City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 72.104.245.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63003
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;72.104.245.130. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021800 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 22:56:52 CST 2025
;; MSG SIZE rcvd: 107130.245.104.72.in-addr.arpa domain name pointer 130.sub-72-104-245.myvzw.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
130.245.104.72.in-addr.arpa name = 130.sub-72-104-245.myvzw.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 197.148.30.49 | attackspam | 2019-10-21 x@x 2019-10-21 21:02:15 unexpected disconnection while reading SMTP command from (cust49-30.148.197.tvcabo.ao) [197.148.30.49]:36998 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=197.148.30.49 |
2019-10-22 06:46:02 |
| 69.118.35.75 | attackspambots | failed_logins |
2019-10-22 06:54:12 |
| 82.208.162.115 | attackbots | Invalid user adrc from 82.208.162.115 port 51236 |
2019-10-22 07:05:01 |
| 46.123.241.185 | attackbotsspam | 2019-10-21 x@x 2019-10-21 21:03:45 unexpected disconnection while reading SMTP command from apn-123-241-185-gprs.simobil.net [46.123.241.185]:16652 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=46.123.241.185 |
2019-10-22 06:50:11 |
| 101.89.150.73 | attack | Oct 22 00:11:05 MK-Soft-Root1 sshd[11505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.150.73 Oct 22 00:11:07 MK-Soft-Root1 sshd[11505]: Failed password for invalid user git from 101.89.150.73 port 44689 ssh2 ... |
2019-10-22 06:55:43 |
| 116.110.117.42 | attack | Oct 22 00:48:25 rotator sshd\[13011\]: Invalid user admin from 116.110.117.42Oct 22 00:48:27 rotator sshd\[13028\]: Invalid user cisco from 116.110.117.42Oct 22 00:48:27 rotator sshd\[13011\]: Failed password for invalid user admin from 116.110.117.42 port 42524 ssh2Oct 22 00:48:29 rotator sshd\[13028\]: Failed password for invalid user cisco from 116.110.117.42 port 52242 ssh2Oct 22 00:48:30 rotator sshd\[13030\]: Failed password for root from 116.110.117.42 port 61954 ssh2Oct 22 00:48:37 rotator sshd\[13032\]: Invalid user guest from 116.110.117.42 ... |
2019-10-22 06:50:52 |
| 115.90.244.154 | attack | Oct 21 22:57:52 web8 sshd\[12558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.90.244.154 user=root Oct 21 22:57:53 web8 sshd\[12558\]: Failed password for root from 115.90.244.154 port 57318 ssh2 Oct 21 23:02:13 web8 sshd\[14532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.90.244.154 user=root Oct 21 23:02:15 web8 sshd\[14532\]: Failed password for root from 115.90.244.154 port 39220 ssh2 Oct 21 23:06:41 web8 sshd\[16697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.90.244.154 user=root |
2019-10-22 07:12:40 |
| 171.239.254.206 | attackbots | Oct 22 00:48:15 rotator sshd\[13005\]: Address 171.239.254.206 maps to dynamic-adsl.viettel.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 22 00:48:15 rotator sshd\[13005\]: Invalid user ubnt from 171.239.254.206Oct 22 00:48:17 rotator sshd\[13005\]: Failed password for invalid user ubnt from 171.239.254.206 port 10446 ssh2Oct 22 00:48:18 rotator sshd\[13007\]: Address 171.239.254.206 maps to dynamic-adsl.viettel.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 22 00:48:18 rotator sshd\[13007\]: Invalid user admin from 171.239.254.206Oct 22 00:48:21 rotator sshd\[13007\]: Failed password for invalid user admin from 171.239.254.206 port 16368 ssh2 ... |
2019-10-22 06:52:18 |
| 176.103.210.63 | attackspam | 2019-10-21 x@x 2019-10-21 20:39:37 unexpected disconnection while reading SMTP command from ([176.103.210.63]) [176.103.210.63]:21267 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=176.103.210.63 |
2019-10-22 07:08:43 |
| 111.230.228.183 | attackbots | Unauthorized SSH login attempts |
2019-10-22 06:36:39 |
| 193.92.162.139 | attackbotsspam | 2019-10-21 x@x 2019-10-21 20:21:32 unexpected disconnection while reading SMTP command from 193.92.162.139.dsl.dynv6.forthnet.gr [193.92.162.139]:2973 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=193.92.162.139 |
2019-10-22 06:47:02 |
| 139.59.10.121 | attack | Automatic report - XMLRPC Attack |
2019-10-22 07:06:11 |
| 123.145.3.154 | attackbots | Bad bot requested remote resources |
2019-10-22 06:42:27 |
| 167.99.65.138 | attack | Oct 21 22:50:07 ns381471 sshd[4509]: Failed password for root from 167.99.65.138 port 49536 ssh2 Oct 21 22:54:18 ns381471 sshd[4629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.65.138 Oct 21 22:54:20 ns381471 sshd[4629]: Failed password for invalid user yuanwd from 167.99.65.138 port 59170 ssh2 |
2019-10-22 06:39:07 |
| 196.221.69.84 | attackbots | Port 1433 Scan |
2019-10-22 07:16:26 |