城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.93.172.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25090
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;214.93.172.78. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021300 1800 900 604800 86400
;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 01:33:31 CST 2025
;; MSG SIZE rcvd: 106b'Host 78.172.93.214.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 214.93.172.78.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 37.239.164.13 | attack | Host Scan |
2020-01-02 16:18:15 |
| 68.183.213.193 | attack | Automatic report - XMLRPC Attack |
2020-01-02 16:42:12 |
| 1.20.207.105 | attackbots | Honeypot attack, port: 445, PTR: PTR record not found |
2020-01-02 16:16:49 |
| 132.148.105.129 | attackspam | 132.148.105.129 - - [02/Jan/2020:06:28:42 +0000] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.105.129 - - [02/Jan/2020:06:28:43 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-01-02 16:19:36 |
| 112.85.42.188 | attack | 01/02/2020-03:12:58.279826 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan |
2020-01-02 16:28:41 |
| 106.51.153.9 | attackspam | Honeypot attack, port: 445, PTR: broadband.actcorp.in. |
2020-01-02 16:33:14 |
| 61.145.158.182 | attack | 3389BruteforceFW21 |
2020-01-02 16:26:21 |
| 190.79.3.54 | attackspambots | Host Scan |
2020-01-02 16:49:28 |
| 218.92.0.164 | attackbots | Jan 2 09:32:30 srv01 sshd[628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.164 user=root Jan 2 09:32:32 srv01 sshd[628]: Failed password for root from 218.92.0.164 port 19430 ssh2 Jan 2 09:32:36 srv01 sshd[628]: Failed password for root from 218.92.0.164 port 19430 ssh2 Jan 2 09:32:30 srv01 sshd[628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.164 user=root Jan 2 09:32:32 srv01 sshd[628]: Failed password for root from 218.92.0.164 port 19430 ssh2 Jan 2 09:32:36 srv01 sshd[628]: Failed password for root from 218.92.0.164 port 19430 ssh2 Jan 2 09:32:30 srv01 sshd[628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.164 user=root Jan 2 09:32:32 srv01 sshd[628]: Failed password for root from 218.92.0.164 port 19430 ssh2 Jan 2 09:32:36 srv01 sshd[628]: Failed password for root from 218.92.0.164 port 19430 ssh2 Jan 2 09:32: ... |
2020-01-02 16:36:33 |
| 111.230.219.156 | attackbots | (sshd) Failed SSH login from 111.230.219.156 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jan 2 01:28:19 host sshd[75535]: Invalid user shashin from 111.230.219.156 port 44950 |
2020-01-02 16:36:01 |
| 202.138.239.252 | attack | Host Scan |
2020-01-02 16:39:18 |
| 112.85.42.176 | attackbotsspam | Jan 2 09:23:30 meumeu sshd[592]: Failed password for root from 112.85.42.176 port 5450 ssh2 Jan 2 09:23:35 meumeu sshd[592]: Failed password for root from 112.85.42.176 port 5450 ssh2 Jan 2 09:23:47 meumeu sshd[592]: error: maximum authentication attempts exceeded for root from 112.85.42.176 port 5450 ssh2 [preauth] ... |
2020-01-02 16:38:57 |
| 80.211.177.213 | attack | $f2bV_matches |
2020-01-02 16:43:31 |
| 45.136.108.120 | attackspambots | Jan 2 08:25:26 h2177944 kernel: \[1148549.972773\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.120 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=14807 PROTO=TCP SPT=44777 DPT=1648 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 2 08:25:26 h2177944 kernel: \[1148549.972785\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.120 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=14807 PROTO=TCP SPT=44777 DPT=1648 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 2 08:41:57 h2177944 kernel: \[1149540.202319\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.120 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=20565 PROTO=TCP SPT=44777 DPT=2197 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 2 08:41:57 h2177944 kernel: \[1149540.202334\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.120 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=20565 PROTO=TCP SPT=44777 DPT=2197 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 2 08:58:59 h2177944 kernel: \[1150562.641288\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.108.120 DST=85.214. |
2020-01-02 16:42:25 |
| 189.27.77.175 | attackbotsspam | Invalid user lisa from 189.27.77.175 port 51895 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.27.77.175 Failed password for invalid user lisa from 189.27.77.175 port 51895 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.27.77.175 user=root Failed password for root from 189.27.77.175 port 36675 ssh2 |
2020-01-02 16:44:53 |