城市(city): unknown
省份(region): unknown
国家(country): Taiwan (Province of China)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.104.242.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24090
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;120.104.242.63. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022001 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 06:14:54 CST 2025
;; MSG SIZE rcvd: 107b'Host 63.242.104.120.in-addr.arpa not found: 2(SERVFAIL)
';; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 63.242.104.120.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 91.134.201.164 | attackbotsspam | 91.134.201.164 - - [12/Oct/2020:12:39:45 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.134.201.164 - - [12/Oct/2020:12:39:46 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.134.201.164 - - [12/Oct/2020:12:39:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-10-12 19:26:21 |
| 222.209.85.197 | attack | SSH Remote Login Attempt Banned |
2020-10-12 19:38:17 |
| 139.199.45.83 | attack | $f2bV_matches |
2020-10-12 19:44:20 |
| 75.24.48.249 | attackbots | Spam from w.babineau@yahoo.com -sol |
2020-10-12 19:25:40 |
| 119.184.62.179 | attack | Icarus honeypot on github |
2020-10-12 19:28:47 |
| 185.191.126.243 | attack | 20 attempts against mh-misbehave-ban on sonic |
2020-10-12 19:22:38 |
| 45.254.25.62 | attackspam | 45.254.25.62 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 12 03:04:06 server4 sshd[29095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.80.102.155 user=root Oct 12 03:04:08 server4 sshd[29095]: Failed password for root from 216.80.102.155 port 38980 ssh2 Oct 12 03:02:40 server4 sshd[28422]: Failed password for root from 51.158.190.194 port 46890 ssh2 Oct 12 03:01:09 server4 sshd[27406]: Failed password for root from 51.178.86.97 port 60062 ssh2 Oct 12 03:04:49 server4 sshd[29519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.254.25.62 user=root Oct 12 03:02:39 server4 sshd[28422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.190.194 user=root IP Addresses Blocked: 216.80.102.155 (US/United States/-) 51.158.190.194 (FR/France/-) 51.178.86.97 (FR/France/-) |
2020-10-12 19:52:34 |
| 111.229.13.242 | attackspam | Oct 12 08:02:41 ws24vmsma01 sshd[119601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.13.242 Oct 12 08:02:43 ws24vmsma01 sshd[119601]: Failed password for invalid user master from 111.229.13.242 port 48666 ssh2 ... |
2020-10-12 19:56:00 |
| 116.93.124.130 | attack | SSH/22 MH Probe, BF, Hack - |
2020-10-12 19:20:58 |
| 218.92.0.250 | attackbots | 2020-10-12T14:54:25.636570lavrinenko.info sshd[18769]: Failed password for root from 218.92.0.250 port 59653 ssh2 2020-10-12T14:54:29.311161lavrinenko.info sshd[18769]: Failed password for root from 218.92.0.250 port 59653 ssh2 2020-10-12T14:54:34.397794lavrinenko.info sshd[18769]: Failed password for root from 218.92.0.250 port 59653 ssh2 2020-10-12T14:54:39.344580lavrinenko.info sshd[18769]: Failed password for root from 218.92.0.250 port 59653 ssh2 2020-10-12T14:54:39.425349lavrinenko.info sshd[18769]: error: maximum authentication attempts exceeded for root from 218.92.0.250 port 59653 ssh2 [preauth] ... |
2020-10-12 20:00:01 |
| 161.35.167.145 | attackbotsspam | 2020-10-12T12:57:24.505040centos sshd[22934]: Failed password for invalid user netfonts from 161.35.167.145 port 50176 ssh2 2020-10-12T13:00:25.218897centos sshd[23125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.167.145 user=root 2020-10-12T13:00:27.350041centos sshd[23125]: Failed password for root from 161.35.167.145 port 54178 ssh2 ... |
2020-10-12 19:43:54 |
| 59.36.75.227 | attackbotsspam | IP blocked |
2020-10-12 19:44:36 |
| 146.56.198.229 | attack | Oct 12 03:25:58 ws24vmsma01 sshd[162270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.56.198.229 Oct 12 03:25:59 ws24vmsma01 sshd[162270]: Failed password for invalid user vnc from 146.56.198.229 port 57960 ssh2 ... |
2020-10-12 19:51:28 |
| 180.97.80.12 | attack | 2020-10-12T06:14:52.7666331495-001 sshd[64420]: Invalid user gabriella from 180.97.80.12 port 43104 2020-10-12T06:14:54.7066281495-001 sshd[64420]: Failed password for invalid user gabriella from 180.97.80.12 port 43104 ssh2 2020-10-12T06:17:01.3873181495-001 sshd[64580]: Invalid user carol from 180.97.80.12 port 42424 2020-10-12T06:17:01.4140391495-001 sshd[64580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.97.80.12 2020-10-12T06:17:01.3873181495-001 sshd[64580]: Invalid user carol from 180.97.80.12 port 42424 2020-10-12T06:17:03.3955161495-001 sshd[64580]: Failed password for invalid user carol from 180.97.80.12 port 42424 ssh2 ... |
2020-10-12 19:19:54 |
| 81.68.118.120 | attack | Oct 12 12:15:23 abendstille sshd\[14059\]: Invalid user wkeller from 81.68.118.120 Oct 12 12:15:23 abendstille sshd\[14059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.118.120 Oct 12 12:15:25 abendstille sshd\[14059\]: Failed password for invalid user wkeller from 81.68.118.120 port 51400 ssh2 Oct 12 12:18:08 abendstille sshd\[17560\]: Invalid user mayank from 81.68.118.120 Oct 12 12:18:08 abendstille sshd\[17560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.118.120 ... |
2020-10-12 19:42:01 |