城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.245.13.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54337
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;214.245.13.203. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 11:37:57 CST 2025
;; MSG SIZE rcvd: 107
Host 203.13.245.214.in-addr.arpa not found: 2(SERVFAIL)
server can't find 214.245.13.203.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 46.101.103.207 | attack | Sep 27 02:27:29 lcdev sshd\[24747\]: Invalid user oracle from 46.101.103.207 Sep 27 02:27:29 lcdev sshd\[24747\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.103.207 Sep 27 02:27:31 lcdev sshd\[24747\]: Failed password for invalid user oracle from 46.101.103.207 port 53672 ssh2 Sep 27 02:31:35 lcdev sshd\[25148\]: Invalid user ksb from 46.101.103.207 Sep 27 02:31:35 lcdev sshd\[25148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.103.207 |
2019-09-27 20:44:50 |
| 31.149.33.86 | attack | Sep 27 15:31:23 pkdns2 sshd\[36971\]: Invalid user cao from 31.149.33.86Sep 27 15:31:25 pkdns2 sshd\[36971\]: Failed password for invalid user cao from 31.149.33.86 port 57298 ssh2Sep 27 15:32:20 pkdns2 sshd\[37006\]: Invalid user informix from 31.149.33.86Sep 27 15:32:22 pkdns2 sshd\[37006\]: Failed password for invalid user informix from 31.149.33.86 port 58173 ssh2Sep 27 15:33:17 pkdns2 sshd\[37042\]: Invalid user doi from 31.149.33.86Sep 27 15:33:18 pkdns2 sshd\[37042\]: Failed password for invalid user doi from 31.149.33.86 port 59047 ssh2 ... |
2019-09-27 20:38:27 |
| 36.90.82.167 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:15:21. |
2019-09-27 20:57:17 |
| 209.45.29.218 | attackbots | Sep 27 12:47:11 web8 sshd\[5325\]: Invalid user ab from 209.45.29.218 Sep 27 12:47:11 web8 sshd\[5325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.45.29.218 Sep 27 12:47:12 web8 sshd\[5325\]: Failed password for invalid user ab from 209.45.29.218 port 57896 ssh2 Sep 27 12:51:47 web8 sshd\[7572\]: Invalid user adonix from 209.45.29.218 Sep 27 12:51:47 web8 sshd\[7572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.45.29.218 |
2019-09-27 20:52:34 |
| 45.227.253.132 | attackspambots | Port Scan: TCP/25 |
2019-09-27 21:16:10 |
| 200.160.111.44 | attack | Sep 27 14:15:37 MK-Soft-Root2 sshd[32520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.160.111.44 Sep 27 14:15:39 MK-Soft-Root2 sshd[32520]: Failed password for invalid user connor from 200.160.111.44 port 51869 ssh2 ... |
2019-09-27 20:41:50 |
| 139.198.191.217 | attack | Sep 27 02:59:22 web9 sshd\[19742\]: Invalid user he from 139.198.191.217 Sep 27 02:59:22 web9 sshd\[19742\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.191.217 Sep 27 02:59:25 web9 sshd\[19742\]: Failed password for invalid user he from 139.198.191.217 port 59720 ssh2 Sep 27 03:03:48 web9 sshd\[20687\]: Invalid user atmaja from 139.198.191.217 Sep 27 03:03:48 web9 sshd\[20687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.191.217 |
2019-09-27 21:10:13 |
| 78.234.235.122 | attack | Netgear DGN Device Remote Command Execution Vulnerability |
2019-09-27 21:08:23 |
| 112.64.32.118 | attackbotsspam | Sep 27 13:33:20 microserver sshd[64528]: Invalid user yp from 112.64.32.118 port 36266 Sep 27 13:33:20 microserver sshd[64528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 Sep 27 13:33:22 microserver sshd[64528]: Failed password for invalid user yp from 112.64.32.118 port 36266 ssh2 Sep 27 13:43:03 microserver sshd[613]: Invalid user owen from 112.64.32.118 port 53852 Sep 27 13:43:03 microserver sshd[613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 Sep 27 13:57:48 microserver sshd[2708]: Invalid user jenkins from 112.64.32.118 port 52004 Sep 27 13:57:48 microserver sshd[2708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 Sep 27 13:57:50 microserver sshd[2708]: Failed password for invalid user jenkins from 112.64.32.118 port 52004 ssh2 Sep 27 14:02:33 microserver sshd[3390]: Invalid user wangyi from 112.64.32.118 port 60798 Sep 27 14:02:33 |
