城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 33.137.219.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39181
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;33.137.219.142. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 01:42:57 CST 2025
;; MSG SIZE rcvd: 107
b'Host 142.219.137.33.in-addr.arpa not found: 2(SERVFAIL)
'
server can't find 33.137.219.142.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 129.211.55.6 | attackspam | Feb 8 10:54:27 plusreed sshd[9916]: Invalid user smm from 129.211.55.6 ... |
2020-02-09 02:11:11 |
| 218.166.242.8 | attackbotsspam | firewall-block, port(s): 23/tcp |
2020-02-09 02:17:26 |
| 139.99.148.4 | attackbotsspam | WordPress login Brute force / Web App Attack on client site. |
2020-02-09 02:04:06 |
| 102.132.252.65 | spambotsattackproxynormal | dos spam |
2020-02-09 02:37:58 |
| 92.63.194.107 | attackspam | Lines containing failures of 92.63.194.107 Jan 31 14:37:49 server-name sshd[13075]: Invalid user default from 92.63.194.107 port 33669 Jan 31 14:37:49 server-name sshd[13075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.107 Jan 31 14:37:51 server-name sshd[13075]: Failed password for invalid user default from 92.63.194.107 port 33669 ssh2 Jan 31 14:37:52 server-name sshd[13075]: Connection closed by invalid user default 92.63.194.107 port 33669 [preauth] Feb 1 22:21:09 server-name sshd[25556]: Invalid user default from 92.63.194.107 port 34625 Feb 1 22:21:09 server-name sshd[25556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.107 Feb 1 22:21:11 server-name sshd[25556]: Failed password for invalid user default from 92.63.194.107 port 34625 ssh2 Feb 1 22:21:12 server-name sshd[25556]: Connection closed by invalid user default 92.63.194.107 port 34625 [preauth] ........ ------------------------------ |
2020-02-09 02:13:03 |
| 207.154.218.16 | attackbotsspam | Feb 8 17:51:57 web8 sshd\[11320\]: Invalid user wro from 207.154.218.16 Feb 8 17:51:57 web8 sshd\[11320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.218.16 Feb 8 17:51:59 web8 sshd\[11320\]: Failed password for invalid user wro from 207.154.218.16 port 46890 ssh2 Feb 8 17:55:06 web8 sshd\[12936\]: Invalid user hne from 207.154.218.16 Feb 8 17:55:06 web8 sshd\[12936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.218.16 |
2020-02-09 02:08:05 |
| 217.61.1.133 | attack | Feb 8 14:39:03 firewall sshd[30731]: Invalid user wku from 217.61.1.133 Feb 8 14:39:05 firewall sshd[30731]: Failed password for invalid user wku from 217.61.1.133 port 37298 ssh2 Feb 8 14:42:01 firewall sshd[30843]: Invalid user cuj from 217.61.1.133 ... |
2020-02-09 02:26:32 |
| 188.166.185.236 | attackbotsspam | Feb 5 23:22:46 HOST sshd[1331]: Address 188.166.185.236 maps to bubble.jdinnovation.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 5 23:22:48 HOST sshd[1331]: Failed password for invalid user ndw from 188.166.185.236 port 58208 ssh2 Feb 5 23:22:49 HOST sshd[1331]: Received disconnect from 188.166.185.236: 11: Bye Bye [preauth] Feb 5 23:37:36 HOST sshd[1881]: Address 188.166.185.236 maps to bubble.jdinnovation.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 5 23:37:38 HOST sshd[1881]: Failed password for invalid user jdm from 188.166.185.236 port 43914 ssh2 Feb 5 23:37:38 HOST sshd[1881]: Received disconnect from 188.166.185.236: 11: Bye Bye [preauth] Feb 5 23:41:11 HOST sshd[2075]: Address 188.166.185.236 maps to bubble.jdinnovation.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 5 23:41:13 HOST sshd[2075]: Failed password for invalid user fwy from 188.166.185.236 po........ ------------------------------- |
2020-02-09 02:07:14 |
| 218.92.0.175 | attackbots | Feb 8 08:11:46 hpm sshd\[28226\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175 user=root Feb 8 08:11:49 hpm sshd\[28226\]: Failed password for root from 218.92.0.175 port 20562 ssh2 Feb 8 08:11:52 hpm sshd\[28226\]: Failed password for root from 218.92.0.175 port 20562 ssh2 Feb 8 08:11:55 hpm sshd\[28226\]: Failed password for root from 218.92.0.175 port 20562 ssh2 Feb 8 08:11:58 hpm sshd\[28226\]: Failed password for root from 218.92.0.175 port 20562 ssh2 |
2020-02-09 02:25:59 |
| 62.60.206.212 | attackspambots | $f2bV_matches_ltvn |
2020-02-09 02:02:19 |
| 14.243.103.190 | attackspambots | Port probing on unauthorized port 23 |
2020-02-09 02:42:10 |
| 2600:6c54:4180:993:0:b7a2:2361:f866 | attackspambots | My I[ would not ever cause these issues and plus this is a IP6 this is a home computer on the wifi network connected to the router this is thanks to my ex and his miserable wife who stole and stole my digital life and business thanks to charter hiring my ex/criminals! |
2020-02-09 02:02:50 |
| 165.0.126.130 | attack | Brute force attempt |
2020-02-09 02:19:58 |
| 162.243.233.102 | attackbotsspam | Feb 8 18:00:33 sd-53420 sshd\[27910\]: Invalid user ats from 162.243.233.102 Feb 8 18:00:33 sd-53420 sshd\[27910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.233.102 Feb 8 18:00:35 sd-53420 sshd\[27910\]: Failed password for invalid user ats from 162.243.233.102 port 55053 ssh2 Feb 8 18:06:03 sd-53420 sshd\[28440\]: Invalid user ssu from 162.243.233.102 Feb 8 18:06:03 sd-53420 sshd\[28440\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.233.102 ... |
2020-02-09 01:55:10 |
| 184.82.199.216 | attackspambots | Feb 4 00:17:57 new sshd[7735]: Address 184.82.199.216 maps to 184-82-199-0.24.public.sila1-bcr01.myaisfibre.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 4 00:17:59 new sshd[7735]: Failed password for invalid user liwei from 184.82.199.216 port 54763 ssh2 Feb 4 00:17:59 new sshd[7735]: Received disconnect from 184.82.199.216: 11: Bye Bye [preauth] Feb 4 00:21:09 new sshd[8315]: Address 184.82.199.216 maps to 184-82-199-0.24.public.sila1-bcr01.myaisfibre.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 4 00:21:09 new sshd[8315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.82.199.216 user=r.r Feb 4 00:21:11 new sshd[8315]: Failed password for r.r from 184.82.199.216 port 64044 ssh2 Feb 4 00:21:11 new sshd[8315]: Received disconnect from 184.82.199.216: 11: Bye Bye [preauth] Feb 4 00:22:52 new sshd[8913]: Address 184.82.199.216 maps to 184-82-199-0.24.p........ ------------------------------- |
2020-02-09 02:21:06 |