城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.94.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45055
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.21.94.159. IN A
;; AUTHORITY SECTION:
. 479 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 03:31:31 CST 2022
;; MSG SIZE rcvd: 106
Host 159.94.21.104.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 159.94.21.104.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 41.144.136.182 | attackspam | Mar 19 13:46:37 pl2server sshd[18488]: reveeclipse mapping checking getaddrinfo for dsl-144-136-182.telkomadsl.co.za [41.144.136.182] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 19 13:46:37 pl2server sshd[18488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.144.136.182 user=r.r Mar 19 13:46:39 pl2server sshd[18488]: Failed password for r.r from 41.144.136.182 port 32735 ssh2 Mar 19 13:46:40 pl2server sshd[18488]: Connection closed by 41.144.136.182 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=41.144.136.182 |
2020-03-19 22:07:42 |
| 167.172.211.201 | attackbots | SSH bruteforce (Triggered fail2ban) |
2020-03-19 22:44:34 |
| 23.106.219.17 | attack | (From claudiauclement@yahoo.com) Hi, We're wondering if you'd be interested in our service, where we can provide you with a 'do follow' link from Amazon (DA 96) back to ctchiropractic.com? The price is just $57 per link, via Paypal. To explain backlinks and the benefit they have for your website, you can read more here: https://textuploader.com/16jn8 What is DA? - If you aren't sure, please read here: https://textuploader.com/16bnu If you're interested, just reply and we can discuss further. We can provide an existing sample, so you can see for yourself. Kind Regards, Claudia. PS. This doesn't involve selling anything so you don't need to have a product. The page is created for you, along with 500-700 words of handwritten content. |
2020-03-19 22:40:46 |
| 35.245.95.132 | attackspam | Mar 19 13:55:57 ns3042688 sshd\[19136\]: Invalid user crystal from 35.245.95.132 Mar 19 13:55:59 ns3042688 sshd\[19136\]: Failed password for invalid user crystal from 35.245.95.132 port 48006 ssh2 Mar 19 13:59:30 ns3042688 sshd\[19811\]: Failed password for root from 35.245.95.132 port 60330 ssh2 Mar 19 14:03:00 ns3042688 sshd\[20516\]: Invalid user test from 35.245.95.132 Mar 19 14:03:02 ns3042688 sshd\[20516\]: Failed password for invalid user test from 35.245.95.132 port 44416 ssh2 ... |
2020-03-19 22:08:09 |
| 45.178.1.35 | attackspam | Unauthorized connection attempt from IP address 45.178.1.35 on Port 445(SMB) |
2020-03-19 22:40:18 |
| 23.106.219.55 | attackspam | (From claudiauclement@yahoo.com) Hi, We're wondering if you'd be interested in our service, where we can provide you with a 'do follow' link from Amazon (DA 96) back to ctchiropractic.com? The price is just $57 per link, via Paypal. To explain backlinks and the benefit they have for your website, you can read more here: https://textuploader.com/16jn8 What is DA? - If you aren't sure, please read here: https://textuploader.com/16bnu If you're interested, just reply and we can discuss further. We can provide an existing sample, so you can see for yourself. Kind Regards, Claudia. PS. This doesn't involve selling anything so you don't need to have a product. The page is created for you, along with 500-700 words of handwritten content. |
2020-03-19 22:38:11 |
| 27.73.23.214 | attackspam | Unauthorized connection attempt from IP address 27.73.23.214 on Port 445(SMB) |
2020-03-19 22:13:23 |
| 78.40.184.222 | attack | Unauthorized connection attempt from IP address 78.40.184.222 on Port 445(SMB) |
2020-03-19 22:19:08 |
| 111.93.56.203 | attackspam | Unauthorized connection attempt from IP address 111.93.56.203 on Port 445(SMB) |
2020-03-19 22:04:43 |
| 218.92.0.179 | attackspam | Mar 19 14:43:20 santamaria sshd\[11304\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.179 user=root Mar 19 14:43:22 santamaria sshd\[11304\]: Failed password for root from 218.92.0.179 port 35468 ssh2 Mar 19 14:43:33 santamaria sshd\[11304\]: Failed password for root from 218.92.0.179 port 35468 ssh2 ... |
2020-03-19 22:21:43 |
| 112.85.42.176 | attack | 2020-03-19T14:54:04.704526dmca.cloudsearch.cf sshd[9342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root 2020-03-19T14:54:06.853622dmca.cloudsearch.cf sshd[9342]: Failed password for root from 112.85.42.176 port 12334 ssh2 2020-03-19T14:54:10.475392dmca.cloudsearch.cf sshd[9342]: Failed password for root from 112.85.42.176 port 12334 ssh2 2020-03-19T14:54:04.704526dmca.cloudsearch.cf sshd[9342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root 2020-03-19T14:54:06.853622dmca.cloudsearch.cf sshd[9342]: Failed password for root from 112.85.42.176 port 12334 ssh2 2020-03-19T14:54:10.475392dmca.cloudsearch.cf sshd[9342]: Failed password for root from 112.85.42.176 port 12334 ssh2 2020-03-19T14:54:04.704526dmca.cloudsearch.cf sshd[9342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root 2020-03-19T14:5 ... |
2020-03-19 22:55:32 |
| 222.186.180.17 | attack | Mar 19 15:30:13 MainVPS sshd[1986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Mar 19 15:30:15 MainVPS sshd[1986]: Failed password for root from 222.186.180.17 port 53386 ssh2 Mar 19 15:30:31 MainVPS sshd[1986]: error: maximum authentication attempts exceeded for root from 222.186.180.17 port 53386 ssh2 [preauth] Mar 19 15:30:13 MainVPS sshd[1986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Mar 19 15:30:15 MainVPS sshd[1986]: Failed password for root from 222.186.180.17 port 53386 ssh2 Mar 19 15:30:31 MainVPS sshd[1986]: error: maximum authentication attempts exceeded for root from 222.186.180.17 port 53386 ssh2 [preauth] Mar 19 15:30:35 MainVPS sshd[2956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Mar 19 15:30:37 MainVPS sshd[2956]: Failed password for root from 222.186.180.17 port 11702 ssh2 ... |
2020-03-19 22:33:45 |
| 106.12.153.107 | attack | Mar 19 15:29:23 legacy sshd[21463]: Failed password for root from 106.12.153.107 port 44334 ssh2 Mar 19 15:33:50 legacy sshd[21576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.153.107 Mar 19 15:33:53 legacy sshd[21576]: Failed password for invalid user ts3server1 from 106.12.153.107 port 47724 ssh2 ... |
2020-03-19 22:39:08 |
| 35.240.151.107 | attackbotsspam | (sshd) Failed SSH login from 35.240.151.107 (107.151.240.35.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 19 14:51:49 srv sshd[6535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.240.151.107 user=root Mar 19 14:51:51 srv sshd[6535]: Failed password for root from 35.240.151.107 port 44442 ssh2 Mar 19 14:58:55 srv sshd[6714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.240.151.107 user=root Mar 19 14:58:57 srv sshd[6714]: Failed password for root from 35.240.151.107 port 57064 ssh2 Mar 19 15:02:26 srv sshd[6784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.240.151.107 user=root |
2020-03-19 22:53:01 |
| 120.211.153.36 | attackbotsspam | Unauthorised access (Mar 19) SRC=120.211.153.36 LEN=40 TOS=0x04 TTL=51 ID=19640 TCP DPT=8080 WINDOW=33982 SYN |
2020-03-19 22:35:31 |