城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.11.12.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3078
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;158.11.12.21. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021800 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 21:23:54 CST 2025
;; MSG SIZE rcvd: 105Host 21.12.11.158.in-addr.arpa not found: 2(SERVFAIL)
server can't find 158.11.12.21.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 88.254.143.210 | attack | Unauthorised access (May 13) SRC=88.254.143.210 LEN=52 TTL=117 ID=17411 DF TCP DPT=445 WINDOW=8192 SYN |
2020-05-13 20:59:53 |
| 194.26.29.14 | attack | May 13 14:39:14 debian-2gb-nbg1-2 kernel: \[11632412.326362\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=27246 PROTO=TCP SPT=51507 DPT=228 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-05-13 21:01:32 |
| 113.163.15.197 | attackspambots | 2020-05-13T05:48:49.8891241240 sshd\[4835\]: Invalid user guest from 113.163.15.197 port 56693 2020-05-13T05:48:50.1981531240 sshd\[4835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.163.15.197 2020-05-13T05:48:52.3522871240 sshd\[4835\]: Failed password for invalid user guest from 113.163.15.197 port 56693 ssh2 ... |
2020-05-13 20:39:48 |
| 129.204.23.5 | attack | May 13 14:39:17 * sshd[21454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.23.5 May 13 14:39:18 * sshd[21454]: Failed password for invalid user devine from 129.204.23.5 port 56308 ssh2 |
2020-05-13 20:57:34 |
| 34.72.16.199 | attack | Lines containing failures of 34.72.16.199 May 13 05:27:18 keyhelp sshd[12697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.72.16.199 user=r.r May 13 05:27:19 keyhelp sshd[12697]: Failed password for r.r from 34.72.16.199 port 52834 ssh2 May 13 05:27:19 keyhelp sshd[12697]: Received disconnect from 34.72.16.199 port 52834:11: Bye Bye [preauth] May 13 05:27:19 keyhelp sshd[12697]: Disconnected from authenticating user r.r 34.72.16.199 port 52834 [preauth] May 13 05:37:37 keyhelp sshd[17065]: Invalid user monhostnameor from 34.72.16.199 port 60430 May 13 05:37:37 keyhelp sshd[17065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.72.16.199 May 13 05:37:39 keyhelp sshd[17065]: Failed password for invalid user monhostnameor from 34.72.16.199 port 60430 ssh2 May 13 05:37:39 keyhelp sshd[17065]: Received disconnect from 34.72.16.199 port 60430:11: Bye Bye [preauth] May 13 05:37:39 keyhel........ ------------------------------ |
2020-05-13 21:18:37 |
| 35.202.157.96 | attackbots | WordPress wp-login brute force :: 35.202.157.96 0.332 - [13/May/2020:12:38:58 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1837 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1" |
2020-05-13 21:15:22 |
| 36.71.238.102 | attackspam | May 13 05:49:02 debian64 sshd[32286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.71.238.102 May 13 05:49:04 debian64 sshd[32286]: Failed password for invalid user user from 36.71.238.102 port 18244 ssh2 ... |
2020-05-13 20:28:00 |
| 51.75.30.238 | attackspam | May 13 14:36:15 sip sshd[242974]: Invalid user tomcat from 51.75.30.238 port 55242 May 13 14:36:17 sip sshd[242974]: Failed password for invalid user tomcat from 51.75.30.238 port 55242 ssh2 May 13 14:39:55 sip sshd[242997]: Invalid user hip from 51.75.30.238 port 33992 ... |
2020-05-13 21:07:59 |
| 14.18.58.216 | attackbots | May 13 14:39:17 mout sshd[22827]: Invalid user valvoja from 14.18.58.216 port 48562 |
2020-05-13 21:00:31 |
| 88.240.119.234 | attackbotsspam | Unauthorized IMAP connection attempt |
2020-05-13 21:04:29 |
| 176.119.28.196 | attack | Trolling for resource vulnerabilities |
2020-05-13 21:18:00 |
| 31.154.74.110 | attackbotsspam | 1589373547 - 05/13/2020 14:39:07 Host: 31.154.74.110/31.154.74.110 Port: 445 TCP Blocked |
2020-05-13 21:08:54 |
| 104.200.134.250 | attack | 2020-05-13T14:37:57.154943vps773228.ovh.net sshd[16084]: Failed password for invalid user 51.159.4.175 from 104.200.134.250 port 54078 ssh2 2020-05-13T14:39:24.628462vps773228.ovh.net sshd[16121]: Invalid user 51.140.162.226 from 104.200.134.250 port 53936 2020-05-13T14:39:24.648035vps773228.ovh.net sshd[16121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.134.250 2020-05-13T14:39:24.628462vps773228.ovh.net sshd[16121]: Invalid user 51.140.162.226 from 104.200.134.250 port 53936 2020-05-13T14:39:27.053957vps773228.ovh.net sshd[16121]: Failed password for invalid user 51.140.162.226 from 104.200.134.250 port 53936 ssh2 ... |
2020-05-13 20:48:09 |
| 200.52.6.66 | attack | Automatic report - Port Scan Attack |
2020-05-13 20:46:14 |
| 104.236.112.52 | attackspam | May 13 14:38:50 ArkNodeAT sshd\[32465\]: Invalid user mcserver from 104.236.112.52 May 13 14:38:50 ArkNodeAT sshd\[32465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.112.52 May 13 14:38:52 ArkNodeAT sshd\[32465\]: Failed password for invalid user mcserver from 104.236.112.52 port 43479 ssh2 |
2020-05-13 21:14:51 |