城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.19.0.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4236
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.19.0.74. IN A
;; AUTHORITY SECTION:
. 373 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400
;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 12:07:07 CST 2022
;; MSG SIZE rcvd: 104Host 74.0.19.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 74.0.19.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 90.221.8.139 | attackbotsspam | Automatic report - Port Scan Attack |
2020-01-20 22:01:50 |
| 179.93.149.17 | attack | Jan 20 14:06:51 |
2020-01-20 22:24:17 |
| 62.173.149.89 | attackbotsspam | Jan 20 13:54:51 h2177944 kernel: \[2723232.744129\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=62.173.149.89 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=12398 DF PROTO=TCP SPT=20004 DPT=9080 WINDOW=512 RES=0x00 SYN URGP=0 Jan 20 13:54:51 h2177944 kernel: \[2723232.744142\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=62.173.149.89 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=12398 DF PROTO=TCP SPT=20004 DPT=9080 WINDOW=512 RES=0x00 SYN URGP=0 Jan 20 14:01:54 h2177944 kernel: \[2723655.878110\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=62.173.149.89 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=12398 DF PROTO=TCP SPT=20002 DPT=8092 WINDOW=512 RES=0x00 SYN URGP=0 Jan 20 14:01:54 h2177944 kernel: \[2723655.878126\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=62.173.149.89 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=12398 DF PROTO=TCP SPT=20002 DPT=8092 WINDOW=512 RES=0x00 SYN URGP=0 Jan 20 14:07:09 h2177944 kernel: \[2723970.615836\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=62.173.149.89 DST=85.2 |
2020-01-20 22:12:56 |
| 89.228.10.186 | attack | Unauthorized connection attempt detected from IP address 89.228.10.186 to port 445 |
2020-01-20 22:17:48 |
| 197.62.87.237 | attackspambots | 1579525640 - 01/20/2020 14:07:20 Host: 197.62.87.237/197.62.87.237 Port: 445 TCP Blocked |
2020-01-20 22:03:34 |
| 5.132.115.161 | attackspam | Jan 20 15:03:13 vps691689 sshd[9319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.132.115.161 Jan 20 15:03:14 vps691689 sshd[9319]: Failed password for invalid user server from 5.132.115.161 port 60036 ssh2 Jan 20 15:06:03 vps691689 sshd[9430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.132.115.161 ... |
2020-01-20 22:20:26 |
| 5.70.7.63 | attackbotsspam | Jan 20 03:59:33 web1 sshd\[24662\]: Invalid user gast from 5.70.7.63 Jan 20 03:59:33 web1 sshd\[24662\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.70.7.63 Jan 20 03:59:35 web1 sshd\[24662\]: Failed password for invalid user gast from 5.70.7.63 port 43058 ssh2 Jan 20 04:07:04 web1 sshd\[25282\]: Invalid user update from 5.70.7.63 Jan 20 04:07:04 web1 sshd\[25282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.70.7.63 |
2020-01-20 22:11:00 |
| 93.188.204.42 | attack | Jan 20 12:34:56 mailrelay sshd[31049]: Invalid user fieke from 93.188.204.42 port 60131 Jan 20 12:34:56 mailrelay sshd[31049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.188.204.42 Jan 20 12:34:59 mailrelay sshd[31049]: Failed password for invalid user fieke from 93.188.204.42 port 60131 ssh2 Jan 20 12:34:59 mailrelay sshd[31049]: Received disconnect from 93.188.204.42 port 60131:11: Bye Bye [preauth] Jan 20 12:34:59 mailrelay sshd[31049]: Disconnected from 93.188.204.42 port 60131 [preauth] Jan 20 13:10:40 mailrelay sshd[31369]: Connection closed by 93.188.204.42 port 48792 [preauth] Jan 20 13:21:26 mailrelay sshd[31444]: Connection closed by 93.188.204.42 port 45828 [preauth] Jan 20 13:32:08 mailrelay sshd[31527]: Connection closed by 93.188.204.42 port 42575 [preauth] Jan 20 13:43:08 mailrelay sshd[31604]: Invalid user oper01 from 93.188.204.42 port 38997 Jan 20 13:43:08 mailrelay sshd[31604]: pam_unix(sshd:auth): authe........ ------------------------------- |
