城市(city): Cedar Rapids
省份(region): Iowa
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.109.94.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41786
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;214.109.94.93. IN A
;; AUTHORITY SECTION:
. 490 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020040102 1800 900 604800 86400
;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 09:40:59 CST 2020
;; MSG SIZE rcvd: 117Host 93.94.109.214.in-addr.arpa. not found: 3(NXDOMAIN)Server: 100.100.2.138
Address: 100.100.2.138#53
** server can't find 93.94.109.214.in-addr.arpa.: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 178.85.206.82 | attackbotsspam | Distributed brute force attack |
2020-06-03 13:40:20 |
| 178.32.163.201 | attack | Jun 3 01:21:02 NPSTNNYC01T sshd[8237]: Failed password for root from 178.32.163.201 port 53934 ssh2 Jun 3 01:24:21 NPSTNNYC01T sshd[8469]: Failed password for root from 178.32.163.201 port 59350 ssh2 ... |
2020-06-03 13:34:59 |
| 222.186.30.57 | attackspambots | 2020-06-03T04:59:00.585763shield sshd\[17509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root 2020-06-03T04:59:02.887679shield sshd\[17509\]: Failed password for root from 222.186.30.57 port 39011 ssh2 2020-06-03T04:59:05.174552shield sshd\[17509\]: Failed password for root from 222.186.30.57 port 39011 ssh2 2020-06-03T04:59:07.399493shield sshd\[17509\]: Failed password for root from 222.186.30.57 port 39011 ssh2 2020-06-03T04:59:23.906865shield sshd\[17670\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root |
2020-06-03 13:08:25 |
| 132.232.29.131 | attackbotsspam | Jun 2 21:57:37 Host-KLAX-C sshd[15635]: Disconnected from invalid user root 132.232.29.131 port 37156 [preauth] ... |
2020-06-03 13:25:51 |
| 141.98.10.172 | attackspam | [portscan] Port scan |
2020-06-03 13:19:44 |
| 165.227.179.138 | attack | Jun 3 01:59:56 firewall sshd[30219]: Failed password for root from 165.227.179.138 port 35204 ssh2 Jun 3 02:02:20 firewall sshd[30288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 user=root Jun 3 02:02:22 firewall sshd[30288]: Failed password for root from 165.227.179.138 port 47786 ssh2 ... |
2020-06-03 13:37:11 |
| 112.85.42.180 | attackspam | Jun 3 07:08:14 mail sshd\[2805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root Jun 3 07:08:17 mail sshd\[2805\]: Failed password for root from 112.85.42.180 port 22027 ssh2 Jun 3 07:08:49 mail sshd\[2807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root ... |
2020-06-03 13:32:26 |
| 124.112.205.8 | attackbotsspam | Jun 2 23:57:57 Host-KEWR-E sshd[11151]: User root from 124.112.205.8 not allowed because not listed in AllowUsers ... |
2020-06-03 13:11:27 |
| 95.167.39.12 | attackbotsspam | Jun 3 01:03:46 NPSTNNYC01T sshd[6854]: Failed password for root from 95.167.39.12 port 38686 ssh2 Jun 3 01:07:28 NPSTNNYC01T sshd[7166]: Failed password for root from 95.167.39.12 port 42280 ssh2 ... |
2020-06-03 13:18:32 |
| 167.71.109.97 | attackbots | Jun 3 06:48:25 mout sshd[31479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.109.97 user=root Jun 3 06:48:28 mout sshd[31479]: Failed password for root from 167.71.109.97 port 35904 ssh2 |
2020-06-03 13:34:21 |
| 112.121.153.187 | attack | 112.121.153.187 - - [03/Jun/2020:07:15:46 +0200] "GET /wp-login.php HTTP/1.1" 200 6042 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 112.121.153.187 - - [03/Jun/2020:07:15:47 +0200] "POST /wp-login.php HTTP/1.1" 200 6347 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 112.121.153.187 - - [03/Jun/2020:07:15:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-06-03 13:23:27 |
| 124.204.65.82 | attackspambots | Jun 3 08:00:22 lukav-desktop sshd\[17810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.204.65.82 user=root Jun 3 08:00:24 lukav-desktop sshd\[17810\]: Failed password for root from 124.204.65.82 port 55237 ssh2 Jun 3 08:04:14 lukav-desktop sshd\[17851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.204.65.82 user=root Jun 3 08:04:17 lukav-desktop sshd\[17851\]: Failed password for root from 124.204.65.82 port 36616 ssh2 Jun 3 08:08:11 lukav-desktop sshd\[16274\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.204.65.82 user=root |
2020-06-03 13:42:17 |
| 14.63.162.98 | attackbotsspam | Jun 3 07:59:04 ift sshd\[24812\]: Failed password for root from 14.63.162.98 port 47064 ssh2Jun 3 08:01:21 ift sshd\[25346\]: Failed password for root from 14.63.162.98 port 34763 ssh2Jun 3 08:03:31 ift sshd\[25596\]: Failed password for root from 14.63.162.98 port 50695 ssh2Jun 3 08:05:39 ift sshd\[26173\]: Failed password for root from 14.63.162.98 port 38394 ssh2Jun 3 08:07:50 ift sshd\[26483\]: Failed password for root from 14.63.162.98 port 54326 ssh2 ... |
2020-06-03 13:30:47 |
| 36.89.163.178 | attack | 2020-06-03T05:52:16.315856 sshd[4027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.163.178 user=root 2020-06-03T05:52:18.267899 sshd[4027]: Failed password for root from 36.89.163.178 port 39165 ssh2 2020-06-03T05:57:09.938968 sshd[4083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.163.178 user=root 2020-06-03T05:57:12.116505 sshd[4083]: Failed password for root from 36.89.163.178 port 41480 ssh2 ... |
2020-06-03 13:45:31 |
| 79.249.251.168 | attackbotsspam | Jun 3 05:57:45 fhem-rasp sshd[24856]: User pi from 79.249.251.168 not allowed because not listed in AllowUsers Jun 3 05:57:45 fhem-rasp sshd[24857]: User pi from 79.249.251.168 not allowed because not listed in AllowUsers ... |
2020-06-03 13:20:59 |