城市(city): unknown
省份(region): unknown
国家(country): Australia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.159.21.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1732
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;140.159.21.221. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025013000 1800 900 604800 86400
;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 19:17:03 CST 2025
;; MSG SIZE rcvd: 107Host 221.21.159.140.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 221.21.159.140.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 51.68.190.214 | attack | Mar 31 09:06:02 ns382633 sshd\[26184\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.190.214 user=root Mar 31 09:06:04 ns382633 sshd\[26184\]: Failed password for root from 51.68.190.214 port 40688 ssh2 Mar 31 09:14:15 ns382633 sshd\[27487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.190.214 user=root Mar 31 09:14:17 ns382633 sshd\[27487\]: Failed password for root from 51.68.190.214 port 42843 ssh2 Mar 31 09:17:55 ns382633 sshd\[28197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.190.214 user=root |
2020-03-31 19:17:38 |
| 49.235.93.12 | attack | Mar 31 11:54:34 host sshd[39215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.93.12 user=root Mar 31 11:54:36 host sshd[39215]: Failed password for root from 49.235.93.12 port 49592 ssh2 ... |
2020-03-31 19:09:01 |
| 164.155.93.4 | attackbotsspam | 2020-03-31T04:44:31.386250homeassistant sshd[9624]: Invalid user admin from 164.155.93.4 port 60600 2020-03-31T04:44:31.396538homeassistant sshd[9624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.155.93.4 ... |
2020-03-31 19:13:45 |
| 213.6.8.38 | attackspam | Mar 31 12:13:32 mail sshd[29166]: Invalid user mxj from 213.6.8.38 Mar 31 12:13:32 mail sshd[29166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.6.8.38 Mar 31 12:13:32 mail sshd[29166]: Invalid user mxj from 213.6.8.38 Mar 31 12:13:34 mail sshd[29166]: Failed password for invalid user mxj from 213.6.8.38 port 43262 ssh2 ... |
2020-03-31 19:22:58 |
| 61.161.29.109 | attack | " " |
2020-03-31 19:28:49 |
| 114.35.9.104 | attackbotsspam | Mar 31 05:49:24 debian-2gb-nbg1-2 kernel: \[7885619.081873\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=114.35.9.104 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=52 ID=0 DF PROTO=TCP SPT=80 DPT=1809 WINDOW=29040 RES=0x00 ACK SYN URGP=0 |
2020-03-31 19:28:24 |
| 120.237.123.242 | attackbots | Mar 20 09:52:37 ms-srv sshd[9420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.237.123.242 Mar 20 09:52:38 ms-srv sshd[9420]: Failed password for invalid user br from 120.237.123.242 port 18094 ssh2 |
2020-03-31 19:28:00 |
| 202.179.31.94 | attackspam | Unauthorized connection attempt from IP address 202.179.31.94 on Port 445(SMB) |
2020-03-31 19:43:36 |
| 181.208.97.105 | attackspambots | IP address logged by my Netflix account after the individual hacked into and locked me out of my account. Individual also changed my account settings to the most expensive plan, which allows multiple people (profiles) to watch, and several profiles were added. The name on my account was changed to "Juan". I contacted Netflix to have my account restored, so I was able to see the various IP addresses used. I will report all of them as well. |
2020-03-31 19:42:00 |
| 2001:41d0:8:1570::1 | attackspam | C2,WP GET /wp-login.php GET /wp-login.php |
2020-03-31 19:38:16 |
| 182.253.251.68 | attackspam | Mar 31 12:11:32 [HOSTNAME] sshd[11126]: Invalid user user from 182.253.251.68 port 2856 Mar 31 12:11:32 [HOSTNAME] sshd[11126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.251.68 Mar 31 12:11:33 [HOSTNAME] sshd[11126]: Failed password for invalid user user from 182.253.251.68 port 2856 ssh2 ... |
2020-03-31 19:47:15 |
| 165.227.104.253 | attack | Mar 31 06:38:28 vps647732 sshd[12344]: Failed password for root from 165.227.104.253 port 50445 ssh2 ... |
2020-03-31 19:06:26 |
| 94.191.122.141 | attackspam | 2020-03-31T03:45:53.986518shield sshd\[28409\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.122.141 user=root 2020-03-31T03:45:56.254861shield sshd\[28409\]: Failed password for root from 94.191.122.141 port 60552 ssh2 2020-03-31T03:49:47.191397shield sshd\[28995\]: Invalid user dongbowen from 94.191.122.141 port 47020 2020-03-31T03:49:47.199202shield sshd\[28995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.122.141 2020-03-31T03:49:48.594866shield sshd\[28995\]: Failed password for invalid user dongbowen from 94.191.122.141 port 47020 ssh2 |
2020-03-31 19:13:23 |
| 23.212.129.121 | attackspam | port |
2020-03-31 19:35:12 |
| 106.13.181.89 | attack | SSH authentication failure x 6 reported by Fail2Ban ... |
2020-03-31 19:02:28 |