城市(city): unknown
省份(region): unknown
国家(country): Hong Kong
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 210.5.164.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31346
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;210.5.164.48. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 00:22:21 CST 2025
;; MSG SIZE rcvd: 105
Host 48.164.5.210.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 48.164.5.210.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 117.160.162.24 | attackspambots | Nov 5 21:39:45 lcl-usvr-01 sshd[8174]: refused connect from 117.160.162.24 (117.160.162.24) |
2019-11-06 00:31:18 |
| 106.13.78.85 | attack | Nov 5 08:34:32 dallas01 sshd[22169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 Nov 5 08:34:34 dallas01 sshd[22169]: Failed password for invalid user dixita from 106.13.78.85 port 44404 ssh2 Nov 5 08:39:48 dallas01 sshd[23197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.85 |
2019-11-06 00:25:41 |
| 49.73.61.26 | attackspam | Nov 5 17:30:07 ns381471 sshd[7961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.73.61.26 Nov 5 17:30:09 ns381471 sshd[7961]: Failed password for invalid user demo from 49.73.61.26 port 47406 ssh2 |
2019-11-06 00:43:33 |
| 142.93.212.131 | attack | Nov 5 05:56:03 web1 sshd\[2540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.131 user=root Nov 5 05:56:06 web1 sshd\[2540\]: Failed password for root from 142.93.212.131 port 58740 ssh2 Nov 5 06:00:49 web1 sshd\[2953\]: Invalid user icinga from 142.93.212.131 Nov 5 06:00:49 web1 sshd\[2953\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.131 Nov 5 06:00:51 web1 sshd\[2953\]: Failed password for invalid user icinga from 142.93.212.131 port 42738 ssh2 |
2019-11-06 00:18:50 |
| 167.99.75.174 | attack | Nov 5 17:01:27 bouncer sshd\[12500\]: Invalid user nagios from 167.99.75.174 port 58354 Nov 5 17:01:28 bouncer sshd\[12500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.75.174 Nov 5 17:01:30 bouncer sshd\[12500\]: Failed password for invalid user nagios from 167.99.75.174 port 58354 ssh2 ... |
2019-11-06 00:35:08 |
| 5.152.159.31 | attack | Nov 5 17:18:03 server sshd\[3961\]: Invalid user ubnt from 5.152.159.31 Nov 5 17:18:03 server sshd\[3961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.152.159.31 Nov 5 17:18:04 server sshd\[3961\]: Failed password for invalid user ubnt from 5.152.159.31 port 54146 ssh2 Nov 5 17:39:31 server sshd\[8981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.152.159.31 user=root Nov 5 17:39:32 server sshd\[8981\]: Failed password for root from 5.152.159.31 port 36642 ssh2 ... |
2019-11-06 00:39:27 |
| 51.255.20.29 | attackbots | Nov 5 15:39:12 vps666546 sshd\[17190\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.20.29 user=root Nov 5 15:39:14 vps666546 sshd\[17190\]: Failed password for root from 51.255.20.29 port 41926 ssh2 Nov 5 15:39:17 vps666546 sshd\[17249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.20.29 user=root Nov 5 15:39:18 vps666546 sshd\[17249\]: Failed password for root from 51.255.20.29 port 43274 ssh2 Nov 5 15:39:19 vps666546 sshd\[17253\]: Invalid user pi from 51.255.20.29 port 43632 Nov 5 15:39:19 vps666546 sshd\[17253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.20.29 ... |
2019-11-06 00:47:46 |
| 159.203.201.225 | attackspam | ET DROP Dshield Block Listed Source group 1 - port: 40142 proto: TCP cat: Misc Attack |
2019-11-06 00:42:47 |
| 81.22.45.107 | attackspam | Nov 5 16:41:46 h2177944 kernel: \[5844153.666071\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.107 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=30374 PROTO=TCP SPT=43255 DPT=48858 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 5 16:46:08 h2177944 kernel: \[5844415.749254\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.107 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34972 PROTO=TCP SPT=43255 DPT=48929 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 5 16:53:58 h2177944 kernel: \[5844886.288681\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.107 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=6159 PROTO=TCP SPT=43255 DPT=48958 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 5 16:54:02 h2177944 kernel: \[5844889.371757\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.107 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=17354 PROTO=TCP SPT=43255 DPT=48558 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 5 17:05:49 h2177944 kernel: \[5845596.767564\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.107 DST=85.214.117.9 L |
2019-11-06 00:17:33 |
| 163.172.204.185 | attackbotsspam | SSH Brute-Force reported by Fail2Ban |
2019-11-06 00:41:37 |
| 177.189.141.154 | attackspam | Automatic report - Port Scan Attack |
2019-11-06 00:38:17 |
| 45.79.106.170 | attackspam | ET CINS Active Threat Intelligence Poor Reputation IP group 34 - port: 4500 proto: UDP cat: Misc Attack |
2019-11-06 00:24:36 |
| 106.13.56.72 | attackbots | Nov 5 21:38:36 gw1 sshd[31943]: Failed password for root from 106.13.56.72 port 58506 ssh2 ... |
2019-11-06 00:52:14 |
| 219.93.20.155 | attackspambots | [Aegis] @ 2019-11-05 14:39:12 0000 -> Multiple authentication failures. |
2019-11-06 00:47:01 |
| 217.182.193.61 | attackspambots | Nov 5 17:20:47 SilenceServices sshd[22172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.193.61 Nov 5 17:20:49 SilenceServices sshd[22172]: Failed password for invalid user macmail from 217.182.193.61 port 36764 ssh2 Nov 5 17:24:43 SilenceServices sshd[24689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.193.61 |
2019-11-06 00:30:30 |