城市(city): unknown
省份(region): unknown
国家(country): None
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.234.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59051
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.21.234.130. IN A
;; AUTHORITY SECTION:
. 367 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400
;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 20:18:54 CST 2022
;; MSG SIZE rcvd: 107Host 130.234.21.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 130.234.21.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 201.41.148.228 | attackbots | Feb 24 21:55:11 odroid64 sshd\[9175\]: Invalid user sa from 201.41.148.228 Feb 24 21:55:11 odroid64 sshd\[9175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.41.148.228 Feb 24 21:55:12 odroid64 sshd\[9175\]: Failed password for invalid user sa from 201.41.148.228 port 47213 ssh2 Feb 28 20:05:28 odroid64 sshd\[324\]: Invalid user ubuntu from 201.41.148.228 Feb 28 20:05:28 odroid64 sshd\[324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.41.148.228 Feb 28 20:05:30 odroid64 sshd\[324\]: Failed password for invalid user ubuntu from 201.41.148.228 port 39663 ssh2 Mar 8 13:26:28 odroid64 sshd\[24344\]: User mysql from 201.41.148.228 not allowed because not listed in AllowUsers Mar 8 13:26:28 odroid64 sshd\[24344\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.41.148.228 user=mysql Mar 8 13:26:30 odroid64 sshd\[24344\]: Failed password for ... |
2019-10-18 04:39:17 |
| 159.65.219.163 | attackspam | *Port Scan* detected from 159.65.219.163 (US/United States/-). 4 hits in the last 60 seconds |
2019-10-18 04:33:41 |
| 159.65.151.216 | attackbots | Oct 17 16:49:14 firewall sshd[9598]: Invalid user lexmark from 159.65.151.216 Oct 17 16:49:17 firewall sshd[9598]: Failed password for invalid user lexmark from 159.65.151.216 port 37770 ssh2 Oct 17 16:53:46 firewall sshd[9738]: Invalid user Rouge from 159.65.151.216 ... |
2019-10-18 04:07:52 |
| 202.188.218.60 | attackbotsspam | Automatic report - Port Scan Attack |
2019-10-18 04:19:47 |
| 223.17.53.22 | attackbotsspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/223.17.53.22/ HK - 1H : (19) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN18116 IP : 223.17.53.22 CIDR : 223.17.0.0/18 PREFIX COUNT : 26 UNIQUE IP COUNT : 195840 WYKRYTE ATAKI Z ASN18116 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-17 21:53:35 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-10-18 04:18:00 |
| 188.166.220.17 | attackbotsspam | $f2bV_matches |
2019-10-18 04:09:04 |
| 103.207.2.204 | attackbotsspam | 2019-10-17T21:48:49.726671lon01.zurich-datacenter.net sshd\[9512\]: Invalid user test4 from 103.207.2.204 port 40722 2019-10-17T21:48:49.732063lon01.zurich-datacenter.net sshd\[9512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.2.204 2019-10-17T21:48:51.582733lon01.zurich-datacenter.net sshd\[9512\]: Failed password for invalid user test4 from 103.207.2.204 port 40722 ssh2 2019-10-17T21:53:43.878240lon01.zurich-datacenter.net sshd\[9594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.2.204 user=root 2019-10-17T21:53:45.422820lon01.zurich-datacenter.net sshd\[9594\]: Failed password for root from 103.207.2.204 port 53434 ssh2 ... |
2019-10-18 04:10:02 |
| 103.18.78.54 | attack | T: f2b postfix aggressive 3x |
2019-10-18 04:35:22 |
| 185.112.249.9 | attackbots | Oct 15 20:02:59 josie sshd[28252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.112.249.9 user=r.r Oct 15 20:03:01 josie sshd[28252]: Failed password for r.r from 185.112.249.9 port 42082 ssh2 Oct 15 20:03:01 josie sshd[28254]: Received disconnect from 185.112.249.9: 11: Bye Bye Oct 15 20:03:02 josie sshd[28275]: Invalid user admin from 185.112.249.9 Oct 15 20:03:02 josie sshd[28275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.112.249.9 Oct 15 20:03:04 josie sshd[28275]: Failed password for invalid user admin from 185.112.249.9 port 52038 ssh2 Oct 15 20:03:05 josie sshd[28278]: Received disconnect from 185.112.249.9: 11: Bye Bye Oct 15 20:03:05 josie sshd[28305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.112.249.9 user=r.r Oct 15 20:03:08 josie sshd[28305]: Failed password for r.r from 185.112.249.9 port 34584 ssh2 Oct 15 2........ ------------------------------- |
2019-10-18 04:37:28 |
| 91.121.114.69 | attack | Oct 17 22:53:52 hosting sshd[18074]: Invalid user matthew2 from 91.121.114.69 port 52064 ... |
2019-10-18 04:04:57 |
| 201.68.154.98 | attack | Mar 4 13:53:55 odroid64 sshd\[20690\]: Invalid user pentaho from 201.68.154.98 Mar 4 13:53:55 odroid64 sshd\[20690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.68.154.98 Mar 4 13:53:57 odroid64 sshd\[20690\]: Failed password for invalid user pentaho from 201.68.154.98 port 58786 ssh2 Mar 9 22:18:03 odroid64 sshd\[1355\]: User root from 201.68.154.98 not allowed because not listed in AllowUsers Mar 9 22:18:03 odroid64 sshd\[1355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.68.154.98 user=root Mar 9 22:18:06 odroid64 sshd\[1355\]: Failed password for invalid user root from 201.68.154.98 port 60696 ssh2 ... |
2019-10-18 04:08:23 |
| 144.217.13.40 | attackspam | Oct 17 10:06:57 web9 sshd\[26959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.13.40 user=root Oct 17 10:06:58 web9 sshd\[26959\]: Failed password for root from 144.217.13.40 port 59709 ssh2 Oct 17 10:11:22 web9 sshd\[27495\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.13.40 user=root Oct 17 10:11:24 web9 sshd\[27495\]: Failed password for root from 144.217.13.40 port 51511 ssh2 Oct 17 10:15:53 web9 sshd\[28161\]: Invalid user zzzzz from 144.217.13.40 Oct 17 10:15:53 web9 sshd\[28161\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.13.40 |
2019-10-18 04:31:59 |
| 80.211.154.91 | attack | Oct 17 21:53:35 MK-Soft-VM5 sshd[31423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.154.91 Oct 17 21:53:37 MK-Soft-VM5 sshd[31423]: Failed password for invalid user sarath from 80.211.154.91 port 37032 ssh2 ... |
2019-10-18 04:17:34 |
| 45.122.138.81 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.122.138.81/ HK - 1H : (18) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN132742 IP : 45.122.138.81 CIDR : 45.122.138.0/24 PREFIX COUNT : 79 UNIQUE IP COUNT : 37888 WYKRYTE ATAKI Z ASN132742 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-17 20:52:50 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery |
2019-10-18 04:30:42 |
| 203.125.145.58 | attackbots | Oct 17 10:26:28 wbs sshd\[28859\]: Invalid user rajkot from 203.125.145.58 Oct 17 10:26:28 wbs sshd\[28859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 Oct 17 10:26:30 wbs sshd\[28859\]: Failed password for invalid user rajkot from 203.125.145.58 port 57644 ssh2 Oct 17 10:30:47 wbs sshd\[29231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=root Oct 17 10:30:49 wbs sshd\[29231\]: Failed password for root from 203.125.145.58 port 39878 ssh2 |
2019-10-18 04:38:50 |