城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.192.138.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4754
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;168.192.138.107. IN A
;; AUTHORITY SECTION:
. 594 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022011201 1800 900 604800 86400
;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 13 05:25:13 CST 2022
;; MSG SIZE rcvd: 108
b'Host 107.138.192.168.in-addr.arpa not found: 2(SERVFAIL)
'
server can't find 168.192.138.107.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 183.6.43.105 | attackbots | Sep 29 12:16:17 server sshd\[2956\]: Invalid user ivory from 183.6.43.105 port 55954 Sep 29 12:16:17 server sshd\[2956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.6.43.105 Sep 29 12:16:19 server sshd\[2956\]: Failed password for invalid user ivory from 183.6.43.105 port 55954 ssh2 Sep 29 12:21:46 server sshd\[25401\]: Invalid user dorjan from 183.6.43.105 port 39790 Sep 29 12:21:46 server sshd\[25401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.6.43.105 |
2019-09-29 17:27:37 |
| 128.199.95.60 | attackspambots | 2019-09-29T04:49:34.8855721495-001 sshd\[54763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.95.60 2019-09-29T04:49:37.3174441495-001 sshd\[54763\]: Failed password for invalid user thomas from 128.199.95.60 port 58888 ssh2 2019-09-29T05:01:04.8688961495-001 sshd\[55508\]: Invalid user wk from 128.199.95.60 port 53838 2019-09-29T05:01:04.8758571495-001 sshd\[55508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.95.60 2019-09-29T05:01:06.6968721495-001 sshd\[55508\]: Failed password for invalid user wk from 128.199.95.60 port 53838 ssh2 2019-09-29T05:07:02.6185361495-001 sshd\[56087\]: Invalid user cd from 128.199.95.60 port 37198 ... |
2019-09-29 17:29:12 |
| 188.40.105.6 | attackspam | Sep 29 01:34:24 www sshd[27032]: Invalid user debian from 188.40.105.6 Sep 29 01:34:26 www sshd[27032]: Failed password for invalid user debian from 188.40.105.6 port 42902 ssh2 Sep 29 01:34:26 www sshd[27032]: Received disconnect from 188.40.105.6: 11: Bye Bye [preauth] Sep 29 01:54:02 www sshd[27203]: Invalid user amin from 188.40.105.6 Sep 29 01:54:04 www sshd[27203]: Failed password for invalid user amin from 188.40.105.6 port 58994 ssh2 Sep 29 01:54:04 www sshd[27203]: Received disconnect from 188.40.105.6: 11: Bye Bye [preauth] Sep 29 01:57:46 www sshd[27248]: Invalid user mcftp from 188.40.105.6 Sep 29 01:57:49 www sshd[27248]: Failed password for invalid user mcftp from 188.40.105.6 port 44780 ssh2 Sep 29 01:57:49 www sshd[27248]: Received disconnect from 188.40.105.6: 11: Bye Bye [preauth] Sep 29 02:01:23 www sshd[27297]: Invalid user admin from 188.40.105.6 Sep 29 02:01:25 www sshd[27297]: Failed password for invalid user admin from 188.40.105.6 port 58800 ssh........ ------------------------------- |
2019-09-29 17:55:40 |
| 117.121.100.228 | attackspambots | Sep 29 01:27:55 plusreed sshd[24432]: Invalid user user1 from 117.121.100.228 ... |
2019-09-29 17:46:09 |
| 114.35.76.71 | attack | Sep 29 05:44:41 mc1 kernel: \[1015111.337099\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=114.35.76.71 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=54454 PROTO=TCP SPT=35225 DPT=23 WINDOW=21880 RES=0x00 SYN URGP=0 Sep 29 05:47:47 mc1 kernel: \[1015297.420342\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=114.35.76.71 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=54454 PROTO=TCP SPT=35225 DPT=23 WINDOW=21880 RES=0x00 SYN URGP=0 Sep 29 05:49:11 mc1 kernel: \[1015380.801765\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=114.35.76.71 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=54454 PROTO=TCP SPT=35225 DPT=23 WINDOW=21880 RES=0x00 SYN URGP=0 ... |
2019-09-29 17:32:18 |
