00:19 |
| 87.251.74.211 | attackspam | 06/20/2020-18:12:48.619197 87.251.74.211 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-06-21 07:43:10 |
| 80.82.78.100 | attackspam | firewall-block, port(s): 3/udp, 49/udp, 80/udp |
2020-06-21 08:03:59 |
| 94.102.51.75 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 92 - port: 33020 proto: TCP cat: Misc Attack |
2020-06-21 07:58:07 |
| 45.227.255.204 | attack |
|
2020-06-21 07:47:13 |
| 83.97.20.224 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 77 - port: 27017 proto: TCP cat: Misc Attack |
2020-06-21 07:43:57 |
| 45.92.126.74 | attackbotsspam | firewall-block, port(s): 86/tcp, 92/tcp, 93/tcp, 8084/tcp, 8086/tcp, 8090/tcp |
2020-06-21 07:48:17 |
| 103.63.109.74 | attackspam | Jun 20 08:31:50 Tower sshd[18009]: refused connect from 182.61.138.203 (182.61.138.203) Jun 20 19:10:05 Tower sshd[18009]: Connection from 103.63.109.74 port 35932 on 192.168.10.220 port 22 rdomain "" Jun 20 19:10:07 Tower sshd[18009]: Invalid user cristi from 103.63.109.74 port 35932 Jun 20 19:10:07 Tower sshd[18009]: error: Could not get shadow information for NOUSER Jun 20 19:10:07 Tower sshd[18009]: Failed password for invalid user cristi from 103.63.109.74 port 35932 ssh2 Jun 20 19:10:07 Tower sshd[18009]: Received disconnect from 103.63.109.74 port 35932:11: Bye Bye [preauth] Jun 20 19:10:07 Tower sshd[18009]: Disconnected from invalid user cristi 103.63.109.74 port 35932 [preauth] |
2020-06-21 08:09:44 |
| 45.143.220.116 | attackspam | Scanned 3 times in the last 24 hours on port 5060 |
2020-06-21 08:08:18 |
| 13.249.120.65 | attackbots | ET INFO TLS Handshake Failure - port: 1992 proto: TCP cat: Potentially Bad Traffic |
2020-06-21 07:51:26 |