城市(city): unknown
省份(region): unknown
国家(country): Korea (the Republic of)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.21.191.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38940
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;103.21.191.19. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021800 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 00:06:06 CST 2025
;; MSG SIZE rcvd: 106Host 19.191.21.103.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 19.191.21.103.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 132.232.52.60 | attack | Invalid user atlas from 132.232.52.60 port 48394 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.52.60 Failed password for invalid user atlas from 132.232.52.60 port 48394 ssh2 Invalid user webadmin from 132.232.52.60 port 51496 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.52.60 |
2019-12-27 02:35:42 |
| 91.116.222.68 | attackspam | 1577374166 - 12/26/2019 16:29:26 Host: 91.116.222.68/91.116.222.68 Port: 22 TCP Blocked |
2019-12-27 02:33:36 |
| 46.246.63.133 | attack | Brute-force attempt banned |
2019-12-27 02:46:35 |
| 50.227.195.3 | attackspam | Dec 26 17:16:29 sd-53420 sshd\[6043\]: User root from 50.227.195.3 not allowed because none of user's groups are listed in AllowGroups Dec 26 17:16:29 sd-53420 sshd\[6043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.227.195.3 user=root Dec 26 17:16:32 sd-53420 sshd\[6043\]: Failed password for invalid user root from 50.227.195.3 port 49770 ssh2 Dec 26 17:19:02 sd-53420 sshd\[6957\]: Invalid user bekah from 50.227.195.3 Dec 26 17:19:02 sd-53420 sshd\[6957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.227.195.3 ... |
2019-12-27 02:45:15 |
| 106.13.113.204 | attackbotsspam | Dec 26 17:54:31 MK-Soft-VM7 sshd[19843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.113.204 Dec 26 17:54:33 MK-Soft-VM7 sshd[19843]: Failed password for invalid user operator from 106.13.113.204 port 55030 ssh2 ... |
2019-12-27 02:31:00 |
| 104.254.92.230 | attackspam | 104.254.92.230 - - [26/Dec/2019:15:50:04 +0200] "GET /nmaplowercheck1177248208 HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)" 104.254.92.230 - - [26/Dec/2019:15:50:04 +0200] "POST /sdk HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)" 104.254.92.230 - - [26/Dec/2019:15:50:04 +0200] "GET /HNAP1 HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)" 104.254.92.230 - - [26/Dec/2019:15:50:04 +0200] "GET /evox/about HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)" |
2019-12-27 02:59:58 |
| 34.80.244.134 | attackspambots | Dec 23 23:46:44 Aberdeen-m4-Access auth.info sshd[12513]: Invalid user vcsa from 34.80.244.134 port 49654 Dec 23 23:46:44 Aberdeen-m4-Access auth.info sshd[12513]: Failed password for invalid user vcsa from 34.80.244.134 port 49654 ssh2 Dec 23 23:46:44 Aberdeen-m4-Access auth.info sshd[12513]: Received disconnect from 34.80.244.134 port 49654:11: Bye Bye [preauth] Dec 23 23:46:44 Aberdeen-m4-Access auth.info sshd[12513]: Disconnected from 34.80.244.134 port 49654 [preauth] Dec 23 23:46:44 Aberdeen-m4-Access auth.notice sshguard[17606]: Attack from "34.80.244.134" on service 100 whostnameh danger 10. Dec 23 23:46:44 Aberdeen-m4-Access auth.notice sshguard[17606]: Attack from "34.80.244.134" on service 100 whostnameh danger 10. Dec 23 23:46:44 Aberdeen-m4-Access auth.notice sshguard[17606]: Attack from "34.80.244.134" on service 100 whostnameh danger 10. Dec 23 23:46:44 Aberdeen-m4-Access auth.warn sshguard[17606]: Blocking "34.80.244.134/32" forever (3 attacks in 0 secs, ........ ------------------------------ |
2019-12-27 02:29:25 |
| 222.186.190.92 | attackbots | Dec 26 19:35:04 dedicated sshd[10079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Dec 26 19:35:05 dedicated sshd[10079]: Failed password for root from 222.186.190.92 port 56948 ssh2 |
2019-12-27 02:43:29 |
| 112.29.140.224 | attack | $f2bV_matches |
2019-12-27 02:36:21 |
| 202.99.199.142 | attackbots | Automatic report - Banned IP Access |
2019-12-27 03:03:51 |
| 117.48.227.34 | attack | $f2bV_matches |
2019-12-27 02:30:08 |
| 103.133.107.211 | attackspambots | 1577371898 - 12/26/2019 15:51:38 Host: 103.133.107.211/103.133.107.211 Port: 2000 TCP Blocked |
2019-12-27 02:41:03 |
| 203.142.69.203 | attack | $f2bV_matches |
2019-12-27 02:28:09 |
| 106.13.29.5 | attackspambots | 2019-12-26 dovecot_login authenticator failed for \(**REMOVED**\) \[106.13.29.5\]: 535 Incorrect authentication data \(set_id=nologin\) 2019-12-26 dovecot_login authenticator failed for \(**REMOVED**\) \[106.13.29.5\]: 535 Incorrect authentication data \(set_id=info@**REMOVED**\) 2019-12-26 dovecot_login authenticator failed for \(**REMOVED**\) \[106.13.29.5\]: 535 Incorrect authentication data \(set_id=info\) |
2019-12-27 02:47:25 |
| 185.175.93.14 | attack | 12/26/2019-14:00:20.911881 185.175.93.14 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-12-27 03:02:06 |