City: unknown
Region: unknown
Country: Norway
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.11.13.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46205
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;89.11.13.41. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022602 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 11:32:51 CST 2025
;; MSG SIZE rcvd: 10441.13.11.89.in-addr.arpa domain name pointer 41.89-11-13.nextgentel.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
41.13.11.89.in-addr.arpa name = 41.89-11-13.nextgentel.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 183.82.34.246 | attackbotsspam | Aug 19 14:29:15 minden010 sshd[22700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.34.246 Aug 19 14:29:16 minden010 sshd[22700]: Failed password for invalid user user1 from 183.82.34.246 port 41176 ssh2 Aug 19 14:33:34 minden010 sshd[23990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.34.246 ... |
2020-08-19 23:51:16 |
| 162.243.232.174 | attackspam | scans once in preceeding hours on the ports (in chronological order) 9491 resulting in total of 4 scans from 162.243.0.0/16 block. |
2020-08-20 00:18:56 |
| 91.229.112.14 | attackspam | ET CINS Active Threat Intelligence Poor Reputation IP group 86 - port: 14530 proto: tcp cat: Misc Attackbytes: 60 |
2020-08-19 23:57:25 |
| 121.132.168.184 | attackbotsspam | Aug 19 19:43:27 gw1 sshd[25449]: Failed password for root from 121.132.168.184 port 42118 ssh2 ... |
2020-08-19 23:44:03 |
| 94.102.51.17 | attackspam | SmallBizIT.US 8 packets to tcp(4900,6899,7109,7140,7594,8062,9686,9951) |
2020-08-20 00:01:48 |
| 222.186.42.137 | attack | 2020-08-19T16:02:32.698279shield sshd\[17593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root 2020-08-19T16:02:34.732121shield sshd\[17593\]: Failed password for root from 222.186.42.137 port 21903 ssh2 2020-08-19T16:02:37.956989shield sshd\[17593\]: Failed password for root from 222.186.42.137 port 21903 ssh2 2020-08-19T16:02:39.729958shield sshd\[17593\]: Failed password for root from 222.186.42.137 port 21903 ssh2 2020-08-19T16:02:44.129898shield sshd\[17605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root |
2020-08-20 00:04:29 |
| 218.1.18.154 | attack | IP: 218.1.18.154
Ports affected
Simple Mail Transfer (25)
Abuse Confidence rating 100%
Found in DNSBL('s)
ASN Details
AS4812 China Telecom (Group)
China (CN)
CIDR 218.1.0.0/16
Log Date: 19/08/2020 12:05:51 PM UTC |
2020-08-19 23:45:05 |
| 162.243.128.94 | attackspambots | Port Scan ... |
2020-08-19 23:58:14 |
| 167.71.14.75 | attackbotsspam | " " |
2020-08-19 23:38:29 |
| 49.232.166.190 | attack | Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=admin |
2020-08-20 00:02:31 |
| 188.217.99.83 | attackspam | 2020-08-19T11:08:30.698069morrigan.ad5gb.com sshd[238732]: Invalid user lyg from 188.217.99.83 port 57440 2020-08-19T11:08:32.878335morrigan.ad5gb.com sshd[238732]: Failed password for invalid user lyg from 188.217.99.83 port 57440 ssh2 |
2020-08-20 00:17:04 |
| 111.161.72.99 | attackbots | Aug 19 14:43:29 OPSO sshd\[16410\]: Invalid user jumper from 111.161.72.99 port 55098 Aug 19 14:43:29 OPSO sshd\[16410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.72.99 Aug 19 14:43:31 OPSO sshd\[16410\]: Failed password for invalid user jumper from 111.161.72.99 port 55098 ssh2 Aug 19 14:48:02 OPSO sshd\[17538\]: Invalid user svn from 111.161.72.99 port 57380 Aug 19 14:48:02 OPSO sshd\[17538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.72.99 |
2020-08-20 00:15:44 |
| 106.3.40.99 | attack | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-08-19 23:40:51 |
| 45.136.109.219 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 26 - port: 6000 proto: tcp cat: Misc Attackbytes: 60 |
2020-08-19 23:39:13 |
| 103.199.175.130 | attackspambots | IP: 103.199.175.130
Ports affected
Simple Mail Transfer (25)
Found in DNSBL('s)
ASN Details
AS138790 Sankrish Systems And Technologies Pvt Ltd
India (IN)
CIDR 103.199.172.0/22
Log Date: 19/08/2020 12:05:03 PM UTC |
2020-08-20 00:07:28 |