City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 166.168.2.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30076
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;166.168.2.104. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012800 1800 900 604800 86400
;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 28 20:43:59 CST 2025
;; MSG SIZE rcvd: 106
104.2.168.166.in-addr.arpa domain name pointer 104.sub-166-168-2.myvzw.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
104.2.168.166.in-addr.arpa name = 104.sub-166-168-2.myvzw.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 186.179.219.36 | attack | Automatic report - Port Scan Attack |
2019-08-24 08:58:09 |
| 82.119.84.174 | attackbots | Aug 24 03:17:47 DAAP sshd[18116]: Invalid user ftp from 82.119.84.174 port 50181 ... |
2019-08-24 09:30:57 |
| 168.194.122.205 | attackspam | 445/tcp [2019-08-23]1pkt |
2019-08-24 08:55:49 |
| 43.227.66.223 | attack | Aug 24 02:18:51 debian sshd\[7648\]: Invalid user neil from 43.227.66.223 port 55210 Aug 24 02:18:51 debian sshd\[7648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.227.66.223 ... |
2019-08-24 09:21:39 |
| 138.99.216.75 | attackbots | RDP Bruteforce |
2019-08-24 09:06:38 |
| 92.119.160.125 | attack | Aug 24 02:29:49 h2177944 kernel: \[4930172.946404\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.125 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=35691 PROTO=TCP SPT=48991 DPT=11555 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 24 02:32:26 h2177944 kernel: \[4930330.037574\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.125 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=42649 PROTO=TCP SPT=48991 DPT=11753 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 24 02:48:39 h2177944 kernel: \[4931302.788594\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.125 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=6067 PROTO=TCP SPT=48991 DPT=11701 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 24 03:08:29 h2177944 kernel: \[4932492.492852\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.125 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=899 PROTO=TCP SPT=48991 DPT=11680 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 24 03:17:41 h2177944 kernel: \[4933044.731509\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.125 DST=85.214 |
2019-08-24 09:33:52 |
| 213.203.173.179 | attack | Aug 23 19:49:00 legacy sshd[7591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.203.173.179 Aug 23 19:49:02 legacy sshd[7591]: Failed password for invalid user redmine from 213.203.173.179 port 49160 ssh2 Aug 23 19:52:55 legacy sshd[7665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.203.173.179 ... |
2019-08-24 08:54:22 |
| 58.87.124.196 | attack | Aug 24 01:17:28 mail sshd\[17408\]: Failed password for invalid user 1 from 58.87.124.196 port 44121 ssh2 Aug 24 01:35:39 mail sshd\[17626\]: Invalid user 15 from 58.87.124.196 port 46015 ... |
2019-08-24 08:53:29 |
| 104.239.134.69 | attackspambots | 2019-08-23T16:46:06.652078abusebot-3.cloudsearch.cf sshd\[31771\]: Invalid user weed from 104.239.134.69 port 36913 |
2019-08-24 09:13:50 |
| 14.102.2.226 | attackspambots | scan z |
2019-08-24 08:52:01 |
| 46.101.81.143 | attackspam | Aug 23 15:14:00 web9 sshd\[32340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.81.143 user=root Aug 23 15:14:02 web9 sshd\[32340\]: Failed password for root from 46.101.81.143 port 49520 ssh2 Aug 23 15:17:51 web9 sshd\[741\]: Invalid user network2 from 46.101.81.143 Aug 23 15:17:51 web9 sshd\[741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.81.143 Aug 23 15:17:53 web9 sshd\[741\]: Failed password for invalid user network2 from 46.101.81.143 port 37112 ssh2 |
2019-08-24 09:26:07 |
| 62.173.154.124 | attackbotsspam | DATE:2019-08-23 23:45:20, IP:62.173.154.124, PORT:ssh SSH brute force auth (ermes) |
2019-08-24 09:21:58 |
| 197.248.205.54 | attackbots | 2019-08-24T01:17:40.409052abusebot-2.cloudsearch.cf sshd\[29478\]: Invalid user jared from 197.248.205.54 port 38884 |
2019-08-24 09:35:03 |
| 142.44.160.214 | attack | Aug 24 03:12:50 SilenceServices sshd[3722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.214 Aug 24 03:12:52 SilenceServices sshd[3722]: Failed password for invalid user jzhao from 142.44.160.214 port 52976 ssh2 Aug 24 03:17:49 SilenceServices sshd[9504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.214 |
2019-08-24 09:30:35 |
| 177.137.205.150 | attackspam | Aug 23 20:19:11 lnxded63 sshd[16374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.137.205.150 |
2019-08-24 09:07:56 |