城市(city): Seattle
省份(region): Washington
国家(country): United States
运营商(isp): Hostwinds LLC.
主机名(hostname): unknown
机构(organization): Hostwinds LLC.
使用类型(Usage Type): Data Center/Web Hosting/Transit
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.196.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3245
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.168.196.14. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019080601 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 07 04:09:39 CST 2019
;; MSG SIZE rcvd: 118
14.196.168.104.in-addr.arpa domain name pointer client-104-168-196-14.hostwindsdns.com.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
14.196.168.104.in-addr.arpa name = client-104-168-196-14.hostwindsdns.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 197.45.173.17 | attackbotsspam | Unauthorized connection attempt from IP address 197.45.173.17 on Port 445(SMB) |
2020-09-07 03:47:17 |
| 201.243.196.104 | attack | Honeypot attack, port: 445, PTR: 201-243-196-104.dyn.dsl.cantv.net. |
2020-09-07 03:10:45 |
| 205.185.117.149 | attackspambots | Automatic report - Banned IP Access |
2020-09-07 03:37:11 |
| 58.137.160.53 | attack | Icarus honeypot on github |
2020-09-07 03:23:33 |
| 183.154.21.200 | attackspambots | Sep 5 21:58:54 srv01 postfix/smtpd\[32601\]: warning: unknown\[183.154.21.200\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 5 22:02:26 srv01 postfix/smtpd\[32601\]: warning: unknown\[183.154.21.200\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 5 22:05:58 srv01 postfix/smtpd\[26878\]: warning: unknown\[183.154.21.200\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 5 22:09:30 srv01 postfix/smtpd\[5903\]: warning: unknown\[183.154.21.200\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 5 22:09:41 srv01 postfix/smtpd\[5903\]: warning: unknown\[183.154.21.200\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-09-07 03:27:32 |
| 67.209.185.37 | attackbotsspam | Sep 6 07:42:37 sshgateway sshd\[18822\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.209.185.37.16clouds.com user=root Sep 6 07:42:39 sshgateway sshd\[18822\]: Failed password for root from 67.209.185.37 port 55996 ssh2 Sep 6 07:48:13 sshgateway sshd\[20785\]: Invalid user sandeep from 67.209.185.37 Sep 6 07:48:13 sshgateway sshd\[20785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.209.185.37.16clouds.com |
2020-09-07 03:46:13 |
| 182.105.98.2 | attackspam | (ftpd) Failed FTP login from 182.105.98.2 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Sep 6 18:11:15 ir1 pure-ftpd: (?@182.105.98.2) [WARNING] Authentication failed for user [anonymous] |
2020-09-07 03:27:47 |
| 141.98.9.162 | attack | Sep 6 21:09:48 ns3164893 sshd[3873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.162 Sep 6 21:09:50 ns3164893 sshd[3873]: Failed password for invalid user operator from 141.98.9.162 port 37084 ssh2 ... |
2020-09-07 03:12:29 |
| 195.158.28.62 | attackbotsspam | Sep 6 20:54:01 ns381471 sshd[21160]: Failed password for root from 195.158.28.62 port 40271 ssh2 |
2020-09-07 03:09:32 |
| 1.230.226.101 | attack | Honeypot attack, port: 81, PTR: PTR record not found |
2020-09-07 03:43:25 |
| 223.19.28.96 | attack | Honeypot attack, port: 5555, PTR: 96-28-19-223-on-nets.com. |
2020-09-07 03:33:00 |
| 141.98.9.164 | attackspam | SSH login attempts. |
2020-09-07 03:16:04 |
| 118.38.252.136 | attack | Honeypot attack, port: 5555, PTR: PTR record not found |
2020-09-07 03:16:31 |
| 178.220.2.141 | attack | Honeypot attack, port: 445, PTR: 178-220-2-141.dynamic.isp.telekom.rs. |
2020-09-07 03:44:40 |
| 103.36.102.244 | attackspam | Sep 6 21:46:04 webhost01 sshd[16525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.36.102.244 Sep 6 21:46:06 webhost01 sshd[16525]: Failed password for invalid user mmathenge from 103.36.102.244 port 33966 ssh2 ... |
2020-09-07 03:24:25 |