城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 19.138.158.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4446
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;19.138.158.239. IN A
;; AUTHORITY SECTION:
. 262 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020081500 1800 900 604800 86400
;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 15 19:32:09 CST 2020
;; MSG SIZE rcvd: 118Host 239.158.138.19.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 239.158.138.19.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 117.50.40.157 | attack | SSH Brute-Forcing (server1) |
2020-04-30 20:07:40 |
| 35.227.108.34 | attack | Fail2Ban Ban Triggered (2) |
2020-04-30 19:44:51 |
| 60.162.42.136 | attackspambots | Honeypot attack, port: 445, PTR: 136.42.162.60.broad.tz.zj.dynamic.163data.com.cn. |
2020-04-30 19:59:04 |
| 222.186.31.166 | attackspambots | Apr 30 07:49:47 debian sshd[13208]: Unable to negotiate with 222.186.31.166 port 62718: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Apr 30 08:17:08 debian sshd[14406]: Unable to negotiate with 222.186.31.166 port 62284: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ... |
2020-04-30 20:17:30 |
| 168.62.174.233 | attack | Apr 30 10:34:40 vlre-nyc-1 sshd\[13544\]: Invalid user kk from 168.62.174.233 Apr 30 10:34:40 vlre-nyc-1 sshd\[13544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.62.174.233 Apr 30 10:34:42 vlre-nyc-1 sshd\[13544\]: Failed password for invalid user kk from 168.62.174.233 port 43032 ssh2 Apr 30 10:38:22 vlre-nyc-1 sshd\[13628\]: Invalid user reach from 168.62.174.233 Apr 30 10:38:22 vlre-nyc-1 sshd\[13628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.62.174.233 ... |
2020-04-30 20:10:22 |
| 106.12.195.99 | attack | 2020-04-30T05:22:54.515382linuxbox-skyline sshd[69452]: Invalid user bob from 106.12.195.99 port 50090 ... |
2020-04-30 20:19:18 |
| 190.66.54.78 | attackspam | Apr 30 06:05:21 ns382633 sshd\[19918\]: Invalid user myftp from 190.66.54.78 port 5601 Apr 30 06:05:21 ns382633 sshd\[19918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.66.54.78 Apr 30 06:05:22 ns382633 sshd\[19918\]: Failed password for invalid user myftp from 190.66.54.78 port 5601 ssh2 Apr 30 06:22:24 ns382633 sshd\[22624\]: Invalid user grupo2 from 190.66.54.78 port 61121 Apr 30 06:22:24 ns382633 sshd\[22624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.66.54.78 |
2020-04-30 20:08:48 |
| 60.178.34.170 | attackspam | Brute force blocker - service: proftpd1 - aantal: 54 - Thu May 31 05:30:18 2018 |
2020-04-30 19:54:05 |
| 37.59.123.166 | attackspam | Apr 30 10:17:37 host sshd[19230]: Invalid user User from 37.59.123.166 port 53006 ... |
2020-04-30 20:09:54 |
| 37.228.116.129 | spam | Spammail mit unerwünschtem Sexangeboten. Passt auch überhaupt nicht zu meinem Profil. Da ich über Freenet schon gehackt wurde über russische Server, könnte meine E-Mailadresse aus diesen alten Vorfällen stammen. Ich habe vor kurzem eine Warnung von Apple über unerwünschte Aktionen auf meinen Internetaktionen bekommen, die ich zu entfernen versucht habe. Das ist mir wohl auch auf dem E-Mail Postfach von Apple gelungen. Aber auf dem Original Freenet Kanal ist mir das wohl nicht gelungen. |
2020-04-30 19:53:58 |
| 139.59.10.186 | attackbots | DATE:2020-04-30 11:22:44, IP:139.59.10.186, PORT:ssh SSH brute force auth (docker-dc) |
2020-04-30 20:06:19 |
| 185.2.140.155 | attack | <6 unauthorized SSH connections |
2020-04-30 19:54:23 |
| 49.235.46.18 | attackbotsspam | Invalid user a from 49.235.46.18 port 34212 |
2020-04-30 20:11:30 |
| 159.65.172.240 | attack | Apr 30 09:39:32 marvibiene sshd[8914]: Invalid user germain from 159.65.172.240 port 39182 Apr 30 09:39:32 marvibiene sshd[8914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.172.240 Apr 30 09:39:32 marvibiene sshd[8914]: Invalid user germain from 159.65.172.240 port 39182 Apr 30 09:39:34 marvibiene sshd[8914]: Failed password for invalid user germain from 159.65.172.240 port 39182 ssh2 ... |
2020-04-30 19:56:12 |
| 192.169.231.179 | attackbotsspam | RDPBruteCAu |
2020-04-30 19:45:49 |