城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.71.133.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41806
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;214.71.133.133. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400
;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 10:31:30 CST 2025
;; MSG SIZE rcvd: 107
Host 133.133.71.214.in-addr.arpa not found: 2(SERVFAIL)
server can't find 214.71.133.133.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 194.135.39.84 | attack | Unauthorized connection attempt detected, IP banned. |
2020-04-03 18:35:17 |
| 103.110.89.148 | attackspambots | SSH invalid-user multiple login attempts |
2020-04-03 19:20:09 |
| 185.157.40.249 | attackspam | xmlrpc attack |
2020-04-03 19:14:31 |
| 103.41.205.182 | attackspambots | Apr 3 05:24:12 kmh-mb-001 sshd[15417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.41.205.182 user=r.r Apr 3 05:24:13 kmh-mb-001 sshd[15417]: Failed password for r.r from 103.41.205.182 port 41130 ssh2 Apr 3 05:24:13 kmh-mb-001 sshd[15417]: Received disconnect from 103.41.205.182 port 41130:11: Bye Bye [preauth] Apr 3 05:24:13 kmh-mb-001 sshd[15417]: Disconnected from 103.41.205.182 port 41130 [preauth] Apr 3 05:27:04 kmh-mb-001 sshd[15840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.41.205.182 user=r.r Apr 3 05:27:06 kmh-mb-001 sshd[15840]: Failed password for r.r from 103.41.205.182 port 49826 ssh2 Apr 3 05:27:06 kmh-mb-001 sshd[15840]: Received disconnect from 103.41.205.182 port 49826:11: Bye Bye [preauth] Apr 3 05:27:06 kmh-mb-001 sshd[15840]: Disconnected from 103.41.205.182 port 49826 [preauth] Apr 3 05:28:47 kmh-mb-001 sshd[16050]: pam_unix(sshd:auth): aut........ ------------------------------- |
2020-04-03 19:07:25 |
| 139.199.74.92 | attack | Apr 3 07:08:00 lock-38 sshd[497495]: Failed password for root from 139.199.74.92 port 53870 ssh2 Apr 3 07:21:06 lock-38 sshd[497918]: Failed password for root from 139.199.74.92 port 55022 ssh2 Apr 3 07:24:15 lock-38 sshd[498005]: Failed password for root from 139.199.74.92 port 57314 ssh2 Apr 3 07:27:06 lock-38 sshd[498087]: Failed password for root from 139.199.74.92 port 59604 ssh2 Apr 3 07:30:01 lock-38 sshd[498138]: Failed password for root from 139.199.74.92 port 33662 ssh2 ... |
2020-04-03 18:54:23 |
| 192.3.157.121 | attack | Unauthorized connection attempt detected from IP address 192.3.157.121 to port 3192 |
2020-04-03 18:39:44 |
| 206.189.128.215 | attackbotsspam | Apr 3 08:25:47 web8 sshd\[422\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.128.215 user=root Apr 3 08:25:50 web8 sshd\[422\]: Failed password for root from 206.189.128.215 port 42800 ssh2 Apr 3 08:30:03 web8 sshd\[2796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.128.215 user=root Apr 3 08:30:06 web8 sshd\[2796\]: Failed password for root from 206.189.128.215 port 49492 ssh2 Apr 3 08:34:29 web8 sshd\[5097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.128.215 user=root |
2020-04-03 18:48:30 |
| 63.81.87.167 | attack | (RCPT) RCPT NOT ALLOWED FROM 63.81.87.167 (US/United States/-): 1 in the last 3600 secs |
2020-04-03 19:19:18 |