2020-01-20 22:36:14 |
| 114.7.162.198 | attackbots | Jan 20 14:31:10 srv-ubuntu-dev3 sshd[75318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.7.162.198 user=root Jan 20 14:31:11 srv-ubuntu-dev3 sshd[75318]: Failed password for root from 114.7.162.198 port 55382 ssh2 Jan 20 14:32:39 srv-ubuntu-dev3 sshd[75433]: Invalid user hf from 114.7.162.198 Jan 20 14:32:39 srv-ubuntu-dev3 sshd[75433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.7.162.198 Jan 20 14:32:39 srv-ubuntu-dev3 sshd[75433]: Invalid user hf from 114.7.162.198 Jan 20 14:32:41 srv-ubuntu-dev3 sshd[75433]: Failed password for invalid user hf from 114.7.162.198 port 33671 ssh2 Jan 20 14:34:10 srv-ubuntu-dev3 sshd[75541]: Invalid user kali from 114.7.162.198 Jan 20 14:34:10 srv-ubuntu-dev3 sshd[75541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.7.162.198 Jan 20 14:34:10 srv-ubuntu-dev3 sshd[75541]: Invalid user kali from 114.7.162.198 Jan ... |
2020-01-20 22:14:32 |
| 202.137.20.58 | attackspam | Unauthorized connection attempt detected from IP address 202.137.20.58 to port 2220 [J] |
2020-01-20 22:15:42 |
| 178.219.16.226 | attackbotsspam | Jan 20 15:14:36 vpn01 sshd[24866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.219.16.226 Jan 20 15:14:38 vpn01 sshd[24866]: Failed password for invalid user write from 178.219.16.226 port 50242 ssh2 ... |
2020-01-20 22:15:56 |
| 91.212.150.147 | attackbots | 2020-01-20T13:07:19.687160+00:00 suse sshd[3531]: Invalid user test from 91.212.150.147 port 56484 2020-01-20T13:07:26.521872+00:00 suse sshd[3531]: error: PAM: User not known to the underlying authentication module for illegal user test from 91.212.150.147 2020-01-20T13:07:19.687160+00:00 suse sshd[3531]: Invalid user test from 91.212.150.147 port 56484 2020-01-20T13:07:26.521872+00:00 suse sshd[3531]: error: PAM: User not known to the underlying authentication module for illegal user test from 91.212.150.147 2020-01-20T13:07:19.687160+00:00 suse sshd[3531]: Invalid user test from 91.212.150.147 port 56484 2020-01-20T13:07:26.521872+00:00 suse sshd[3531]: error: PAM: User not known to the underlying authentication module for illegal user test from 91.212.150.147 2020-01-20T13:07:26.526710+00:00 suse sshd[3531]: Failed keyboard-interactive/pam for invalid user test from 91.212.150.147 port 56484 ssh2 ... |
2020-01-20 21:59:37 |
| 128.199.249.167 | attackspambots | Jan 20 14:05:51 vps58358 sshd\[20381\]: Invalid user ludmila from 128.199.249.167Jan 20 14:05:53 vps58358 sshd\[20381\]: Failed password for invalid user ludmila from 128.199.249.167 port 56514 ssh2Jan 20 14:09:35 vps58358 sshd\[20490\]: Invalid user user from 128.199.249.167Jan 20 14:09:37 vps58358 sshd\[20490\]: Failed password for invalid user user from 128.199.249.167 port 59606 ssh2Jan 20 14:13:29 vps58358 sshd\[20529\]: Invalid user alfred from 128.199.249.167Jan 20 14:13:31 vps58358 sshd\[20529\]: Failed password for invalid user alfred from 128.199.249.167 port 34468 ssh2 ... |
2020-01-20 22:15:27 |
| 68.183.178.162 | attack | Jan 20 15:09:03 sso sshd[13426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.178.162 Jan 20 15:09:05 sso sshd[13426]: Failed password for invalid user vishal from 68.183.178.162 port 58990 ssh2 ... |
2020-01-20 22:28:44 |
| 190.229.113.45 | attackspambots | Fail2Ban Ban Triggered |
2020-01-20 22:40:16 |