城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.234.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9713
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.21.234.139. IN A
;; AUTHORITY SECTION:
. 305 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400
;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 02:17:47 CST 2022
;; MSG SIZE rcvd: 107Host 139.234.21.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 139.234.21.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 109.60.35.42 | attack | Lines containing failures of 109.60.35.42 Nov 19 12:17:55 server01 postfix/smtpd[21179]: connect from cpe-109-60-35-42.st4.cable.xnet.hr[109.60.35.42] Nov x@x Nov x@x Nov 19 12:17:55 server01 postfix/policy-spf[21183]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=828%40iberhardware.com;ip=109.60.35.42;r=server01.2800km.de Nov x@x Nov 19 12:17:56 server01 postfix/smtpd[21179]: lost connection after DATA from cpe-109-60-35-42.st4.cable.xnet.hr[109.60.35.42] Nov 19 12:17:56 server01 postfix/smtpd[21179]: disconnect from cpe-109-60-35-42.st4.cable.xnet.hr[109.60.35.42] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.60.35.42 |
2019-11-21 16:38:15 |
| 23.129.64.203 | attack | detected by Fail2Ban |
2019-11-21 16:19:57 |
| 49.36.29.43 | attackbotsspam | TCP Port Scanning |
2019-11-21 16:16:17 |
| 202.137.155.208 | attack | Honeypot attack, port: 23, PTR: PTR record not found |
2019-11-21 16:22:22 |
| 51.89.13.177 | attackspam | Nov 19 10:58:50 mxgate1 postfix/postscreen[30543]: CONNECT from [51.89.13.177]:49558 to [176.31.12.44]:25 Nov 19 10:58:50 mxgate1 postfix/dnsblog[30545]: addr 51.89.13.177 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 19 10:58:56 mxgate1 postfix/postscreen[30543]: DNSBL rank 2 for [51.89.13.177]:49558 Nov 19 10:58:56 mxgate1 postfix/tlsproxy[31214]: CONNECT from [51.89.13.177]:49558 Nov x@x Nov 19 10:58:56 mxgate1 postfix/postscreen[30543]: DISCONNECT [51.89.13.177]:49558 Nov 19 10:58:56 mxgate1 postfix/tlsproxy[31214]: DISCONNECT [51.89.13.177]:49558 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.89.13.177 |
2019-11-21 16:06:35 |
| 93.174.93.171 | attackbotsspam | 11/21/2019-01:28:10.478818 93.174.93.171 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-11-21 16:13:47 |
| 147.135.119.51 | attackspam | Nov 21 08:07:17 localhost sshd\[21917\]: Invalid user kosokowsky from 147.135.119.51 port 50902 Nov 21 08:07:17 localhost sshd\[21917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.119.51 Nov 21 08:07:19 localhost sshd\[21917\]: Failed password for invalid user kosokowsky from 147.135.119.51 port 50902 ssh2 Nov 21 08:14:50 localhost sshd\[22155\]: Invalid user xueqing from 147.135.119.51 port 50984 Nov 21 08:14:50 localhost sshd\[22155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.119.51 ... |
2019-11-21 16:24:21 |
| 181.198.35.108 | attackbotsspam | Nov 21 09:35:43 nextcloud sshd\[26652\]: Invalid user keilman from 181.198.35.108 Nov 21 09:35:43 nextcloud sshd\[26652\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.198.35.108 Nov 21 09:35:45 nextcloud sshd\[26652\]: Failed password for invalid user keilman from 181.198.35.108 port 47198 ssh2 ... |
2019-11-21 16:39:42 |
| 106.75.15.142 | attackbotsspam | Nov 21 09:29:00 MK-Soft-Root2 sshd[32660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.15.142 Nov 21 09:29:02 MK-Soft-Root2 sshd[32660]: Failed password for invalid user world from 106.75.15.142 port 51678 ssh2 ... |
2019-11-21 16:37:01 |
| 114.79.160.36 | attack | " " |
2019-11-21 16:34:03 |
| 177.34.125.113 | attackbots | Nov 20 22:02:22 server sshd\[8097\]: Invalid user denial from 177.34.125.113 Nov 20 22:02:22 server sshd\[8097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.34.125.113 Nov 20 22:02:24 server sshd\[8097\]: Failed password for invalid user denial from 177.34.125.113 port 33214 ssh2 Nov 21 09:54:34 server sshd\[28334\]: Invalid user lake from 177.34.125.113 Nov 21 09:54:34 server sshd\[28334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.34.125.113 ... |
2019-11-21 16:10:42 |
| 140.143.242.159 | attack | 2019-11-21T08:30:53.553088 sshd[14444]: Invalid user kcep from 140.143.242.159 port 40920 2019-11-21T08:30:53.568607 sshd[14444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.242.159 2019-11-21T08:30:53.553088 sshd[14444]: Invalid user kcep from 140.143.242.159 port 40920 2019-11-21T08:30:55.295076 sshd[14444]: Failed password for invalid user kcep from 140.143.242.159 port 40920 ssh2 2019-11-21T08:35:20.893327 sshd[14509]: Invalid user krysko from 140.143.242.159 port 44322 ... |
2019-11-21 16:11:23 |
| 31.163.129.81 | attack | Honeypot attack, port: 23, PTR: ws81.zone31-163-129.zaural.ru. |
2019-11-21 16:24:42 |
| 209.235.67.48 | attackspam | Nov 21 07:51:29 venus sshd\[13626\]: Invalid user guest from 209.235.67.48 port 56584 Nov 21 07:51:29 venus sshd\[13626\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.235.67.48 Nov 21 07:51:31 venus sshd\[13626\]: Failed password for invalid user guest from 209.235.67.48 port 56584 ssh2 ... |
2019-11-21 16:45:09 |
| 125.161.83.145 | attack | Honeypot attack, port: 445, PTR: 145.subnet125-161-83.speedy.telkom.net.id. |
2019-11-21 16:39:02 |