城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.205.216.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26406
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;18.205.216.114. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019062800 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 28 17:39:06 CST 2019
;; MSG SIZE rcvd: 118
114.216.205.18.in-addr.arpa domain name pointer ec2-18-205-216-114.compute-1.amazonaws.com.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
114.216.205.18.in-addr.arpa name = ec2-18-205-216-114.compute-1.amazonaws.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 185.209.0.18 | attackspam | 185.209.0.18 was recorded 7 times by 2 hosts attempting to connect to the following ports: 23308,23346,23340,23392,23327,23357,23331. Incident counter (4h, 24h, all-time): 7, 47, 192 |
2019-11-04 21:22:56 |
| 97.74.229.121 | attackbotsspam | Nov 4 07:56:23 plusreed sshd[31545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=97.74.229.121 user=root Nov 4 07:56:25 plusreed sshd[31545]: Failed password for root from 97.74.229.121 port 34998 ssh2 ... |
2019-11-04 21:12:14 |
| 104.254.92.20 | attack | 1,35-01/00 [bc00/m22] PostRequest-Spammer scoring: Dodoma |
2019-11-04 21:34:08 |
| 119.75.24.68 | attackbots | Nov 4 10:22:53 lnxded63 sshd[10875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.75.24.68 |
2019-11-04 21:23:58 |
| 107.175.13.233 | attackspambots | (From eric@talkwithcustomer.com) Hey, You have a website naturalhealthdcs.com, right? Of course you do. I am looking at your website now. It gets traffic every day – that you’re probably spending $2 / $4 / $10 or more a click to get. Not including all of the work you put into creating social media, videos, blog posts, emails, and so on. So you’re investing seriously in getting people to that site. But how’s it working? Great? Okay? Not so much? If that answer could be better, then it’s likely you’re putting a lot of time, effort, and money into an approach that’s not paying off like it should. Now… imagine doubling your lead conversion in just minutes… In fact, I’ll go even better. You could actually get up to 100X more conversions! I’m not making this up. As Chris Smith, best-selling author of The Conversion Code says: Speed is essential - there is a 100x decrease in Leads when a Lead is contacted within 14 minutes vs being contacted within 5 minutes. He’s backed up by a st |
2019-11-04 21:09:24 |
| 188.166.42.50 | attackspam | 2019-11-04T11:53:36.413341mail01 postfix/smtpd[26849]: warning: unknown[188.166.42.50]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T11:56:15.315966mail01 postfix/smtpd[30424]: warning: unknown[188.166.42.50]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T12:01:10.485075mail01 postfix/smtpd[11968]: warning: unknown[188.166.42.50]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-04 21:33:35 |
| 122.199.152.114 | attackspambots | $f2bV_matches |
2019-11-04 21:15:08 |
| 110.164.136.205 | attack | Port 1433 Scan |
2019-11-04 21:19:55 |
| 151.45.246.82 | attackbotsspam | Port Scan |
2019-11-04 21:44:44 |
| 54.67.50.2 | attack | Connection by 54.67.50.2 on port: 6066 got caught by honeypot at 11/4/2019 5:21:21 AM |
2019-11-04 21:22:23 |
| 102.130.28.37 | attackspambots | [ER hit] Tried to deliver spam. Already well known. |
2019-11-04 21:46:58 |
| 35.240.217.103 | attackbots | Nov 4 15:25:24 server sshd\[27801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.217.240.35.bc.googleusercontent.com user=root Nov 4 15:25:26 server sshd\[27801\]: Failed password for root from 35.240.217.103 port 52192 ssh2 Nov 4 15:42:49 server sshd\[32099\]: Invalid user lollipop from 35.240.217.103 Nov 4 15:42:49 server sshd\[32099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.217.240.35.bc.googleusercontent.com Nov 4 15:42:51 server sshd\[32099\]: Failed password for invalid user lollipop from 35.240.217.103 port 44508 ssh2 ... |
2019-11-04 21:44:07 |
| 2.180.35.142 | attack | Nov 4 07:13:10 mxgate1 postfix/postscreen[19168]: CONNECT from [2.180.35.142]:53152 to [176.31.12.44]:25 Nov 4 07:13:10 mxgate1 postfix/dnsblog[19200]: addr 2.180.35.142 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 4 07:13:10 mxgate1 postfix/dnsblog[19199]: addr 2.180.35.142 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 4 07:13:10 mxgate1 postfix/dnsblog[19199]: addr 2.180.35.142 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 4 07:13:10 mxgate1 postfix/dnsblog[19201]: addr 2.180.35.142 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 4 07:13:10 mxgate1 postfix/postscreen[19168]: PREGREET 21 after 0.16 from [2.180.35.142]:53152: EHLO [2.180.35.142] Nov 4 07:13:11 mxgate1 postfix/postscreen[19168]: DNSBL rank 4 for [2.180.35.142]:53152 Nov x@x Nov 4 07:13:11 mxgate1 postfix/postscreen[19168]: HANGUP after 0.6 from [2.180.35.142]:53152 in tests after SMTP handshake Nov 4 07:13:11 mxgate1 postfix/postscreen[19168]: DISCONNECT [2.180.35.142]:........ ------------------------------- |
2019-11-04 21:23:35 |
| 52.13.107.136 | attackbots | Bad bot/spoofed identity |
2019-11-04 21:24:35 |
| 109.197.192.18 | attackbots | 5x Failed Password |
2019-11-04 21:31:03 |