城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.94.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10673
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.21.94.214. IN A
;; AUTHORITY SECTION:
. 599 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400
;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:18:39 CST 2022
;; MSG SIZE rcvd: 106Host 214.94.21.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 214.94.21.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 74.120.14.25 | attackbots | [N3.H3.VM3] Port Scanner Detected Blocked by UFW |
2020-10-01 07:45:45 |
| 46.101.156.213 | attackbotsspam | 46.101.156.213 - - [30/Sep/2020:23:28:05 +0200] "POST /wp-login.php HTTP/1.1" 200 4481 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.156.213 - - [30/Sep/2020:23:28:05 +0200] "POST /wp-login.php HTTP/1.1" 200 4481 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.156.213 - - [30/Sep/2020:23:28:06 +0200] "POST /wp-login.php HTTP/1.1" 200 4481 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.156.213 - - [30/Sep/2020:23:28:06 +0200] "POST /wp-login.php HTTP/1.1" 200 4481 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-10-01 08:11:55 |
| 45.129.33.43 | attackbots | scans 13 times in preceeding hours on the ports (in chronological order) 28571 28954 28599 28505 28727 28879 28604 28928 28739 28835 28974 28758 28723 resulting in total of 113 scans from 45.129.33.0/24 block. |
2020-10-01 07:52:47 |
| 150.136.152.190 | attackspambots | Invalid user ubuntu from 150.136.152.190 port 56040 |
2020-10-01 07:34:15 |
| 104.206.128.74 | attackspambots |
|
2020-10-01 07:39:03 |
| 80.82.65.90 | attackspambots | scans once in preceeding hours on the ports (in chronological order) 1900 resulting in total of 275 scans from 80.82.64.0/20 block. |
2020-10-01 07:44:48 |
| 91.121.176.34 | attack | SSH invalid-user multiple login attempts |
2020-10-01 07:43:07 |
| 104.131.65.184 | attackspambots | Invalid user roel from 104.131.65.184 port 49732 |
2020-10-01 08:02:24 |
| 60.191.29.210 | attackspam | Oct 1 01:49:33 vpn01 sshd[24710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.191.29.210 Oct 1 01:49:35 vpn01 sshd[24710]: Failed password for invalid user db2fenc1 from 60.191.29.210 port 9356 ssh2 ... |
2020-10-01 08:05:59 |
| 74.120.14.22 | attackbots | SNORT TCP Port: 25 Classtype misc-attack - ET CINS Active Threat Intelligence Poor Reputation IP group 64 - - Destination xx.xx.4.1 Port: 25 - - Source 74.120.14.22 Port: 50035 (2) |
2020-10-01 07:46:04 |
| 106.13.189.172 | attack | Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-10-01 07:38:11 |
| 164.90.182.227 | attack | SSH Invalid Login |
2020-10-01 07:57:31 |
| 45.129.33.41 | attack | Port-scan: detected 211 distinct ports within a 24-hour window. |
2020-10-01 07:53:11 |
| 139.59.11.66 | attackspambots | Scanned 67 times in the last 24 hours on port 22 |
2020-10-01 08:07:44 |
| 103.253.145.89 | attackbots | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-30T22:29:13Z and 2020-09-30T22:38:23Z |
2020-10-01 07:39:45 |