| 112.3.25.139 | attack | Lines containing failures of 112.3.25.139 Apr 1 09:33:38 shared04 sshd[5145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.25.139 user=r.r Apr 1 09:33:40 shared04 sshd[5145]: Failed password for r.r from 112.3.25.139 port 43770 ssh2 Apr 1 09:33:46 shared04 sshd[5145]: Received disconnect from 112.3.25.139 port 43770:11: Bye Bye [preauth] Apr 1 09:33:46 shared04 sshd[5145]: Disconnected from authenticating user r.r 112.3.25.139 port 43770 [preauth] Apr 1 09:40:41 shared04 sshd[8057]: Connection closed by 112.3.25.139 port 45777 [preauth] Apr 1 09:46:18 shared04 sshd[10146]: Connection closed by 112.3.25.139 port 46398 [preauth] Apr 1 09:51:51 shared04 sshd[12010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.25.139 user=r.r Apr 1 09:51:53 shared04 sshd[12010]: Failed password for r.r from 112.3.25.139 port 47017 ssh2 Apr 1 09:51:53 shared04 sshd[12010]: Received di........ ------------------------------ |
2020-04-03 19:18:55 |
| 178.128.222.84 | attack | Apr 3 12:20:42 vpn01 sshd[10949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.222.84 Apr 3 12:20:44 vpn01 sshd[10949]: Failed password for invalid user max from 178.128.222.84 port 49948 ssh2 ... |
2020-04-03 18:56:49 |
| 117.71.57.195 | attackspam | SSH brute-force attempt |
2020-04-03 18:59:07 |
| 23.225.172.10 | attackbots | Unauthorized connection attempt detected from IP address 23.225.172.10 to port 9999 [T] |
2020-04-03 19:22:12 |
| 85.202.83.107 | attackspambots | Apr 2 23:41:42 nimbus postfix/postscreen[27284]: CONNECT from [85.202.83.107]:48335 to [192.168.14.12]:25 Apr 2 23:41:42 nimbus postfix/dnsblog[27824]: addr 85.202.83.107 listed by domain b.barracudacentral.org as 127.0.0.2 Apr 2 23:41:48 nimbus postfix/postscreen[27284]: PASS NEW [85.202.83.107]:48335 Apr 2 23:41:48 nimbus postfix/smtpd[27814]: connect from mail-a.webstudioseventytwo.com[85.202.83.107] Apr 2 23:41:48 nimbus policyd-spf[27828]: None; identhostnamey=helo; client-ip=85.202.83.107; helo=mail.blackholeofrandom.com; envelope-from=x@x Apr 2 23:41:48 nimbus policyd-spf[27828]: Pass; identhostnamey=mailfrom; client-ip=85.202.83.107; helo=mail.blackholeofrandom.com; envelope-from=x@x Apr 2 23:41:49 nimbus sqlgrey: grey: new: 85.202.83(85.202.83.107), x@x -> x@x Apr x@x Apr 2 23:41:49 nimbus postfix/smtpd[27814]: disconnect from mail-a.webstudioseventytwo.com[85.202.83.107] Apr 2 23:43:58 nimbus postfix/postscreen[27284]: CONNECT from [85.202.83.107]:552........ ------------------------------- |
2020-04-03 18:47:10 |
| 86.36.20.20 | attack | Apr 3 04:15:13 core sshd\[31449\]: Invalid user ntps from 86.36.20.20 Apr 3 04:15:51 core sshd\[31452\]: Invalid user prometheus from 86.36.20.20 Apr 3 04:16:29 core sshd\[31454\]: Invalid user synthing from 86.36.20.20 Apr 3 04:21:21 core sshd\[31481\]: Invalid user ubnt from 86.36.20.20 Apr 3 04:22:35 core sshd\[31489\]: Invalid user oracle from 86.36.20.20 ... |
2020-04-03 19:17:49 |
| 221.229.219.188 | attackspambots | Apr 3 07:22:42 silence02 sshd[26922]: Failed password for root from 221.229.219.188 port 42740 ssh2 Apr 3 07:26:48 silence02 sshd[27528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.229.219.188 Apr 3 07:26:50 silence02 sshd[27528]: Failed password for invalid user rrpatil from 221.229.219.188 port 38071 ssh2 |
2020-04-03 19:18:07 |