城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.91.114.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17420
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;138.91.114.128. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012400 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 23:09:59 CST 2025
;; MSG SIZE rcvd: 107Host 128.114.91.138.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 128.114.91.138.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 109.95.181.169 | attackbots | Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-04-14 18:59:36 |
| 182.61.178.66 | attackspambots | Lines containing failures of 182.61.178.66 Apr 13 23:19:27 penfold postfix/smtpd[10508]: connect from unknown[182.61.178.66] Apr x@x Apr 13 23:19:29 penfold postfix/smtpd[10508]: disconnect from unknown[182.61.178.66] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Apr 13 23:19:34 penfold postfix/smtpd[11203]: connect from unknown[182.61.178.66] Apr x@x Apr 13 23:19:35 penfold postfix/smtpd[11203]: disconnect from unknown[182.61.178.66] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Apr 13 23:19:43 penfold postfix/smtpd[11205]: connect from unknown[182.61.178.66] Apr x@x Apr 13 23:19:44 penfold postfix/smtpd[11205]: disconnect from unknown[182.61.178.66] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Apr 13 23:19:48 penfold postfix/smtpd[11191]: connect from unknown[182.61.178.66] Apr x@x Apr 13 23:19:49 penfold postfix/smtpd[11191]: disconnect from unknown[182.61.178.66] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Apr 13 23:19:53 penfold postfix/smtpd[9043]: c........ ------------------------------ |
2020-04-14 18:52:45 |
| 119.96.172.174 | attackspam | Apr 14 07:15:01 our-server-hostname postfix/smtpd[20944]: connect from unknown[119.96.172.174] Apr x@x Apr 14 07:15:03 our-server-hostname postfix/smtpd[20944]: disconnect from unknown[119.96.172.174] Apr 14 12:18:44 our-server-hostname postfix/smtpd[14495]: connect from unknown[119.96.172.174] Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=119.96.172.174 |
2020-04-14 18:27:30 |
| 213.160.143.146 | attackspambots | Apr 14 11:46:10 server sshd[15504]: Failed password for invalid user nagios from 213.160.143.146 port 8171 ssh2 Apr 14 11:50:30 server sshd[18531]: Failed password for root from 213.160.143.146 port 30193 ssh2 Apr 14 11:53:17 server sshd[20480]: Failed password for root from 213.160.143.146 port 56407 ssh2 |
2020-04-14 18:27:09 |
| 95.55.37.53 | attack | 95.55.37.53 |
2020-04-14 18:35:48 |
| 49.247.214.61 | attack | Bruteforce detected by fail2ban |
2020-04-14 18:58:18 |
| 101.198.180.207 | attackspam | (sshd) Failed SSH login from 101.198.180.207 (CN/China/-): 5 in the last 3600 secs |
2020-04-14 19:00:41 |
| 106.124.131.214 | attackspambots | Apr 14 05:43:34 pornomens sshd\[32403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.131.214 user=root Apr 14 05:43:36 pornomens sshd\[32403\]: Failed password for root from 106.124.131.214 port 58196 ssh2 Apr 14 05:46:26 pornomens sshd\[32436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.131.214 user=root ... |
2020-04-14 18:52:20 |
| 113.135.63.190 | attackspam | (ftpd) Failed FTP login from 113.135.63.190 (CN/China/-): 10 in the last 3600 secs |
2020-04-14 18:50:27 |
| 157.245.207.198 | attack | Apr 14 10:16:28 marvibiene sshd[28460]: Invalid user nmis from 157.245.207.198 port 57874 Apr 14 10:16:28 marvibiene sshd[28460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.207.198 Apr 14 10:16:28 marvibiene sshd[28460]: Invalid user nmis from 157.245.207.198 port 57874 Apr 14 10:16:30 marvibiene sshd[28460]: Failed password for invalid user nmis from 157.245.207.198 port 57874 ssh2 ... |
2020-04-14 18:55:23 |
| 182.61.169.8 | attackspam | 2020-04-14T04:26:43.191931linuxbox-skyline sshd[113438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.169.8 user=root 2020-04-14T04:26:45.785384linuxbox-skyline sshd[113438]: Failed password for root from 182.61.169.8 port 25533 ssh2 ... |
2020-04-14 18:29:10 |
| 119.29.16.190 | attackspam | Apr 14 08:30:11 ift sshd\[24339\]: Invalid user vlad from 119.29.16.190Apr 14 08:30:13 ift sshd\[24339\]: Failed password for invalid user vlad from 119.29.16.190 port 56986 ssh2Apr 14 08:33:13 ift sshd\[24592\]: Failed password for root from 119.29.16.190 port 49315 ssh2Apr 14 08:36:22 ift sshd\[25273\]: Invalid user koyoto from 119.29.16.190Apr 14 08:36:24 ift sshd\[25273\]: Failed password for invalid user koyoto from 119.29.16.190 port 41758 ssh2 ... |
2020-04-14 18:29:51 |
| 202.147.193.8 | attack | 1586837141 - 04/14/2020 06:05:41 Host: 202.147.193.8/202.147.193.8 Port: 445 TCP Blocked |
2020-04-14 18:56:46 |
| 14.227.71.170 | attackspambots | " " |
2020-04-14 18:20:56 |
| 52.117.227.228 | attackspambots | Repeated RDP login failures. Last user: User |
2020-04-14 18:49:59 |