城市(city): unknown
省份(region): unknown
国家(country): Indonesia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.13.216.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54348
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;114.13.216.200. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400
;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 04:24:17 CST 2025
;; MSG SIZE rcvd: 107Host 200.216.13.114.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 200.216.13.114.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 101.99.14.7 | attackbots | Unauthorized connection attempt from IP address 101.99.14.7 on Port 445(SMB) |
2019-10-16 11:37:11 |
| 220.181.108.143 | attackspambots | Bad bot/spoofed identity |
2019-10-16 11:46:53 |
| 119.28.24.83 | attackbotsspam | Oct 16 06:07:25 lcl-usvr-02 sshd[3118]: Invalid user kua from 119.28.24.83 port 53654 Oct 16 06:07:25 lcl-usvr-02 sshd[3118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.24.83 Oct 16 06:07:25 lcl-usvr-02 sshd[3118]: Invalid user kua from 119.28.24.83 port 53654 Oct 16 06:07:28 lcl-usvr-02 sshd[3118]: Failed password for invalid user kua from 119.28.24.83 port 53654 ssh2 Oct 16 06:15:19 lcl-usvr-02 sshd[5330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.24.83 user=root Oct 16 06:15:20 lcl-usvr-02 sshd[5330]: Failed password for root from 119.28.24.83 port 56004 ssh2 ... |
2019-10-16 11:16:49 |
| 14.181.200.168 | attack | Unauthorized connection attempt from IP address 14.181.200.168 on Port 445(SMB) |
2019-10-16 11:57:41 |
| 106.13.136.3 | attackbots | ssh failed login |
2019-10-16 11:33:34 |
| 68.183.193.46 | attackspambots | Oct 16 00:22:15 SilenceServices sshd[28673]: Failed password for root from 68.183.193.46 port 54658 ssh2 Oct 16 00:25:50 SilenceServices sshd[29654]: Failed password for root from 68.183.193.46 port 37540 ssh2 |
2019-10-16 11:27:33 |
| 58.245.67.203 | attackspambots | Unauthorised access (Oct 15) SRC=58.245.67.203 LEN=40 TTL=49 ID=43984 TCP DPT=8080 WINDOW=51277 SYN |
2019-10-16 11:21:45 |
| 111.231.194.149 | attackbotsspam | Oct 16 05:46:06 www sshd\[8561\]: Invalid user P@ss@w0rd! from 111.231.194.149Oct 16 05:46:08 www sshd\[8561\]: Failed password for invalid user P@ss@w0rd! from 111.231.194.149 port 44776 ssh2Oct 16 05:51:14 www sshd\[8579\]: Invalid user a from 111.231.194.149 ... |
2019-10-16 11:25:51 |
| 14.232.160.213 | attackspam | Oct 16 05:32:13 dedicated sshd[10488]: Invalid user ethos123 from 14.232.160.213 port 37092 |
2019-10-16 11:39:28 |
| 27.159.65.114 | attackbots | /var/log/messages:Oct 16 02:46:01 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1571193961.221:10251): pid=4687 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=aexxxxxxx28-ctr ksize=128 mac=hmac-sha2-256 pfs=diffie-hellman-group-exchange-sha256 spid=4688 suid=74 rport=58830 laddr=104.167.106.93 lport=22 exe="/usr/sbin/sshd" hostname=? addr=27.159.65.114 terminal=? res=success' /var/log/messages:Oct 16 02:46:01 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1571193961.225:10252): pid=4687 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=aexxxxxxx28-ctr ksize=128 mac=hmac-sha2-256 pfs=diffie-hellman-group-exchange-sha256 spid=4688 suid=74 rport=58830 laddr=104.167.106.93 lport=22 exe="/usr/sbin/sshd" hostname=? addr=27.159.65.114 terminal=? res=success' /var/log/messages:Oct 16 02:46:04 sanyalnet-........ ------------------------------- |
2019-10-16 11:52:32 |
| 188.166.99.89 | attackspambots | WordPress login Brute force / Web App Attack on client site. |
2019-10-16 11:56:41 |
| 76.27.163.60 | attackspambots | SSH scan :: |
2019-10-16 11:28:45 |
| 134.209.152.176 | attackspam | 2019-10-15T21:16:20.986069homeassistant sshd[11300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 user=root 2019-10-15T21:16:23.279577homeassistant sshd[11300]: Failed password for root from 134.209.152.176 port 35926 ssh2 ... |
2019-10-16 11:23:16 |
| 112.85.42.194 | attack | 2019-10-16T05:32:10.133935scmdmz1 sshd\[2572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.194 user=root 2019-10-16T05:32:11.480437scmdmz1 sshd\[2572\]: Failed password for root from 112.85.42.194 port 50663 ssh2 2019-10-16T05:32:13.580300scmdmz1 sshd\[2572\]: Failed password for root from 112.85.42.194 port 50663 ssh2 ... |
2019-10-16 11:38:08 |
| 104.236.142.89 | attackbotsspam | Oct 16 01:19:20 vps647732 sshd[20813]: Failed password for root from 104.236.142.89 port 41442 ssh2 ... |
2019-10-16 11:28:33 |