| 40.122.168.223 | attack | Sep 28 19:21:03 php1 sshd\[17933\]: Invalid user lorilyn from 40.122.168.223 Sep 28 19:21:03 php1 sshd\[17933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.122.168.223 Sep 28 19:21:05 php1 sshd\[17933\]: Failed password for invalid user lorilyn from 40.122.168.223 port 46924 ssh2 Sep 28 19:26:02 php1 sshd\[18414\]: Invalid user passwd from 40.122.168.223 Sep 28 19:26:02 php1 sshd\[18414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.122.168.223 |
2019-09-29 17:28:20 |
| 119.177.72.105 | attackbotsspam | Honeypot attack, port: 23, PTR: PTR record not found |
2019-09-29 17:41:09 |
| 91.243.175.243 | attack | Sep 29 08:41:05 server sshd\[12829\]: Invalid user Ionut from 91.243.175.243 port 33828 Sep 29 08:41:05 server sshd\[12829\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.243.175.243 Sep 29 08:41:07 server sshd\[12829\]: Failed password for invalid user Ionut from 91.243.175.243 port 33828 ssh2 Sep 29 08:46:09 server sshd\[443\]: Invalid user bots from 91.243.175.243 port 39300 Sep 29 08:46:09 server sshd\[443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.243.175.243 |
2019-09-29 17:54:41 |
| 191.102.122.84 | attackspambots | Chat Spam |
2019-09-29 17:27:19 |
| 1.164.172.93 | attackspam | Scanning random ports - tries to find possible vulnerable services |
2019-09-29 17:44:40 |
| 106.3.130.53 | attack | Sep 29 11:29:21 root sshd[4467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.130.53 Sep 29 11:29:23 root sshd[4467]: Failed password for invalid user gpadmin from 106.3.130.53 port 46624 ssh2 Sep 29 11:35:15 root sshd[4592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.130.53 ... |
2019-09-29 17:42:05 |
| 5.135.223.35 | attackbotsspam | Sep 29 09:58:54 tuxlinux sshd[1789]: Invalid user server from 5.135.223.35 port 43478 Sep 29 09:58:54 tuxlinux sshd[1789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.223.35 Sep 29 09:58:54 tuxlinux sshd[1789]: Invalid user server from 5.135.223.35 port 43478 Sep 29 09:58:54 tuxlinux sshd[1789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.223.35 Sep 29 09:58:54 tuxlinux sshd[1789]: Invalid user server from 5.135.223.35 port 43478 Sep 29 09:58:54 tuxlinux sshd[1789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.223.35 Sep 29 09:58:56 tuxlinux sshd[1789]: Failed password for invalid user server from 5.135.223.35 port 43478 ssh2 ... |
2019-09-29 17:31:11 |
| 139.59.4.224 | attackbots | Sep 29 12:29:01 server sshd\[5025\]: Invalid user serv_pv from 139.59.4.224 port 60326 Sep 29 12:29:01 server sshd\[5025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.4.224 Sep 29 12:29:03 server sshd\[5025\]: Failed password for invalid user serv_pv from 139.59.4.224 port 60326 ssh2 Sep 29 12:33:34 server sshd\[12263\]: Invalid user test from 139.59.4.224 port 44562 Sep 29 12:33:34 server sshd\[12263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.4.224 |
2019-09-29 17:48:44 |
| 49.232.33.89 | attack | Sep 29 11:13:49 OPSO sshd\[966\]: Invalid user user2 from 49.232.33.89 port 56985 Sep 29 11:13:49 OPSO sshd\[966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.33.89 Sep 29 11:13:51 OPSO sshd\[966\]: Failed password for invalid user user2 from 49.232.33.89 port 56985 ssh2 Sep 29 11:19:05 OPSO sshd\[1979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.33.89 user=apache Sep 29 11:19:07 OPSO sshd\[1979\]: Failed password for apache from 49.232.33.89 port 46269 ssh2 |
2019-09-29 17:47:58 |
| 34.92.218.136 | attackbotsspam | Sep 29 04:35:50 Tower sshd[24846]: Connection from 34.92.218.136 port 45764 on 192.168.10.220 port 22 Sep 29 04:35:51 Tower sshd[24846]: Invalid user lue from 34.92.218.136 port 45764 Sep 29 04:35:51 Tower sshd[24846]: error: Could not get shadow information for NOUSER Sep 29 04:35:51 Tower sshd[24846]: Failed password for invalid user lue from 34.92.218.136 port 45764 ssh2 Sep 29 04:35:51 Tower sshd[24846]: Received disconnect from 34.92.218.136 port 45764:11: Bye Bye [preauth] Sep 29 04:35:51 Tower sshd[24846]: Disconnected from invalid user lue 34.92.218.136 port 45764 [preauth] |
2019-09-29 17:39:11 |