城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.134.40.192
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8097
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;219.134.40.192. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 00:14:35 CST 2025
;; MSG SIZE rcvd: 107Host 192.40.134.219.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 192.40.134.219.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 5.189.16.37 | attackspam | Oct 26 06:11:41 mc1 kernel: \[3349438.953698\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=5.189.16.37 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=51345 PROTO=TCP SPT=54940 DPT=1853 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 06:15:20 mc1 kernel: \[3349657.813226\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=5.189.16.37 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=63734 PROTO=TCP SPT=54940 DPT=1271 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 06:15:35 mc1 kernel: \[3349672.978110\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=5.189.16.37 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=36732 PROTO=TCP SPT=54940 DPT=236 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-10-26 12:34:42 |
| 150.95.212.72 | attackbotsspam | 2019-10-26T04:06:27.162326shield sshd\[31509\]: Invalid user tomcat from 150.95.212.72 port 46890 2019-10-26T04:06:27.166803shield sshd\[31509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v150-95-212-72.873a.static.cnode.io 2019-10-26T04:06:29.723232shield sshd\[31509\]: Failed password for invalid user tomcat from 150.95.212.72 port 46890 ssh2 2019-10-26T04:10:31.750105shield sshd\[32250\]: Invalid user backup from 150.95.212.72 port 57166 2019-10-26T04:10:31.754244shield sshd\[32250\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v150-95-212-72.873a.static.cnode.io |
2019-10-26 12:15:22 |
| 189.7.25.34 | attackbots | Automatic report - Banned IP Access |
2019-10-26 12:20:17 |
| 172.81.248.249 | attackbotsspam | Oct 26 05:50:34 vps691689 sshd[2232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.248.249 Oct 26 05:50:36 vps691689 sshd[2232]: Failed password for invalid user sa445566 from 172.81.248.249 port 36004 ssh2 ... |
2019-10-26 12:06:05 |
| 142.93.113.182 | attack | www.geburtshaus-fulda.de 142.93.113.182 \[26/Oct/2019:05:54:58 +0200\] "POST /wp-login.php HTTP/1.1" 200 5785 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.geburtshaus-fulda.de 142.93.113.182 \[26/Oct/2019:05:54:59 +0200\] "POST /wp-login.php HTTP/1.1" 200 5789 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-10-26 12:00:27 |
| 195.3.245.178 | attack | [portscan] Port scan |
2019-10-26 12:35:12 |
| 34.220.69.98 | attack | by Amazon Technologies Inc. |
2019-10-26 12:04:36 |
| 45.224.126.168 | attack | Oct 26 05:54:38 host sshd[42454]: Invalid user deploy from 45.224.126.168 port 45236 ... |
2019-10-26 12:11:59 |
| 36.153.23.182 | attackbots | F2B jail: sshd. Time: 2019-10-26 05:54:55, Reported by: VKReport |
2019-10-26 12:03:00 |
| 106.12.176.146 | attack | Oct 26 05:49:31 heissa sshd\[27508\]: Invalid user lw from 106.12.176.146 port 47817 Oct 26 05:49:31 heissa sshd\[27508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.176.146 Oct 26 05:49:33 heissa sshd\[27508\]: Failed password for invalid user lw from 106.12.176.146 port 47817 ssh2 Oct 26 05:54:07 heissa sshd\[28225\]: Invalid user test from 106.12.176.146 port 27012 Oct 26 05:54:07 heissa sshd\[28225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.176.146 |
2019-10-26 12:30:25 |
| 115.88.25.178 | attackbotsspam | Oct 26 06:44:35 site2 sshd\[29538\]: Invalid user cz123 from 115.88.25.178Oct 26 06:44:37 site2 sshd\[29538\]: Failed password for invalid user cz123 from 115.88.25.178 port 39890 ssh2Oct 26 06:49:21 site2 sshd\[29767\]: Invalid user Melon2017 from 115.88.25.178Oct 26 06:49:22 site2 sshd\[29767\]: Failed password for invalid user Melon2017 from 115.88.25.178 port 50204 ssh2Oct 26 06:54:06 site2 sshd\[30003\]: Invalid user 123456@qwe from 115.88.25.178 ... |
2019-10-26 12:29:57 |
| 40.77.188.39 | attackspambots | Calling not existent HTTP content (400 or 404). |
2019-10-26 12:21:45 |
| 213.167.46.166 | attackbots | 2019-10-26T03:54:30.259927abusebot-4.cloudsearch.cf sshd\[9855\]: Invalid user coupon from 213.167.46.166 port 46434 |
2019-10-26 12:18:06 |
| 104.131.84.59 | attack | Oct 26 06:16:51 dedicated sshd[23343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.84.59 user=root Oct 26 06:16:52 dedicated sshd[23343]: Failed password for root from 104.131.84.59 port 53306 ssh2 |
2019-10-26 12:31:57 |
| 46.38.144.17 | attack | Oct 26 06:30:50 relay postfix/smtpd\[27299\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 26 06:31:18 relay postfix/smtpd\[2218\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 26 06:32:00 relay postfix/smtpd\[27298\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 26 06:32:30 relay postfix/smtpd\[2215\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 26 06:33:15 relay postfix/smtpd\[17863\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-10-26 12:34:13 |