城市(city): Elk Grove Village
省份(region): Illinois
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.172.195.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29709
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;107.172.195.104. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025112500 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 25 17:02:15 CST 2025
;; MSG SIZE rcvd: 108104.195.172.107.in-addr.arpa domain name pointer 107-172-195-104-host.colocrossing.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
104.195.172.107.in-addr.arpa name = 107-172-195-104-host.colocrossing.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 178.62.9.122 | attack | Automatic report - XMLRPC Attack |
2019-11-04 22:29:24 |
| 106.13.198.162 | attackbotsspam | Tried sshing with brute force. |
2019-11-04 22:27:00 |
| 117.185.62.146 | attack | Nov 4 01:19:31 Tower sshd[16271]: Connection from 117.185.62.146 port 35866 on 192.168.10.220 port 22 Nov 4 01:19:33 Tower sshd[16271]: Invalid user kuroiwa from 117.185.62.146 port 35866 Nov 4 01:19:33 Tower sshd[16271]: error: Could not get shadow information for NOUSER Nov 4 01:19:33 Tower sshd[16271]: Failed password for invalid user kuroiwa from 117.185.62.146 port 35866 ssh2 Nov 4 01:19:33 Tower sshd[16271]: Received disconnect from 117.185.62.146 port 35866:11: Bye Bye [preauth] Nov 4 01:19:33 Tower sshd[16271]: Disconnected from invalid user kuroiwa 117.185.62.146 port 35866 [preauth] |
2019-11-04 22:18:21 |
| 54.36.68.204 | attack | port scan/probe/communication attempt |
2019-11-04 22:12:42 |
| 103.94.2.154 | attack | Nov 4 05:08:15 cumulus sshd[5911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.2.154 user=r.r Nov 4 05:08:17 cumulus sshd[5911]: Failed password for r.r from 103.94.2.154 port 43738 ssh2 Nov 4 05:08:17 cumulus sshd[5911]: Received disconnect from 103.94.2.154 port 43738:11: Bye Bye [preauth] Nov 4 05:08:17 cumulus sshd[5911]: Disconnected from 103.94.2.154 port 43738 [preauth] Nov 4 05:35:30 cumulus sshd[6827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.2.154 user=r.r Nov 4 05:35:32 cumulus sshd[6827]: Failed password for r.r from 103.94.2.154 port 48306 ssh2 Nov 4 05:35:33 cumulus sshd[6827]: Received disconnect from 103.94.2.154 port 48306:11: Bye Bye [preauth] Nov 4 05:35:33 cumulus sshd[6827]: Disconnected from 103.94.2.154 port 48306 [preauth] Nov 4 05:41:03 cumulus sshd[7120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh r........ ------------------------------- |
2019-11-04 21:51:42 |
| 77.40.3.183 | attackspambots | 2019-11-04T09:59:41.067789mail01 postfix/smtpd[23727]: warning: unknown[77.40.3.183]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T10:04:44.154838mail01 postfix/smtpd[13938]: warning: unknown[77.40.3.183]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T10:08:37.290899mail01 postfix/smtpd[9222]: warning: unknown[77.40.3.183]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-04 22:28:28 |
| 106.54.113.118 | attackspambots | Nov 4 10:09:46 herz-der-gamer sshd[18235]: Invalid user cc from 106.54.113.118 port 53662 Nov 4 10:09:46 herz-der-gamer sshd[18235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.113.118 Nov 4 10:09:46 herz-der-gamer sshd[18235]: Invalid user cc from 106.54.113.118 port 53662 Nov 4 10:09:47 herz-der-gamer sshd[18235]: Failed password for invalid user cc from 106.54.113.118 port 53662 ssh2 ... |
2019-11-04 22:20:27 |
| 52.172.44.97 | attackbotsspam | Automatic report - Banned IP Access |
2019-11-04 22:00:40 |
| 187.190.236.88 | attack | 5x Failed Password |
2019-11-04 22:31:35 |
| 118.25.196.31 | attackbots | Nov 4 07:19:56 cp sshd[6531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.196.31 |
2019-11-04 22:11:16 |
| 104.131.209.76 | attackspam | 9999/tcp 9600/tcp 69/udp... [2019-10-07/11-04]33pkt,26pt.(tcp),1pt.(udp) |
2019-11-04 21:55:54 |
| 81.22.45.107 | attackspam | 2019-11-04T15:36:38.480659+01:00 lumpi kernel: [2700584.870942] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=58741 PROTO=TCP SPT=47891 DPT=43272 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-11-04 22:38:07 |
| 51.75.37.169 | attackbotsspam | Nov 4 11:09:25 lnxweb61 sshd[21317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.37.169 |
2019-11-04 22:31:57 |
| 45.136.109.173 | attack | 45.136.109.173 was recorded 5 times by 2 hosts attempting to connect to the following ports: 1800,1385,3306,9540,4900. Incident counter (4h, 24h, all-time): 5, 36, 142 |
2019-11-04 22:12:12 |
| 125.64.94.211 | attack | firewall-block, port(s): 5984/tcp, 6379/tcp |
2019-11-04 22:29:42 |