城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.104.254.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20200
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.104.254.245. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 17:43:48 CST 2025
;; MSG SIZE rcvd: 107Host 245.254.104.14.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 245.254.104.14.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 51.75.126.28 | attackbots | Sep 16 22:17:22 rpi sshd[10755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.126.28 Sep 16 22:17:24 rpi sshd[10755]: Failed password for invalid user misha from 51.75.126.28 port 39684 ssh2 |
2019-09-17 04:39:31 |
| 106.13.101.220 | attack | 2019-09-16T22:54:04.640273tmaserv sshd\[14684\]: Failed password for invalid user kigwa from 106.13.101.220 port 36690 ssh2 2019-09-16T23:07:48.543839tmaserv sshd\[15788\]: Invalid user cisco from 106.13.101.220 port 33346 2019-09-16T23:07:48.549243tmaserv sshd\[15788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.220 2019-09-16T23:07:50.091066tmaserv sshd\[15788\]: Failed password for invalid user cisco from 106.13.101.220 port 33346 ssh2 2019-09-16T23:10:37.826239tmaserv sshd\[15845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.220 user=ftp 2019-09-16T23:10:39.573137tmaserv sshd\[15845\]: Failed password for ftp from 106.13.101.220 port 60900 ssh2 ... |
2019-09-17 04:26:13 |
| 45.136.108.10 | attackspam | rdp brute-force attack 2019-09-16 19:03:02 ALLOW TCP 45.136.108.10 ###.###.###.### 53177 3391 0 - 0 0 0 - - - RECEIVE 2019-09-16 19:03:05 ALLOW TCP 45.136.108.10 ###.###.###.### 52838 3391 0 - 0 0 0 - - - RECEIVE 2019-09-16 19:03:05 ALLOW TCP 45.136.108.10 ###.###.###.### 52845 3391 0 - 0 0 0 - - - RECEIVE ... |
2019-09-17 04:07:19 |
| 70.125.42.101 | attack | Sep 16 16:24:32 debian sshd\[19161\]: Invalid user ehsan from 70.125.42.101 port 43516 Sep 16 16:24:32 debian sshd\[19161\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.125.42.101 Sep 16 16:24:34 debian sshd\[19161\]: Failed password for invalid user ehsan from 70.125.42.101 port 43516 ssh2 ... |
2019-09-17 04:33:33 |
| 183.89.91.95 | attackspambots | Chat Spam |
2019-09-17 04:52:18 |
| 210.245.51.43 | attack | postfix (unknown user, SPF fail or relay access denied) |
2019-09-17 04:47:16 |
| 106.12.202.181 | attackbots | Sep 16 22:01:07 MainVPS sshd[22379]: Invalid user nader from 106.12.202.181 port 41270 Sep 16 22:01:07 MainVPS sshd[22379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.202.181 Sep 16 22:01:07 MainVPS sshd[22379]: Invalid user nader from 106.12.202.181 port 41270 Sep 16 22:01:09 MainVPS sshd[22379]: Failed password for invalid user nader from 106.12.202.181 port 41270 ssh2 Sep 16 22:06:38 MainVPS sshd[22800]: Invalid user lalit from 106.12.202.181 port 9434 ... |
2019-09-17 04:30:55 |
| 121.33.247.107 | attack | $f2bV_matches |
2019-09-17 04:15:38 |
| 185.222.211.114 | attack | Sep 16 22:21:06 mc1 kernel: \[1215814.440805\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.222.211.114 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=14616 PROTO=TCP SPT=8080 DPT=3309 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 16 22:21:57 mc1 kernel: \[1215864.661895\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.222.211.114 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=15684 PROTO=TCP SPT=8080 DPT=3099 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 16 22:28:05 mc1 kernel: \[1216233.314189\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.222.211.114 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=17097 PROTO=TCP SPT=8080 DPT=7099 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-09-17 04:42:39 |
| 185.254.121.237 | attackspambots | Russian Offensive & Filthy Unwanted Porn SPAM - same people different ISP - details below for anyone who wants to take action and block these idiots now operating from Russia ISP Arturas Zavaliauskas Usage Type Fixed Line ISP Domain Name obit.ru Country Russian Federation City Unknown |
2019-09-17 04:06:29 |
| 77.247.108.110 | attackspambots | 09/16/2019-14:58:35.815051 77.247.108.110 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-09-17 04:09:24 |
| 129.146.168.196 | attackspam | Sep 16 16:31:17 ny01 sshd[27237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.168.196 Sep 16 16:31:18 ny01 sshd[27237]: Failed password for invalid user csgo1 from 129.146.168.196 port 58553 ssh2 Sep 16 16:34:35 ny01 sshd[27808]: Failed password for gnats from 129.146.168.196 port 47989 ssh2 |
2019-09-17 04:39:49 |
| 138.118.103.128 | attackbots | Automatic report - Port Scan Attack |
2019-09-17 04:41:54 |
| 206.189.39.183 | attackspambots | web-1 [ssh] SSH Attack |
2019-09-17 04:18:42 |
| 174.138.27.16 | attack | Sep 16 10:08:14 friendsofhawaii sshd\[19991\]: Invalid user amarco from 174.138.27.16 Sep 16 10:08:14 friendsofhawaii sshd\[19991\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.16 Sep 16 10:08:16 friendsofhawaii sshd\[19991\]: Failed password for invalid user amarco from 174.138.27.16 port 57674 ssh2 Sep 16 10:12:54 friendsofhawaii sshd\[20525\]: Invalid user biable from 174.138.27.16 Sep 16 10:12:54 friendsofhawaii sshd\[20525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.16 |
2019-09-17 04:14:37 |