城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.214.152.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33751
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;214.214.152.81. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012701 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 28 02:39:42 CST 2025
;; MSG SIZE rcvd: 107
b'Host 81.152.214.214.in-addr.arpa not found: 2(SERVFAIL)
'
server can't find 214.214.152.81.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 49.88.112.85 | attackbots | Triggered by Fail2Ban at Ares web server |
2019-08-22 00:46:20 |
| 117.88.176.166 | attack | [munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:31 +0200] "POST /[munged]: HTTP/1.1" 200 9039 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:33 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:34 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:35 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:37 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13: |
2019-08-22 01:48:46 |
| 103.125.86.241 | attackbots | Aug 21 08:47:56 localhost kernel: [129491.109087] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=103.125.86.241 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=3512 PROTO=TCP SPT=80 DPT=35360 WINDOW=16384 RES=0x00 ACK URGP=0 Aug 21 08:47:56 localhost kernel: [129491.109127] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=103.125.86.241 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=3512 PROTO=TCP SPT=80 DPT=35360 SEQ=498137829 ACK=498137829 WINDOW=16384 RES=0x00 ACK URGP=0 Aug 21 08:57:14 localhost kernel: [130049.737412] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=103.125.86.241 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=63246 PROTO=TCP SPT=80 DPT=30584 WINDOW=16384 RES=0x00 ACK URGP=0 Aug 21 08:57:14 localhost kernel: [130049.737434] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=103.125.86.241 DST=[mungedIP2] LEN=40 TOS=0x00 PREC= |
2019-08-22 01:06:26 |
| 185.220.101.33 | attackbots | vps1:ssh |
2019-08-22 02:09:28 |
| 167.71.217.110 | attackbotsspam | Aug 21 18:00:23 mail sshd\[13785\]: Failed password for invalid user ca792406 from 167.71.217.110 port 39472 ssh2 Aug 21 18:19:16 mail sshd\[14329\]: Invalid user tomcat6 from 167.71.217.110 port 49196 ... |
2019-08-22 01:28:20 |
| 106.13.86.199 | attack | Aug 21 08:45:29 xb0 sshd[26695]: Failed password for invalid user r from 106.13.86.199 port 33926 ssh2 Aug 21 08:45:29 xb0 sshd[26695]: Received disconnect from 106.13.86.199: 11: Bye Bye [preauth] Aug 21 09:03:52 xb0 sshd[3729]: Failed password for invalid user vm from 106.13.86.199 port 42276 ssh2 Aug 21 09:03:53 xb0 sshd[3729]: Received disconnect from 106.13.86.199: 11: Bye Bye [preauth] Aug 21 09:09:24 xb0 sshd[5635]: Failed password for invalid user sabayon-admin from 106.13.86.199 port 54478 ssh2 Aug 21 09:09:24 xb0 sshd[5635]: Received disconnect from 106.13.86.199: 11: Bye Bye [preauth] Aug 21 09:14:51 xb0 sshd[7777]: Failed password for invalid user nano from 106.13.86.199 port 38450 ssh2 Aug 21 09:14:51 xb0 sshd[7777]: Received disconnect from 106.13.86.199: 11: Bye Bye [preauth] Aug 21 09:20:23 xb0 sshd[25277]: Failed password for invalid user nathaniel from 106.13.86.199 port 50652 ssh2 Aug 21 09:20:23 xb0 sshd[25277]: Received disconnect from 106.13.86.199........ ------------------------------- |
2019-08-22 01:24:13 |
| 162.243.10.64 | attackbotsspam | Aug 21 12:39:38 web8 sshd\[8485\]: Invalid user tanya from 162.243.10.64 Aug 21 12:39:38 web8 sshd\[8485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.10.64 Aug 21 12:39:40 web8 sshd\[8485\]: Failed password for invalid user tanya from 162.243.10.64 port 32852 ssh2 Aug 21 12:43:43 web8 sshd\[10484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.10.64 user=root Aug 21 12:43:46 web8 sshd\[10484\]: Failed password for root from 162.243.10.64 port 48868 ssh2 |
2019-08-22 00:52:11 |
| 51.91.56.133 | attack | Aug 21 19:37:15 root sshd[14643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.56.133 Aug 21 19:37:17 root sshd[14643]: Failed password for invalid user cmcginn from 51.91.56.133 port 48464 ssh2 Aug 21 19:41:18 root sshd[14742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.56.133 ... |
2019-08-22 01:47:40 |
| 77.247.110.22 | attack | 08/21/2019-12:50:28.478302 77.247.110.22 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 75 |
2019-08-22 01:42:26 |
| 198.211.122.197 | attackspambots | Aug 21 17:51:51 hb sshd\[14511\]: Invalid user martin from 198.211.122.197 Aug 21 17:51:51 hb sshd\[14511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.122.197 Aug 21 17:51:53 hb sshd\[14511\]: Failed password for invalid user martin from 198.211.122.197 port 52054 ssh2 Aug 21 17:59:04 hb sshd\[15130\]: Invalid user deploy from 198.211.122.197 Aug 21 17:59:04 hb sshd\[15130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.122.197 |
2019-08-22 02:08:29 |
| 212.83.143.57 | attackspam | ssh intrusion attempt |
2019-08-22 01:19:37 |
| 189.8.68.56 | attackbotsspam | Aug 21 19:29:27 yabzik sshd[24319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.8.68.56 Aug 21 19:29:29 yabzik sshd[24319]: Failed password for invalid user apache from 189.8.68.56 port 37750 ssh2 Aug 21 19:34:32 yabzik sshd[26058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.8.68.56 |
2019-08-22 01:36:16 |
| 92.118.37.86 | attack | firewall-block, port(s): 10866/tcp, 11605/tcp |
2019-08-22 01:24:55 |
| 221.157.214.239 | attackbotsspam | Aug 21 18:24:57 rpi sshd[386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.157.214.239 Aug 21 18:24:59 rpi sshd[386]: Failed password for invalid user 587 from 221.157.214.239 port 52758 ssh2 |
2019-08-22 00:58:34 |
| 212.64.26.131 | attackbotsspam | $f2bV_matches |
2019-08-22 01:50:30 |