City: unknown
Region: unknown
Country: China
Internet Service Provider: China Unicom
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.239.4.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59700
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.239.4.59. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025070800 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 08 14:58:32 CST 2025
;; MSG SIZE rcvd: 104
59.4.239.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
59.4.239.42.in-addr.arpa name = hn.kd.ny.adsl.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 187.138.28.59 | attack | Unauthorized connection attempt from IP address 187.138.28.59 on Port 445(SMB) |
2020-02-09 07:50:55 |
| 221.199.41.218 | attack | $f2bV_matches |
2020-02-09 08:18:46 |
| 131.161.215.161 | attackbots | Honeypot attack, port: 445, PTR: PTR record not found |
2020-02-09 08:19:42 |
| 191.180.149.110 | attackbots | Honeypot attack, port: 5555, PTR: bfb4956e.virtua.com.br. |
2020-02-09 08:02:30 |
| 89.248.168.62 | attackbots | 02/08/2020-18:54:50.583291 89.248.168.62 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-02-09 07:57:59 |
| 95.84.128.25 | attack | Feb 9 00:03:28 |
2020-02-09 08:13:49 |
| 95.90.154.148 | attack | $f2bV_matches |
2020-02-09 07:52:06 |
| 14.187.247.178 | attackbots | 2020-02-0900:03:261j0Z8H-0003tl-Db\<=verena@rs-solution.chH=\(localhost\)[14.232.155.252]:58567P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2105id=313482D1DA0E20934F4A03BB4F6A4253@rs-solution.chT="apleasantsurprise"forchelsey231996@gmail.com2020-02-0900:03:021j0Z7t-0003sv-M2\<=verena@rs-solution.chH=\(localhost\)[14.187.247.178]:48835P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2177id=1D18AEFDF6220CBF63662F9763D1FB44@rs-solution.chT="areyoulonelytoo\?"forjuniorvillarreal116@gmail.com2020-02-0900:04:001j0Z8q-0003uk-0p\<=verena@rs-solution.chH=\(localhost\)[14.226.225.69]:55732P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2156id=8E8B3D6E65B19F2CF0F5BC04F01AB89F@rs-solution.chT="maybeit'sfate"forbryceb5260@gmail.com2020-02-0900:03:431j0Z8Y-0003uA-RK\<=verena@rs-solution.chH=\(localhost\)[123.21.8.170]:54457P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA |
2020-02-09 07:54:50 |
| 106.53.77.28 | attack | 2020-02-09T00:04:19.3124701240 sshd\[13453\]: Invalid user qps from 106.53.77.28 port 53870 2020-02-09T00:04:19.3154971240 sshd\[13453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.77.28 2020-02-09T00:04:20.6902311240 sshd\[13453\]: Failed password for invalid user qps from 106.53.77.28 port 53870 ssh2 ... |
2020-02-09 07:55:14 |
| 185.151.242.89 | attackbotsspam | firewall-block, port(s): 12345/tcp |
2020-02-09 07:52:40 |
| 121.46.250.175 | attackspam | Feb 8 14:08:16 web1 sshd\[18048\]: Invalid user jse from 121.46.250.175 Feb 8 14:08:16 web1 sshd\[18048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.175 Feb 8 14:08:18 web1 sshd\[18048\]: Failed password for invalid user jse from 121.46.250.175 port 35170 ssh2 Feb 8 14:10:35 web1 sshd\[18253\]: Invalid user cgj from 121.46.250.175 Feb 8 14:10:35 web1 sshd\[18253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.175 |
2020-02-09 08:26:35 |
| 185.156.177.224 | attackbots | ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 10000 proto: TCP cat: Attempted Information Leak |
2020-02-09 08:23:58 |
| 80.211.136.164 | attack | Feb 8 13:46:41 php1 sshd\[20598\]: Invalid user uwm from 80.211.136.164 Feb 8 13:46:41 php1 sshd\[20598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.136.164 Feb 8 13:46:43 php1 sshd\[20598\]: Failed password for invalid user uwm from 80.211.136.164 port 46046 ssh2 Feb 8 13:52:07 php1 sshd\[20986\]: Invalid user ftk from 80.211.136.164 Feb 8 13:52:07 php1 sshd\[20986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.136.164 |
2020-02-09 08:07:03 |
| 104.168.88.68 | attackspam | Feb 9 01:05:50 MK-Soft-VM8 sshd[21690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.88.68 Feb 9 01:05:52 MK-Soft-VM8 sshd[21690]: Failed password for invalid user dfn from 104.168.88.68 port 57151 ssh2 ... |
2020-02-09 08:26:47 |
| 49.119.65.91 | attack | Telnet/23 MH Probe, BF, Hack - |
2020-02-09 08:11:33 |