2019-09-27 20:41:18 |
| 181.48.29.35 | attack | Sep 27 14:11:18 plex sshd[21683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.29.35 Sep 27 14:11:18 plex sshd[21683]: Invalid user oracle from 181.48.29.35 port 51917 Sep 27 14:11:20 plex sshd[21683]: Failed password for invalid user oracle from 181.48.29.35 port 51917 ssh2 Sep 27 14:15:42 plex sshd[21791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.29.35 user=root Sep 27 14:15:44 plex sshd[21791]: Failed password for root from 181.48.29.35 port 43475 ssh2 |
2019-09-27 20:35:36 |
| 222.186.175.202 | attackbotsspam | Sep 27 02:49:24 eddieflores sshd\[16261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Sep 27 02:49:26 eddieflores sshd\[16261\]: Failed password for root from 222.186.175.202 port 6364 ssh2 Sep 27 02:49:51 eddieflores sshd\[16310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Sep 27 02:49:54 eddieflores sshd\[16310\]: Failed password for root from 222.186.175.202 port 3508 ssh2 Sep 27 02:50:25 eddieflores sshd\[16359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root |
2019-09-27 20:51:03 |
| 103.31.12.150 | attackspam | Sep 27 13:19:42 h2177944 kernel: \[2459443.916246\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.31.12.150 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=52 ID=41483 DF PROTO=TCP SPT=59138 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 27 13:23:01 h2177944 kernel: \[2459642.363755\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.31.12.150 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=74 ID=1695 DF PROTO=TCP SPT=50433 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 27 13:25:17 h2177944 kernel: \[2459778.411477\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.31.12.150 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=63 ID=32624 DF PROTO=TCP SPT=54691 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 27 13:49:56 h2177944 kernel: \[2461257.562096\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.31.12.150 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=81 ID=50772 DF PROTO=TCP SPT=55036 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 27 14:14:48 h2177944 kernel: \[2462748.952317\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.31.12.150 DST=85.214.11 |
2019-09-27 21:26:02 |
| 140.143.200.251 | attackspambots | Sep 27 14:44:43 OPSO sshd\[25102\]: Invalid user ka from 140.143.200.251 port 50716 Sep 27 14:44:43 OPSO sshd\[25102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.200.251 Sep 27 14:44:45 OPSO sshd\[25102\]: Failed password for invalid user ka from 140.143.200.251 port 50716 ssh2 Sep 27 14:49:00 OPSO sshd\[25876\]: Invalid user cloud_user from 140.143.200.251 port 51102 Sep 27 14:49:00 OPSO sshd\[25876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.200.251 |
2019-09-27 20:49:35 |
| 49.88.112.114 | attackspambots | Sep 27 03:20:32 aiointranet sshd\[17764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Sep 27 03:20:34 aiointranet sshd\[17764\]: Failed password for root from 49.88.112.114 port 49907 ssh2 Sep 27 03:21:35 aiointranet sshd\[17844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Sep 27 03:21:37 aiointranet sshd\[17844\]: Failed password for root from 49.88.112.114 port 47723 ssh2 Sep 27 03:22:36 aiointranet sshd\[17928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root |
2019-09-27 21:26:32 |
| 125.37.161.82 | attack | Automated reporting of FTP Brute Force |
2019-09-27 21:25:35 |