城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.58.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62337
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.21.58.212. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 02:38:54 CST 2022
;; MSG SIZE rcvd: 106Host 212.58.21.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 212.58.21.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 79.124.62.82 | attack | Jun 4 00:22:52 debian kernel: [121935.882770] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=79.124.62.82 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=42824 PROTO=TCP SPT=46868 DPT=2224 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-06-04 06:36:59 |
| 118.31.74.165 | attack | Jun 3 18:15:06 firewall sshd[13586]: Failed password for root from 118.31.74.165 port 42948 ssh2 Jun 3 18:15:58 firewall sshd[13627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.31.74.165 user=root Jun 3 18:16:00 firewall sshd[13627]: Failed password for root from 118.31.74.165 port 54140 ssh2 ... |
2020-06-04 06:33:44 |
| 36.107.231.56 | attackspam | $f2bV_matches |
2020-06-04 06:31:25 |
| 109.236.60.42 | attackspam | SmallBizIT.US 5 packets to udp(5060) |
2020-06-04 06:23:41 |
| 159.89.129.36 | attackbotsspam | Jun 3 22:10:54 ip-172-31-61-156 sshd[21411]: Failed password for root from 159.89.129.36 port 40672 ssh2 Jun 3 22:10:53 ip-172-31-61-156 sshd[21411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.129.36 user=root Jun 3 22:10:54 ip-172-31-61-156 sshd[21411]: Failed password for root from 159.89.129.36 port 40672 ssh2 Jun 3 22:14:17 ip-172-31-61-156 sshd[21513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.129.36 user=root Jun 3 22:14:19 ip-172-31-61-156 sshd[21513]: Failed password for root from 159.89.129.36 port 43794 ssh2 ... |
2020-06-04 06:21:37 |
| 110.88.128.232 | attack | Jun 3 23:57:14 piServer sshd[28978]: Failed password for root from 110.88.128.232 port 41746 ssh2 Jun 3 23:59:11 piServer sshd[29093]: Failed password for root from 110.88.128.232 port 41606 ssh2 ... |
2020-06-04 06:27:55 |
| 123.240.190.9 | attackspambots | Honeypot attack, port: 81, PTR: 123-240-190-9.cctv.dynamic.tbcnet.net.tw. |
2020-06-04 06:12:47 |
| 220.137.130.19 | attackspam | Unauthorised access (Jun 3) SRC=220.137.130.19 LEN=52 TTL=109 ID=18341 DF TCP DPT=445 WINDOW=8192 SYN |
2020-06-04 06:41:38 |
| 157.230.230.152 | attackspambots | 2020-06-03T17:12:38.1923581495-001 sshd[17653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.230.152 user=root 2020-06-03T17:12:39.9312161495-001 sshd[17653]: Failed password for root from 157.230.230.152 port 35106 ssh2 2020-06-03T17:15:31.2512881495-001 sshd[17833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.230.152 user=root 2020-06-03T17:15:32.7392181495-001 sshd[17833]: Failed password for root from 157.230.230.152 port 60106 ssh2 2020-06-03T17:18:26.5831711495-001 sshd[17959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.230.152 user=root 2020-06-03T17:18:29.0988601495-001 sshd[17959]: Failed password for root from 157.230.230.152 port 56876 ssh2 ... |
2020-06-04 06:10:14 |
| 51.140.30.107 | attackbots | xxs |
2020-06-04 06:17:53 |
| 194.28.57.30 | attackbotsspam | Jun 3 23:14:04 debian kernel: [117808.261822] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=194.28.57.30 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=50603 PROTO=TCP SPT=26530 DPT=23 WINDOW=42106 RES=0x00 SYN URGP=0 |
2020-06-04 06:31:53 |
| 103.200.23.81 | attack | Jun 1 01:17:12 ns sshd[18761]: Connection from 103.200.23.81 port 53424 on 134.119.36.27 port 22 Jun 1 01:17:14 ns sshd[18761]: User r.r from 103.200.23.81 not allowed because not listed in AllowUsers Jun 1 01:17:14 ns sshd[18761]: Failed password for invalid user r.r from 103.200.23.81 port 53424 ssh2 Jun 1 01:17:14 ns sshd[18761]: Received disconnect from 103.200.23.81 port 53424:11: Bye Bye [preauth] Jun 1 01:17:14 ns sshd[18761]: Disconnected from 103.200.23.81 port 53424 [preauth] Jun 1 01:29:10 ns sshd[10202]: Connection from 103.200.23.81 port 59626 on 134.119.36.27 port 22 Jun 1 01:29:11 ns sshd[10202]: User r.r from 103.200.23.81 not allowed because not listed in AllowUsers Jun 1 01:29:11 ns sshd[10202]: Failed password for invalid user r.r from 103.200.23.81 port 59626 ssh2 Jun 1 01:29:11 ns sshd[10202]: Received disconnect from 103.200.23.81 port 59626:11: Bye Bye [preauth] Jun 1 01:29:11 ns sshd[10202]: Disconnected from 103.200.23.81 port 59626 [p........ ------------------------------- |
2020-06-04 06:11:06 |
| 183.106.188.216 | attack | Honeypot attack, port: 81, PTR: PTR record not found |
2020-06-04 06:10:45 |
| 116.28.15.89 | attackbotsspam | Automatic report - Port Scan Attack |
2020-06-04 06:37:45 |
| 125.33.253.10 | attack | reported through recidive - multiple failed attempts(SSH) |
2020-06-04 06:07:36 |