City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 29.57.112.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11367
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;29.57.112.201. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020601 1800 900 604800 86400
;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 04:29:50 CST 2025
;; MSG SIZE rcvd: 106Host 201.112.57.29.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 201.112.57.29.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 168.196.255.50 | attack | IMAP/POP Brute-Force reported by Fail2Ban |
2020-02-14 23:38:14 |
| 54.166.242.148 | attack | Honeypot attack, port: 445, PTR: ec2-54-166-242-148.compute-1.amazonaws.com. |
2020-02-14 23:24:01 |
| 109.30.85.183 | attack | Feb 14 13:50:42 ms-srv sshd[45122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.30.85.183 Feb 14 13:50:44 ms-srv sshd[45122]: Failed password for invalid user tomcat from 109.30.85.183 port 34973 ssh2 |
2020-02-14 23:26:41 |
| 111.229.61.82 | attack | $f2bV_matches |
2020-02-14 23:26:28 |
| 193.31.24.113 | attack | 02/14/2020-16:07:52.316509 193.31.24.113 Protocol: 6 SURICATA TLS invalid record/traffic |
2020-02-14 23:22:02 |
| 142.93.147.252 | attack | firewall-block, port(s): 32754/tcp |
2020-02-14 23:56:44 |
| 179.97.32.24 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-14 23:08:57 |
| 186.204.46.95 | attack | Port probing on unauthorized port 4567 |
2020-02-14 23:42:12 |
| 94.243.140.162 | attack | postfix (unknown user, SPF fail or relay access denied) |
2020-02-14 23:09:31 |
| 179.96.177.172 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-14 23:31:40 |
| 89.248.160.150 | attackbotsspam | 89.248.160.150 was recorded 30 times by 13 hosts attempting to connect to the following ports: 40619,40666,40685. Incident counter (4h, 24h, all-time): 30, 158, 3872 |
2020-02-14 23:10:41 |
| 197.119.232.203 | attack | Email rejected due to spam filtering |
2020-02-14 23:49:31 |
| 123.140.114.196 | attack | Feb 11 17:18:05 gutwein sshd[17349]: Failed password for invalid user old from 123.140.114.196 port 39078 ssh2 Feb 11 17:18:06 gutwein sshd[17349]: Received disconnect from 123.140.114.196: 11: Bye Bye [preauth] Feb 11 17:31:32 gutwein sshd[20803]: Failed password for invalid user qzu from 123.140.114.196 port 55064 ssh2 Feb 11 17:31:32 gutwein sshd[20803]: Received disconnect from 123.140.114.196: 11: Bye Bye [preauth] Feb 11 17:33:31 gutwein sshd[21174]: Failed password for invalid user hiu from 123.140.114.196 port 43736 ssh2 Feb 11 17:33:31 gutwein sshd[21174]: Received disconnect from 123.140.114.196: 11: Bye Bye [preauth] Feb 11 17:35:26 gutwein sshd[21553]: Failed password for invalid user iom from 123.140.114.196 port 60630 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=123.140.114.196 |
2020-02-14 23:33:38 |
| 132.148.148.21 | attackspam | [munged]::443 132.148.148.21 - - [14/Feb/2020:15:11:52 +0100] "POST /[munged]: HTTP/1.1" 200 6852 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [14/Feb/2020:15:11:54 +0100] "POST /[munged]: HTTP/1.1" 200 6711 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [14/Feb/2020:15:11:54 +0100] "POST /[munged]: HTTP/1.1" 200 6711 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-02-14 23:14:31 |
| 79.179.238.160 | attack | Email rejected due to spam filtering |
2020-02-14 23:57:33 |