城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.67.104.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23508
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;167.67.104.85. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 15:11:17 CST 2025
;; MSG SIZE rcvd: 10685.104.67.167.in-addr.arpa domain name pointer syn-167-067-104-085.res.spectrum.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
85.104.67.167.in-addr.arpa name = syn-167-067-104-085.res.spectrum.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 31.172.134.180 | attack | Aug 3 06:34:33 our-server-hostname postfix/smtpd[2655]: connect from unknown[31.172.134.180] Aug x@x Aug 3 06:34:34 our-server-hostname postfix/smtpd[2655]: disconnect from unknown[31.172.134.180] Aug 3 06:35:58 our-server-hostname postfix/smtpd[3315]: connect from unknown[31.172.134.180] Aug x@x Aug 3 06:35:59 our-server-hostname postfix/smtpd[3315]: disconnect from unknown[31.172.134.180] Aug 3 06:43:03 our-server-hostname postfix/smtpd[3183]: connect from unknown[31.172.134.180] Aug x@x Aug 3 06:43:05 our-server-hostname postfix/smtpd[3183]: disconnect from unknown[31.172.134.180] Aug 3 06:50:48 our-server-hostname postfix/smtpd[4812]: connect from unknown[31.172.134.180] Aug x@x Aug 3 06:50:50 our-server-hostname postfix/smtpd[4812]: disconnect from unknown[31.172.134.180] Aug 3 06:54:02 our-server-hostname postfix/smtpd[3181]: connect from unknown[31.172.134.180] Aug x@x Aug 3 06:54:03 our-server-hostname postfix/smtpd[3181]: disconnect from unknown[31.17........ ------------------------------- |
2019-08-04 10:52:32 |
| 179.108.105.119 | attackspambots | Aug 2 13:56:15 ACSRAD auth.info sshd[7135]: Invalid user test1 from 179.108.105.119 port 59802 Aug 2 13:56:16 ACSRAD auth.info sshd[7135]: Failed password for invalid user test1 from 179.108.105.119 port 59802 ssh2 Aug 2 13:56:16 ACSRAD auth.info sshd[7135]: Received disconnect from 179.108.105.119 port 59802:11: Bye Bye [preauth] Aug 2 13:56:16 ACSRAD auth.info sshd[7135]: Disconnected from 179.108.105.119 port 59802 [preauth] Aug 2 13:56:16 ACSRAD auth.notice sshguard[13817]: Attack from "179.108.105.119" on service 100 whostnameh danger 10. Aug 2 13:56:16 ACSRAD auth.notice sshguard[13817]: Attack from "179.108.105.119" on service 100 whostnameh danger 10. Aug 2 13:56:16 ACSRAD auth.notice sshguard[13817]: Attack from "179.108.105.119" on service 100 whostnameh danger 10. Aug 2 13:56:16 ACSRAD auth.warn sshguard[13817]: Blocking "179.108.105.119/32" forever (3 attacks in 0 secs, after 2 abuses over 1226 secs.) ........ ----------------------------------------------- https://www.blocklist.de/en/vi |
2019-08-04 10:39:16 |
| 194.44.61.133 | attackbotsspam | DATE:2019-08-04 02:51:12, IP:194.44.61.133, PORT:ssh SSH brute force auth (ermes) |
2019-08-04 10:41:51 |
| 222.124.200.18 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 00:34:42,775 INFO [amun_request_handler] PortScan Detected on Port: 445 (222.124.200.18) |
2019-08-04 10:19:49 |
| 46.94.40.116 | attackspam | Aug 4 02:37:38 nandi sshd[3839]: Invalid user bronson from 46.94.40.116 Aug 4 02:37:40 nandi sshd[3839]: Failed password for invalid user bronson from 46.94.40.116 port 60383 ssh2 Aug 4 02:37:40 nandi sshd[3839]: Received disconnect from 46.94.40.116: 11: Bye Bye [preauth] Aug 4 02:43:30 nandi sshd[6237]: Invalid user sk from 46.94.40.116 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=46.94.40.116 |
2019-08-04 10:58:48 |
