城市(city): unknown
省份(region): unknown
国家(country): None
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.91.159.163
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25449
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.91.159.163. IN A
;; AUTHORITY SECTION:
. 115 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400
;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 04:21:46 CST 2022
;; MSG SIZE rcvd: 107Host 163.159.91.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 163.159.91.142.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 192.3.255.139 | attackspambots | May 1 01:12:13 Ubuntu-1404-trusty-64-minimal sshd\[16873\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.255.139 user=root May 1 01:12:16 Ubuntu-1404-trusty-64-minimal sshd\[16873\]: Failed password for root from 192.3.255.139 port 43516 ssh2 May 1 01:20:11 Ubuntu-1404-trusty-64-minimal sshd\[20582\]: Invalid user parking from 192.3.255.139 May 1 01:20:11 Ubuntu-1404-trusty-64-minimal sshd\[20582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.255.139 May 1 01:20:13 Ubuntu-1404-trusty-64-minimal sshd\[20582\]: Failed password for invalid user parking from 192.3.255.139 port 37712 ssh2 |
2020-05-01 08:04:49 |
| 59.53.227.108 | attackspam | Fail2Ban Ban Triggered |
2020-05-01 08:08:15 |
| 116.202.8.207 | attackbotsspam | 8888/tcp 38664/tcp 56253/tcp... [2020-03-02/04-30]21pkt,21pt.(tcp) |
2020-05-01 08:06:20 |
| 167.172.153.137 | attackbotsspam | 2020-05-01T00:46:54.895754struts4.enskede.local sshd\[7237\]: Invalid user nagios from 167.172.153.137 port 38936 2020-05-01T00:46:54.902478struts4.enskede.local sshd\[7237\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.153.137 2020-05-01T00:46:58.244050struts4.enskede.local sshd\[7237\]: Failed password for invalid user nagios from 167.172.153.137 port 38936 ssh2 2020-05-01T00:53:58.328832struts4.enskede.local sshd\[7251\]: Invalid user Lobby from 167.172.153.137 port 51162 2020-05-01T00:53:58.337646struts4.enskede.local sshd\[7251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.153.137 ... |
2020-05-01 07:46:23 |
| 71.6.233.82 | attack | Honeypot attack, port: 445, PTR: scanners.labs.rapid7.com. |
2020-05-01 07:51:48 |
| 27.48.138.8 | attackspam | 445/tcp 1433/tcp [2020-03-28/04-30]2pkt |
2020-05-01 07:51:59 |
| 222.186.61.115 | attack | 1900/udp 389/udp... [2020-03-30/04-30]62pkt,1pt.(tcp),2pt.(udp) |
2020-05-01 07:48:21 |
| 14.98.170.202 | attack | 445/tcp 445/tcp 445/tcp [2020-04-28/30]3pkt |
2020-05-01 08:09:36 |
| 13.66.16.96 | attack | Apr 29 17:29:03 ntop sshd[14256]: Did not receive identification string from 13.66.16.96 port 38688 Apr 29 17:29:54 ntop sshd[14538]: User r.r from 13.66.16.96 not allowed because not listed in AllowUsers Apr 29 17:29:54 ntop sshd[14538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.16.96 user=r.r Apr 29 17:29:56 ntop sshd[14538]: Failed password for invalid user r.r from 13.66.16.96 port 48008 ssh2 Apr 29 17:29:57 ntop sshd[14538]: Received disconnect from 13.66.16.96 port 48008:11: Normal Shutdown, Thank you for playing [preauth] Apr 29 17:29:57 ntop sshd[14538]: Disconnected from invalid user r.r 13.66.16.96 port 48008 [preauth] Apr 29 17:31:26 ntop sshd[15300]: User r.r from 13.66.16.96 not allowed because not listed in AllowUsers Apr 29 17:31:26 ntop sshd[15300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.16.96 user=r.r Apr 29 17:31:28 ntop sshd[15300]: Failed pass........ ------------------------------- |
2020-05-01 07:44:27 |
| 195.181.67.250 | attackbots | Telnetd brute force attack detected by fail2ban |
2020-05-01 08:12:36 |
| 95.32.51.67 | attack | Honeypot attack, port: 5555, PTR: 67.51.32.95.dsl-dynamic.vsi.ru. |
2020-05-01 07:54:54 |
| 71.6.232.2 | attack | 389/tcp... [2020-03-05/04-30]31pkt,1pt.(tcp),1tp.(icmp) |
2020-05-01 07:57:13 |
| 140.143.186.166 | attack | 6379/tcp 6379/tcp 6379/tcp... [2020-04-23/30]4pkt,1pt.(tcp) |
2020-05-01 08:07:07 |
| 111.231.94.138 | attackspambots | [ssh] SSH attack |
2020-05-01 08:19:51 |
| 112.85.42.89 | attackspam | May 1 00:38:19 PorscheCustomer sshd[31400]: Failed password for root from 112.85.42.89 port 30447 ssh2 May 1 00:42:11 PorscheCustomer sshd[31486]: Failed password for root from 112.85.42.89 port 50578 ssh2 ... |
2020-05-01 07:41:12 |