城市(city): unknown
省份(region): unknown
国家(country): United Kingdom
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 194.93.145.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49105
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;194.93.145.242. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400
;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 11:49:21 CST 2025
;; MSG SIZE rcvd: 107
Host 242.145.93.194.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 242.145.93.194.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 178.128.158.199 | attack | 2019-08-25T07:59:26.790774abusebot-6.cloudsearch.cf sshd\[11783\]: Invalid user 123456 from 178.128.158.199 port 35848 |
2019-08-25 23:44:20 |
| 81.22.45.239 | attack | Aug 25 17:49:59 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.239 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=12421 PROTO=TCP SPT=50306 DPT=21685 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-08-26 00:19:38 |
| 201.179.166.88 | attackspam | Unauthorised access (Aug 25) SRC=201.179.166.88 LEN=40 TOS=0x10 PREC=0x40 TTL=52 ID=58920 TCP DPT=8080 WINDOW=62643 SYN |
2019-08-25 23:53:04 |
| 78.150.210.193 | attack | Lines containing failures of 78.150.210.193 Aug 24 09:27:54 shared12 sshd[3619]: Invalid user pi from 78.150.210.193 port 60614 Aug 24 09:27:54 shared12 sshd[3620]: Invalid user pi from 78.150.210.193 port 60616 Aug 24 09:27:54 shared12 sshd[3619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.150.210.193 Aug 24 09:27:54 shared12 sshd[3620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.150.210.193 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=78.150.210.193 |
2019-08-25 23:45:13 |
| 51.68.230.54 | attackspam | Aug 25 04:12:30 auw2 sshd\[9630\]: Invalid user samba from 51.68.230.54 Aug 25 04:12:30 auw2 sshd\[9630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.ip-51-68-230.eu Aug 25 04:12:32 auw2 sshd\[9630\]: Failed password for invalid user samba from 51.68.230.54 port 51968 ssh2 Aug 25 04:18:37 auw2 sshd\[10175\]: Invalid user adm from 51.68.230.54 Aug 25 04:18:37 auw2 sshd\[10175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.ip-51-68-230.eu |
2019-08-25 23:36:41 |
| 49.234.114.189 | attack | 2019-08-25 03:31:14,319 fail2ban.actions [878]: NOTICE [sshd] Ban 49.234.114.189 2019-08-25 06:40:48,940 fail2ban.actions [878]: NOTICE [sshd] Ban 49.234.114.189 2019-08-25 09:46:35,118 fail2ban.actions [878]: NOTICE [sshd] Ban 49.234.114.189 ... |
2019-08-25 23:05:39 |
| 151.29.225.205 | attackbots | Automatic report - Port Scan Attack |
2019-08-25 23:04:59 |
| 107.170.76.170 | attack | Aug 25 02:12:52 php2 sshd\[18473\]: Invalid user smmsp from 107.170.76.170 Aug 25 02:12:52 php2 sshd\[18473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.76.170 Aug 25 02:12:54 php2 sshd\[18473\]: Failed password for invalid user smmsp from 107.170.76.170 port 41517 ssh2 Aug 25 02:20:09 php2 sshd\[19208\]: Invalid user soap from 107.170.76.170 Aug 25 02:20:09 php2 sshd\[19208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.76.170 |
2019-08-26 00:07:34 |
| 153.162.106.56 | attack | Aug 25 11:29:30 mail sshd\[23966\]: Invalid user administrator from 153.162.106.56 port 60030 Aug 25 11:29:30 mail sshd\[23966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.162.106.56 Aug 25 11:29:33 mail sshd\[23966\]: Failed password for invalid user administrator from 153.162.106.56 port 60030 ssh2 Aug 25 11:35:24 mail sshd\[24759\]: Invalid user monitor from 153.162.106.56 port 55620 Aug 25 11:35:24 mail sshd\[24759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.162.106.56 |
2019-08-26 00:04:14 |
| 154.197.27.251 | attackspambots | Brute force RDP, port 3389 |
2019-08-26 00:02:11 |
| 167.71.215.72 | attackspam | Aug 25 17:56:15 SilenceServices sshd[11909]: Failed password for root from 167.71.215.72 port 24858 ssh2 Aug 25 18:02:44 SilenceServices sshd[14507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.72 Aug 25 18:02:46 SilenceServices sshd[14507]: Failed password for invalid user testftp from 167.71.215.72 port 30861 ssh2 |
2019-08-26 00:03:34 |
| 92.118.37.70 | attackbots | Unauthorised access (Aug 25) SRC=92.118.37.70 LEN=40 TTL=249 ID=31279 TCP DPT=3389 WINDOW=1024 SYN |
2019-08-25 23:34:56 |
| 104.131.37.34 | attackspambots | Aug 25 05:56:07 hiderm sshd\[24990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=virgo.accion-sa.cl user=man Aug 25 05:56:10 hiderm sshd\[24990\]: Failed password for man from 104.131.37.34 port 46481 ssh2 Aug 25 06:01:49 hiderm sshd\[25419\]: Invalid user rr from 104.131.37.34 Aug 25 06:01:49 hiderm sshd\[25419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=virgo.accion-sa.cl Aug 25 06:01:51 hiderm sshd\[25419\]: Failed password for invalid user rr from 104.131.37.34 port 41770 ssh2 |
2019-08-26 00:04:54 |
| 89.248.172.85 | attack | 08/25/2019-11:29:49.095179 89.248.172.85 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 100 |
2019-08-25 23:43:10 |
| 152.136.62.232 | attackbots | DATE:2019-08-25 12:25:40,IP:152.136.62.232,MATCHES:10,PORT:ssh |
2019-08-25 23:14:40 |