City: Ashburn
Region: Virginia
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.239.16.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29221
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;3.239.16.105. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025121601 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 17 12:56:47 CST 2025
;; MSG SIZE rcvd: 105
105.16.239.3.in-addr.arpa domain name pointer ec2-3-239-16-105.compute-1.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
105.16.239.3.in-addr.arpa name = ec2-3-239-16-105.compute-1.amazonaws.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 154.8.223.29 | attackbotsspam | SSH Brute-Force reported by Fail2Ban |
2020-03-30 12:01:06 |
| 52.79.131.201 | attackbotsspam | Mar 29 18:35:10 hpm sshd\[23441\]: Invalid user olq from 52.79.131.201 Mar 29 18:35:10 hpm sshd\[23441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-79-131-201.ap-northeast-2.compute.amazonaws.com Mar 29 18:35:12 hpm sshd\[23441\]: Failed password for invalid user olq from 52.79.131.201 port 58098 ssh2 Mar 29 18:38:07 hpm sshd\[23651\]: Invalid user bjt from 52.79.131.201 Mar 29 18:38:07 hpm sshd\[23651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-79-131-201.ap-northeast-2.compute.amazonaws.com |
2020-03-30 12:42:21 |
| 116.247.81.99 | attackbotsspam | " " |
2020-03-30 12:04:26 |
| 167.71.199.192 | attack | DATE:2020-03-30 05:57:04, IP:167.71.199.192, PORT:ssh SSH brute force auth (docker-dc) |
2020-03-30 12:03:58 |
| 37.49.231.127 | attackbotsspam | Mar 30 05:56:59 debian-2gb-nbg1-2 kernel: \[7799678.173285\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=37.49.231.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=6427 PROTO=TCP SPT=50511 DPT=5038 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-30 12:09:11 |
| 2606:4700:3030::681b:bf53 | attackbots | Spamvertised Website http://i9q.cn/4HpseC 203.195.186.176 server_redirect temporary http://k7njjrcwnhi4vyc.ru/ 104.27.191.83 104.27.190.83 2606:4700:3034::681b:be53 2606:4700:3030::681b:bf53 server_redirect temporary http://k7njjrcwnhi4vyc.ru/uNzu2C/ Received: from 217.78.61.143 (HELO 182.22.12.247) (217.78.61.143) Return-Path: |
2020-03-30 12:22:55 |
| 64.225.41.45 | attackbots | Mar 30 06:11:06 markkoudstaal sshd[7612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.41.45 Mar 30 06:11:09 markkoudstaal sshd[7612]: Failed password for invalid user pog from 64.225.41.45 port 55914 ssh2 Mar 30 06:15:09 markkoudstaal sshd[8194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.41.45 |
2020-03-30 12:16:39 |
| 58.37.230.85 | attackspambots | Mar 30 06:08:15 vps sshd[975426]: Failed password for invalid user yrl from 58.37.230.85 port 43718 ssh2 Mar 30 06:10:27 vps sshd[992932]: Invalid user zyx from 58.37.230.85 port 30114 Mar 30 06:10:27 vps sshd[992932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.37.230.85 Mar 30 06:10:29 vps sshd[992932]: Failed password for invalid user zyx from 58.37.230.85 port 30114 ssh2 Mar 30 06:12:44 vps sshd[1005035]: Invalid user fun from 58.37.230.85 port 6034 ... |
2020-03-30 12:14:14 |
| 195.214.223.84 | attackbotsspam | Mar 30 06:18:50 srv206 sshd[20105]: Invalid user xgz from 195.214.223.84 ... |
2020-03-30 12:25:34 |
| 89.142.195.65 | attack | 2020-03-30T05:56:29.586120jannga.de sshd[2927]: Invalid user hlo from 89.142.195.65 port 47911 2020-03-30T05:56:31.627035jannga.de sshd[2927]: Failed password for invalid user hlo from 89.142.195.65 port 47911 ssh2 ... |
2020-03-30 12:40:00 |
| 87.251.74.19 | attackspambots | Mar 30 06:12:06 debian-2gb-nbg1-2 kernel: \[7800585.506374\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.19 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=35683 PROTO=TCP SPT=51460 DPT=8506 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-30 12:31:13 |
| 106.13.35.232 | attack | Mar 30 05:56:40 ns381471 sshd[8813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.35.232 Mar 30 05:56:42 ns381471 sshd[8813]: Failed password for invalid user bqh from 106.13.35.232 port 49258 ssh2 |
2020-03-30 12:29:03 |
| 122.51.255.162 | attackspam | k+ssh-bruteforce |
2020-03-30 12:34:45 |
| 103.108.144.245 | attackbotsspam | (sshd) Failed SSH login from 103.108.144.245 (BD/Bangladesh/host-245-144-108-103.internetathome.net): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 30 06:00:54 ubnt-55d23 sshd[16406]: Invalid user liyuan from 103.108.144.245 port 51762 Mar 30 06:00:56 ubnt-55d23 sshd[16406]: Failed password for invalid user liyuan from 103.108.144.245 port 51762 ssh2 |
2020-03-30 12:06:42 |
| 113.173.182.121 | attack | Autoban 113.173.182.121 AUTH/CONNECT |
2020-03-30 12:22:06 |