城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.111.206.89
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 880
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;138.111.206.89. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012201 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 07:48:48 CST 2025
;; MSG SIZE rcvd: 107
Host 89.206.111.138.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 89.206.111.138.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 157.245.106.153 | attackspambots | 157.245.106.153 - - [15/Aug/2020:14:24:06 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.106.153 - - [15/Aug/2020:14:24:07 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.106.153 - - [15/Aug/2020:14:24:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-08-15 21:56:18 |
| 118.24.2.13 | attackspambots | Port Scan detected! ... |
2020-08-15 21:46:44 |
| 148.70.236.74 | attackbotsspam | Aug 15 15:28:22 santamaria sshd\[23097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.236.74 user=root Aug 15 15:28:24 santamaria sshd\[23097\]: Failed password for root from 148.70.236.74 port 36636 ssh2 Aug 15 15:32:08 santamaria sshd\[23136\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.236.74 user=root ... |
2020-08-15 21:36:09 |
| 195.144.205.25 | attack | Aug 15 12:16:22 localhost sshd[67121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.144.205.25 user=root Aug 15 12:16:24 localhost sshd[67121]: Failed password for root from 195.144.205.25 port 38572 ssh2 Aug 15 12:20:25 localhost sshd[67595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.144.205.25 user=root Aug 15 12:20:27 localhost sshd[67595]: Failed password for root from 195.144.205.25 port 44634 ssh2 Aug 15 12:24:34 localhost sshd[68018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.144.205.25 user=root Aug 15 12:24:35 localhost sshd[68018]: Failed password for root from 195.144.205.25 port 50674 ssh2 ... |
2020-08-15 21:38:34 |
| 128.199.97.179 | attackspam | Aug 15 14:58:06 piServer sshd[24168]: Failed password for root from 128.199.97.179 port 38760 ssh2 Aug 15 15:02:20 piServer sshd[24450]: Failed password for root from 128.199.97.179 port 57980 ssh2 ... |
2020-08-15 21:19:51 |
| 222.186.30.76 | attackspam | 2020-08-15T13:42:41.827093shield sshd\[23589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root 2020-08-15T13:42:43.724377shield sshd\[23589\]: Failed password for root from 222.186.30.76 port 32701 ssh2 2020-08-15T13:42:46.158290shield sshd\[23589\]: Failed password for root from 222.186.30.76 port 32701 ssh2 2020-08-15T13:42:49.553606shield sshd\[23589\]: Failed password for root from 222.186.30.76 port 32701 ssh2 2020-08-15T13:42:55.981331shield sshd\[23607\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root |
2020-08-15 21:44:11 |
| 165.22.209.132 | attackspam | 165.22.209.132 - - [15/Aug/2020:14:24:01 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.209.132 - - [15/Aug/2020:14:24:03 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.209.132 - - [15/Aug/2020:14:24:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-08-15 22:01:42 |
| 14.17.114.203 | attackbotsspam | Lines containing failures of 14.17.114.203 Aug 12 10:24:56 nextcloud sshd[5890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.17.114.203 user=r.r Aug 12 10:24:58 nextcloud sshd[5890]: Failed password for r.r from 14.17.114.203 port 55089 ssh2 Aug 12 10:24:59 nextcloud sshd[5890]: Received disconnect from 14.17.114.203 port 55089:11: Bye Bye [preauth] Aug 12 10:24:59 nextcloud sshd[5890]: Disconnected from authenticating user r.r 14.17.114.203 port 55089 [preauth] Aug 12 10:36:45 nextcloud sshd[8048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.17.114.203 user=r.r Aug 12 10:36:47 nextcloud sshd[8048]: Failed password for r.r from 14.17.114.203 port 50818 ssh2 Aug 12 10:36:49 nextcloud sshd[8048]: Received disconnect from 14.17.114.203 port 50818:11: Bye Bye [preauth] Aug 12 10:36:49 nextcloud sshd[8048]: Disconnected from authenticating user r.r 14.17.114.203 port 50818 [preauth........ ------------------------------ |
2020-08-15 21:48:53 |
| 42.98.177.178 | attack | Aug 15 14:51:15 webserver sshd[13490]: error: maximum authentication attempts exceeded for invalid user admin from 42.98.177.178 port 38342 ssh2 [preauth] |
2020-08-15 21:42:11 |
| 107.189.11.160 | attackspam | 2020-08-15T08:24:40.612063xentho-1 sshd[1923556]: Invalid user postgres from 107.189.11.160 port 33852 2020-08-15T08:24:47.916621xentho-1 sshd[1923556]: Failed password for invalid user postgres from 107.189.11.160 port 33852 ssh2 2020-08-15T08:24:46.467436xentho-1 sshd[1923553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.11.160 2020-08-15T08:24:40.594264xentho-1 sshd[1923553]: Invalid user ubuntu from 107.189.11.160 port 33846 2020-08-15T08:24:47.916961xentho-1 sshd[1923553]: Failed password for invalid user ubuntu from 107.189.11.160 port 33846 ssh2 2020-08-15T08:24:46.474333xentho-1 sshd[1923558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.11.160 2020-08-15T08:24:40.590613xentho-1 sshd[1923558]: Invalid user admin from 107.189.11.160 port 33844 2020-08-15T08:24:47.917356xentho-1 sshd[1923558]: Failed password for invalid user admin from 107.189.11.160 port 33844 ssh2 2020-08-15T ... |
2020-08-15 21:25:39 |
| 222.186.180.223 | attackspam | Aug 15 15:28:46 santamaria sshd\[23101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root Aug 15 15:28:48 santamaria sshd\[23101\]: Failed password for root from 222.186.180.223 port 62084 ssh2 Aug 15 15:28:51 santamaria sshd\[23101\]: Failed password for root from 222.186.180.223 port 62084 ssh2 ... |
2020-08-15 21:31:48 |
| 198.27.69.130 | attackspambots | 198.27.69.130 - - [15/Aug/2020:14:17:15 +0100] "POST /wp-login.php HTTP/1.1" 200 6067 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.69.130 - - [15/Aug/2020:14:19:03 +0100] "POST /wp-login.php HTTP/1.1" 200 6067 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.69.130 - - [15/Aug/2020:14:21:20 +0100] "POST /wp-login.php HTTP/1.1" 200 6066 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ... |
2020-08-15 21:45:00 |
| 121.7.127.92 | attackspambots | Aug 15 09:44:29 ws12vmsma01 sshd[10886]: Failed password for root from 121.7.127.92 port 52298 ssh2 Aug 15 09:49:21 ws12vmsma01 sshd[11593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=bb121-7-127-92.singnet.com.sg user=root Aug 15 09:49:23 ws12vmsma01 sshd[11593]: Failed password for root from 121.7.127.92 port 56777 ssh2 ... |
2020-08-15 21:37:08 |
| 184.168.193.24 | attackspam | C1,DEF GET /store/wp-includes/wlwmanifest.xml |
2020-08-15 21:25:09 |
| 186.103.184.227 | attackbots | Aug 15 14:23:33 server sshd[17724]: Failed password for root from 186.103.184.227 port 34974 ssh2 Aug 15 14:23:58 server sshd[17905]: Failed password for root from 186.103.184.227 port 35504 ssh2 Aug 15 14:24:06 server sshd[18004]: Failed password for root from 186.103.184.227 port 36190 ssh2 |
2020-08-15 21:59:20 |