城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 205.130.102.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44124
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;205.130.102.142. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025062701 1800 900 604800 86400
;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 28 12:20:28 CST 2025
;; MSG SIZE rcvd: 108Host 142.102.130.205.in-addr.arpa not found: 2(SERVFAIL)
server can't find 205.130.102.142.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 177.130.137.158 | attackspam | failed_logins |
2019-08-10 18:28:33 |
| 118.126.111.108 | attack | Aug 10 06:43:06 marvibiene sshd[34328]: Invalid user administrator from 118.126.111.108 port 42034 Aug 10 06:43:06 marvibiene sshd[34328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.111.108 Aug 10 06:43:06 marvibiene sshd[34328]: Invalid user administrator from 118.126.111.108 port 42034 Aug 10 06:43:08 marvibiene sshd[34328]: Failed password for invalid user administrator from 118.126.111.108 port 42034 ssh2 ... |
2019-08-10 18:40:54 |
| 210.212.145.125 | attackspam | Aug 10 12:56:16 plex sshd[27076]: Invalid user ftpuser from 210.212.145.125 port 57590 |
2019-08-10 18:56:40 |
| 13.73.105.153 | attackspambots | SSH authentication failure x 6 reported by Fail2Ban ... |
2019-08-10 18:53:50 |
| 124.165.86.183 | attackspambots | Aug 10 13:00:47 tuotantolaitos sshd[8415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.165.86.183 Aug 10 13:00:49 tuotantolaitos sshd[8415]: Failed password for invalid user admin from 124.165.86.183 port 43970 ssh2 ... |
2019-08-10 18:31:05 |
| 5.83.163.159 | attack | /var/log/messages:Aug 8 13:29:36 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1565270976.756:3999): pid=9680 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=9681 suid=74 rport=38048 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=5.83.163.159 terminal=? res=success' /var/log/messages:Aug 8 13:29:36 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1565270976.761:4000): pid=9680 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=9681 suid=74 rport=38048 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=5.83.163.159 terminal=? res=success' /var/log/messages:Aug 8 13:29:37 sanyalnet-cloud-vps fail2ban.filter[1550]: INFO [sshd] Found 5.83.16........ ------------------------------- |
2019-08-10 18:23:19 |
| 14.252.138.15 | attack | Automatic report - Port Scan Attack |
2019-08-10 18:18:37 |
| 51.38.42.39 | attackbotsspam | www.ft-1848-basketball.de 51.38.42.39 \[10/Aug/2019:07:23:52 +0200\] "POST /wp-login.php HTTP/1.1" 200 2172 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.ft-1848-basketball.de 51.38.42.39 \[10/Aug/2019:07:23:53 +0200\] "POST /wp-login.php HTTP/1.1" 200 2143 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-08-10 18:43:00 |
| 81.22.45.148 | attack | Aug 10 11:05:53 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.148 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=56344 PROTO=TCP SPT=44617 DPT=8295 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-08-10 18:09:45 |
| 83.186.174.171 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-08-10 18:52:58 |
| 201.116.12.217 | attackbotsspam | SSH authentication failure x 6 reported by Fail2Ban ... |
2019-08-10 18:04:47 |
| 198.23.172.162 | attackbots | Malicious Traffic/Form Submission |
2019-08-10 18:55:48 |
| 106.32.220.5 | attackbots | Aug 10 07:28:12 ovpn sshd[27651]: Invalid user admin from 106.32.220.5 Aug 10 07:28:12 ovpn sshd[27651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.32.220.5 Aug 10 07:28:15 ovpn sshd[27651]: Failed password for invalid user admin from 106.32.220.5 port 57218 ssh2 Aug 10 07:28:18 ovpn sshd[27651]: Failed password for invalid user admin from 106.32.220.5 port 57218 ssh2 Aug 10 07:28:20 ovpn sshd[27651]: Failed password for invalid user admin from 106.32.220.5 port 57218 ssh2 Aug 10 07:28:22 ovpn sshd[27651]: Failed password for invalid user admin from 106.32.220.5 port 57218 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.32.220.5 |
2019-08-10 18:03:39 |
| 207.154.230.156 | attack | Aug 10 04:28:51 ks10 sshd[2840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.230.156 Aug 10 04:28:53 ks10 sshd[2840]: Failed password for invalid user tester from 207.154.230.156 port 35118 ssh2 ... |
2019-08-10 18:14:46 |
| 158.222.176.225 | attackbotsspam | Automatic report - Port Scan Attack |
2019-08-10 18:52:25 |