城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.63.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43215
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.21.63.131. IN A
;; AUTHORITY SECTION:
. 152 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 01:31:10 CST 2022
;; MSG SIZE rcvd: 106
Host 131.63.21.104.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 131.63.21.104.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 107.144.21.210 | attack | Potential Corporate Privacy Violation |
2019-10-14 21:48:25 |
| 111.59.189.30 | attackspam | Unauthorized IMAP connection attempt |
2019-10-14 22:03:53 |
| 37.59.38.216 | attackspam | Oct 14 09:47:29 xtremcommunity sshd\[512309\]: Invalid user priscila from 37.59.38.216 port 47329 Oct 14 09:47:29 xtremcommunity sshd\[512309\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.38.216 Oct 14 09:47:31 xtremcommunity sshd\[512309\]: Failed password for invalid user priscila from 37.59.38.216 port 47329 ssh2 Oct 14 09:51:51 xtremcommunity sshd\[512380\]: Invalid user enrica from 37.59.38.216 port 41472 Oct 14 09:51:51 xtremcommunity sshd\[512380\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.38.216 ... |
2019-10-14 21:55:28 |
| 117.185.62.146 | attackspam | Oct 14 14:57:08 nextcloud sshd\[3381\]: Invalid user Melon@123 from 117.185.62.146 Oct 14 14:57:08 nextcloud sshd\[3381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.185.62.146 Oct 14 14:57:10 nextcloud sshd\[3381\]: Failed password for invalid user Melon@123 from 117.185.62.146 port 45564 ssh2 ... |
2019-10-14 21:46:39 |
| 195.192.225.54 | attack | Automatic report - Port Scan Attack |
2019-10-14 22:22:55 |
| 193.169.255.130 | attackspambots | 193.169.255.130 - - "GET / HTTP/1.1" FAILED LOGIN cpaneld: user name not provided or invalid user |
2019-10-14 22:08:29 |
| 193.112.58.212 | attack | Oct 14 02:02:18 auw2 sshd\[4043\]: Invalid user Montecarlo-123 from 193.112.58.212 Oct 14 02:02:18 auw2 sshd\[4043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.58.212 Oct 14 02:02:19 auw2 sshd\[4043\]: Failed password for invalid user Montecarlo-123 from 193.112.58.212 port 41386 ssh2 Oct 14 02:07:35 auw2 sshd\[4563\]: Invalid user P@sswordxxx from 193.112.58.212 Oct 14 02:07:35 auw2 sshd\[4563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.58.212 |
2019-10-14 22:06:48 |
| 37.146.210.163 | attackspam | Oct 14 15:17:16 ncomp sshd[28217]: Invalid user ubnt from 37.146.210.163 Oct 14 15:17:16 ncomp sshd[28217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.146.210.163 Oct 14 15:17:16 ncomp sshd[28217]: Invalid user ubnt from 37.146.210.163 Oct 14 15:17:18 ncomp sshd[28217]: Failed password for invalid user ubnt from 37.146.210.163 port 49097 ssh2 |
2019-10-14 21:55:08 |
| 60.255.230.202 | attack | Oct 14 13:41:49 game-panel sshd[18220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.255.230.202 Oct 14 13:41:51 game-panel sshd[18220]: Failed password for invalid user alok from 60.255.230.202 port 47010 ssh2 Oct 14 13:49:22 game-panel sshd[18526]: Failed password for root from 60.255.230.202 port 56666 ssh2 |
2019-10-14 21:51:26 |
| 103.116.141.2 | attack | port scan and connect, tcp 23 (telnet) |
2019-10-14 22:02:23 |
| 180.241.47.159 | attackbots | Brute forcing RDP port 3389 |
2019-10-14 21:43:06 |
| 51.83.32.232 | attack | Oct 14 16:01:38 SilenceServices sshd[3629]: Failed password for root from 51.83.32.232 port 45132 ssh2 Oct 14 16:05:33 SilenceServices sshd[4849]: Failed password for root from 51.83.32.232 port 55614 ssh2 |
2019-10-14 22:17:42 |
| 37.192.194.50 | attack | 2019-10-14T12:52:48.861283beta postfix/smtpd[746]: NOQUEUE: reject: RCPT from l37-192-194-50.novotelecom.ru[37.192.194.50]: 554 5.7.1 Service unavailable; Client host [37.192.194.50] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/37.192.194.50; from= |
2019-10-14 21:54:54 |
| 77.247.110.234 | attack | Oct 14 11:39:45 mail kernel: [2429713.550922] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=77.247.110.234 DST=185.101.93.72 LEN=433 TOS=0x00 PREC=0x00 TTL=49 ID=0 DF PROTO=UDP SPT=5079 DPT=65535 LEN=413 Oct 14 11:40:07 mail kernel: [2429735.686448] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=77.247.110.234 DST=185.101.93.72 LEN=432 TOS=0x00 PREC=0x00 TTL=49 ID=0 DF PROTO=UDP SPT=5075 DPT=65487 LEN=412 Oct 14 11:41:05 mail kernel: [2429793.536152] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=77.247.110.234 DST=185.101.93.72 LEN=434 TOS=0x00 PREC=0x00 TTL=49 ID=0 DF PROTO=UDP SPT=5089 DPT=6080 LEN=414 Oct 14 11:42:26 mail kernel: [2429874.369840] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=77.247.110.234 DST=185.101.93.72 LEN=433 TOS=0x00 PREC=0x00 TTL=49 ID=0 DF PROTO=UDP SPT=5092 DPT=6440 LEN=413 Oct 14 11:43:06 mail kernel: [2429914.250117] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64: |
2019-10-14 21:50:10 |
| 45.45.45.45 | attack | 14.10.2019 11:52:18 Recursive DNS scan |
2019-10-14 22:00:58 |