城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.19.159.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12697
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.19.159.53. IN A
;; AUTHORITY SECTION:
. 469 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021602 1800 900 604800 86400
;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 17 06:05:43 CST 2022
;; MSG SIZE rcvd: 106Host 53.159.19.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 53.159.19.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 189.126.219.218 | attackbotsspam | Honeypot attack, port: 445, PTR: PTR record not found |
2020-06-22 22:44:53 |
| 210.206.92.137 | attackspambots | Jun 22 08:29:25 Host-KLAX-C sshd[12015]: User root from 210.206.92.137 not allowed because not listed in AllowUsers ... |
2020-06-22 23:04:40 |
| 114.34.43.194 | attackbots | Honeypot attack, port: 81, PTR: 114-34-43-194.HINET-IP.hinet.net. |
2020-06-22 22:24:29 |
| 213.137.179.203 | attackbotsspam | $f2bV_matches |
2020-06-22 22:51:33 |
| 58.49.94.213 | attackspambots | Jun 22 15:05:24 root sshd[29356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.49.94.213 user=root Jun 22 15:05:26 root sshd[29356]: Failed password for root from 58.49.94.213 port 37182 ssh2 ... |
2020-06-22 23:06:16 |
| 138.197.76.26 | attackbots | Unauthorized IMAP connection attempt |
2020-06-22 22:23:56 |
| 111.161.74.106 | attackbotsspam | Jun 22 14:14:43 django-0 sshd[5004]: Failed password for invalid user aml from 111.161.74.106 port 40379 ssh2 Jun 22 14:17:27 django-0 sshd[5086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.106 user=daemon Jun 22 14:17:30 django-0 sshd[5086]: Failed password for daemon from 111.161.74.106 port 57475 ssh2 ... |
2020-06-22 22:30:56 |
| 1.245.61.144 | attackbotsspam | Jun 22 03:58:28 web1 sshd\[5092\]: Invalid user user2 from 1.245.61.144 Jun 22 03:58:28 web1 sshd\[5092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.245.61.144 Jun 22 03:58:30 web1 sshd\[5092\]: Failed password for invalid user user2 from 1.245.61.144 port 37604 ssh2 Jun 22 04:01:25 web1 sshd\[5334\]: Invalid user applmgr from 1.245.61.144 Jun 22 04:01:25 web1 sshd\[5334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.245.61.144 |
2020-06-22 23:05:10 |
| 62.234.103.191 | attackspam | SSH bruteforce |
2020-06-22 22:35:09 |
| 178.193.131.57 | attackspambots | $f2bV_matches | Triggered by Fail2Ban at Vostok web server |
2020-06-22 23:07:38 |
| 177.10.144.94 | attack | Unauthorized IMAP connection attempt |
2020-06-22 22:57:27 |
| 67.205.173.145 | attackbotsspam | 2020-06-22T16:46:59.011821amanda2.illicoweb.com sshd\[32229\]: Invalid user ubnt from 67.205.173.145 port 56196 2020-06-22T16:46:59.014368amanda2.illicoweb.com sshd\[32229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.173.145 2020-06-22T16:47:00.930058amanda2.illicoweb.com sshd\[32229\]: Failed password for invalid user ubnt from 67.205.173.145 port 56196 ssh2 2020-06-22T16:47:01.697439amanda2.illicoweb.com sshd\[32231\]: Invalid user admin from 67.205.173.145 port 59714 2020-06-22T16:47:01.699728amanda2.illicoweb.com sshd\[32231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.173.145 ... |
2020-06-22 22:56:49 |
| 45.138.74.161 | attack | SpamScore above: 10.0 |
2020-06-22 22:46:16 |
| 138.99.194.19 | attackspambots | Lines containing failures of 138.99.194.19 Jun 22 13:43:43 keyhelp sshd[12049]: Invalid user admin from 138.99.194.19 port 54273 Jun 22 13:43:43 keyhelp sshd[12049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.194.19 Jun 22 13:43:45 keyhelp sshd[12049]: Failed password for invalid user admin from 138.99.194.19 port 54273 ssh2 Jun 22 13:43:45 keyhelp sshd[12049]: Connection closed by invalid user admin 138.99.194.19 port 54273 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.99.194.19 |
2020-06-22 22:47:12 |
| 106.54.128.79 | attackbots | Jun 22 14:06:07 host sshd[30171]: Invalid user docker from 106.54.128.79 port 33452 ... |
2020-06-22 22:24:45 |