| 118.24.98.48 | attackbotsspam | Aug 2 19:59:00 hosname21 sshd[32573]: Invalid user pk from 118.24.98.48 port 48516 Aug 2 19:59:01 hosname21 sshd[32573]: Failed password for invalid user pk from 118.24.98.48 port 48516 ssh2 Aug 2 19:59:03 hosname21 sshd[32573]: Received disconnect from 118.24.98.48 port 48516:11: Bye Bye [preauth] Aug 2 19:59:03 hosname21 sshd[32573]: Disconnected from 118.24.98.48 port 48516 [preauth] Aug 2 20:02:43 hosname21 sshd[32654]: Invalid user test2 from 118.24.98.48 port 48770 Aug 2 20:02:45 hosname21 sshd[32654]: Failed password for invalid user test2 from 118.24.98.48 port 48770 ssh2 Aug 2 20:02:46 hosname21 sshd[32654]: Received disconnect from 118.24.98.48 port 48770:11: Bye Bye [preauth] Aug 2 20:02:46 hosname21 sshd[32654]: Disconnected from 118.24.98.48 port 48770 [preauth] Aug 2 20:05:30 hosname21 sshd[32699]: Invalid user pzserver from 118.24.98.48 port 45188 Aug 2 20:05:31 hosname21 sshd[32699]: Failed password for invalid user pzserver from 118.24.98.48 p........ ------------------------------- |
2019-08-04 10:44:05 |
| 114.107.24.203 | attack | Aug 4 04:46:19 vpn01 sshd\[10623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.107.24.203 user=root Aug 4 04:46:22 vpn01 sshd\[10623\]: Failed password for root from 114.107.24.203 port 40694 ssh2 Aug 4 04:46:24 vpn01 sshd\[10623\]: Failed password for root from 114.107.24.203 port 40694 ssh2 |
2019-08-04 11:08:13 |
| 51.77.195.149 | attack | Aug 4 04:38:36 rpi sshd[21880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.195.149 Aug 4 04:38:38 rpi sshd[21880]: Failed password for invalid user om from 51.77.195.149 port 36276 ssh2 |
2019-08-04 10:49:58 |
| 221.144.61.112 | attackspam | Microsoft-Windows-Security-Auditing |
2019-08-04 10:52:53 |
| 98.144.141.51 | attackbots | Aug 4 03:40:57 vps691689 sshd[11279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.144.141.51 Aug 4 03:40:59 vps691689 sshd[11279]: Failed password for invalid user carlos2 from 98.144.141.51 port 34268 ssh2 Aug 4 03:45:38 vps691689 sshd[11309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.144.141.51 ... |
2019-08-04 11:04:19 |
| 45.77.154.250 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 02:07:01,328 INFO [amun_request_handler] PortScan Detected on Port: 139 (45.77.154.250) |
2019-08-04 11:06:18 |
| 61.76.169.138 | attackspambots | Aug 4 03:50:16 debian sshd\[24579\]: Invalid user net from 61.76.169.138 port 17475 Aug 4 03:50:16 debian sshd\[24579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.169.138 ... |
2019-08-04 11:07:25 |
| 81.218.138.213 | attack | Aug 3 22:06:18 xtremcommunity sshd\[23413\]: Invalid user ubuntu from 81.218.138.213 port 46150 Aug 3 22:06:18 xtremcommunity sshd\[23413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.218.138.213 Aug 3 22:06:20 xtremcommunity sshd\[23413\]: Failed password for invalid user ubuntu from 81.218.138.213 port 46150 ssh2 Aug 3 22:10:54 xtremcommunity sshd\[23594\]: Invalid user zahid from 81.218.138.213 port 40120 Aug 3 22:10:54 xtremcommunity sshd\[23594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.218.138.213 ... |
2019-08-04 10:16:51 |
| 165.22.158.129 | attackspam | Aug 4 03:05:13 localhost sshd\[53221\]: Invalid user cssserver from 165.22.158.129 port 52672 Aug 4 03:05:13 localhost sshd\[53221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.158.129 ... |
2019-08-04 10:21:52 |
| 1.71.129.120 | attackspam | Aug 2 08:35:56 cumulus sshd[7890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.129.120 user=r.r Aug 2 08:35:59 cumulus sshd[7890]: Failed password for r.r from 1.71.129.120 port 58047 ssh2 Aug 2 08:35:59 cumulus sshd[7890]: Received disconnect from 1.71.129.120 port 58047:11: Bye Bye [preauth] Aug 2 08:35:59 cumulus sshd[7890]: Disconnected from 1.71.129.120 port 58047 [preauth] Aug 2 08:58:29 cumulus sshd[8568]: Connection closed by 1.71.129.120 port 50615 [preauth] Aug 2 08:59:41 cumulus sshd[8623]: Invalid user rdavidson from 1.71.129.120 port 34376 Aug 2 08:59:41 cumulus sshd[8623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.129.120 Aug 2 08:59:43 cumulus sshd[8623]: Failed password for invalid user rdavidson from 1.71.129.120 port 34376 ssh2 Aug 2 08:59:43 cumulus sshd[8623]: Received disconnect from 1.71.129.120 port 34376:11: Bye Bye [preauth] Aug 2 08:59........ ------------------------------- |
2019-08-04 10:25:42 |