城市(city): Shawnee
省份(region): Oklahoma
国家(country): United States
运营商(isp): AT&T
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.196.140.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23815
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;107.196.140.72. IN A
;; AUTHORITY SECTION:
. 524 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020091402 1800 900 604800 86400
;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 15 09:27:50 CST 2020
;; MSG SIZE rcvd: 118
Host 72.140.196.107.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 72.140.196.107.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 203.75.29.110 | attackbots | Jun 6 03:58:35 gw1 sshd[7644]: Failed password for root from 203.75.29.110 port 36666 ssh2 ... |
2020-06-06 07:31:27 |
| 164.68.105.228 | attack | Jun 3 12:06:38 nxxxxxxx0 sshd[8981]: Did not receive identification string from 164.68.105.228 Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: Address 164.68.105.228 maps to melion.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: Invalid user soundcode from 164.68.105.228 Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.228 Jun 3 12:07:40 nxxxxxxx0 sshd[9068]: Failed password for invalid user soundcode from 164.68.105.228 port 34484 ssh2 Jun 3 12:07:40 nxxxxxxx0 sshd[9068]: Received disconnect from 164.68.105.228: 11: Normal Shutdown, Thank you for playing [preauth] Jun 3 12:07:43 nxxxxxxx0 sshd[9072]: Address 164.68.105.228 maps to melion.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 3 12:07:43 nxxxxxxx0 sshd[9072]: Invalid user aerospike from 164.68.105.228 Jun 3 12:07:43 nxxxxxxx0 sshd[........ ------------------------------- |
2020-06-06 07:13:55 |
| 121.241.244.92 | attack | Jun 6 01:14:43 srv-ubuntu-dev3 sshd[105167]: Invalid user P@ssword741\r from 121.241.244.92 Jun 6 01:14:43 srv-ubuntu-dev3 sshd[105167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.241.244.92 Jun 6 01:14:43 srv-ubuntu-dev3 sshd[105167]: Invalid user P@ssword741\r from 121.241.244.92 Jun 6 01:14:45 srv-ubuntu-dev3 sshd[105167]: Failed password for invalid user P@ssword741\r from 121.241.244.92 port 45433 ssh2 Jun 6 01:19:13 srv-ubuntu-dev3 sshd[105898]: Invalid user hik@WSX#edc\r from 121.241.244.92 Jun 6 01:19:13 srv-ubuntu-dev3 sshd[105898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.241.244.92 Jun 6 01:19:13 srv-ubuntu-dev3 sshd[105898]: Invalid user hik@WSX#edc\r from 121.241.244.92 Jun 6 01:19:15 srv-ubuntu-dev3 sshd[105898]: Failed password for invalid user hik@WSX#edc\r from 121.241.244.92 port 38012 ssh2 Jun 6 01:23:40 srv-ubuntu-dev3 sshd[106603]: Invalid user conecta\r fro ... |
2020-06-06 07:30:56 |
| 165.227.45.249 | attackspam | Jun 6 00:52:24 prox sshd[11605]: Failed password for root from 165.227.45.249 port 52696 ssh2 |
2020-06-06 07:27:28 |
| 91.233.42.38 | attackbots | Jun 6 00:03:02 abendstille sshd\[3745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.233.42.38 user=root Jun 6 00:03:05 abendstille sshd\[3745\]: Failed password for root from 91.233.42.38 port 41744 ssh2 Jun 6 00:06:35 abendstille sshd\[7036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.233.42.38 user=root Jun 6 00:06:38 abendstille sshd\[7036\]: Failed password for root from 91.233.42.38 port 42783 ssh2 Jun 6 00:10:08 abendstille sshd\[10815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.233.42.38 user=root ... |
2020-06-06 07:34:40 |
| 69.245.71.26 | attackspambots | SSH Brute Force |
2020-06-06 07:47:42 |
| 128.199.138.31 | attack | Jun 5 22:56:33 vlre-nyc-1 sshd\[28771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.138.31 user=root Jun 5 22:56:35 vlre-nyc-1 sshd\[28771\]: Failed password for root from 128.199.138.31 port 49573 ssh2 Jun 5 23:01:17 vlre-nyc-1 sshd\[28873\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.138.31 user=root Jun 5 23:01:19 vlre-nyc-1 sshd\[28873\]: Failed password for root from 128.199.138.31 port 50806 ssh2 Jun 5 23:05:51 vlre-nyc-1 sshd\[28977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.138.31 user=root ... |
2020-06-06 07:41:39 |
| 5.196.72.11 | attack | $f2bV_matches |
2020-06-06 07:50:57 |
| 123.31.32.150 | attackspam | SSH Brute Force |
2020-06-06 07:42:54 |
| 37.156.147.69 | attackbotsspam | Honeypot attack, port: 445, PTR: PTR record not found |
2020-06-06 07:18:15 |
| 121.46.248.220 | attackspambots | Honeypot attack, port: 445, PTR: PTR record not found |
2020-06-06 07:21:26 |
| 125.215.207.44 | attackbots | SSH Brute Force |
2020-06-06 07:42:04 |
| 91.121.86.22 | attackspambots | Jun 6 00:55:36 vpn01 sshd[725]: Failed password for root from 91.121.86.22 port 45338 ssh2 ... |
2020-06-06 07:46:47 |
| 106.52.115.36 | attackbotsspam | SSH bruteforce |
2020-06-06 07:20:49 |
| 195.222.48.151 | attackspambots | WordPress wp-login brute force :: 195.222.48.151 0.124 - [05/Jun/2020:21:16:34 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1837 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1" |
2020-06-06 07:16:07 |