城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.194.236.192
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17962
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.194.236.192. IN A
;; AUTHORITY SECTION:
. 303 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019121101 1800 900 604800 86400
;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 06:41:48 CST 2019
;; MSG SIZE rcvd: 118Host 192.236.194.42.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 100.100.2.136
Address: 100.100.2.136#53
** server can't find 192.236.194.42.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 14.249.126.191 | attack | 1576822991 - 12/20/2019 07:23:11 Host: 14.249.126.191/14.249.126.191 Port: 445 TCP Blocked |
2019-12-20 22:17:02 |
| 103.244.241.98 | attack | TCP Port Scanning |
2019-12-20 22:05:11 |
| 121.150.157.123 | attackbotsspam | Shenzhen TVT DVR Remote Code Execution Vulnerability |
2019-12-20 22:26:25 |
| 45.146.201.226 | attack | Lines containing failures of 45.146.201.226 Dec 20 07:02:05 shared04 postfix/smtpd[9374]: connect from pigment.jovenesarrechas.com[45.146.201.226] Dec 20 07:02:05 shared04 policyd-spf[16108]: prepend Received-SPF: None (mailfrom) identhostnamey=mailfrom; client-ip=45.146.201.226; helo=pigment.skwed.com; envelope-from=x@x Dec x@x Dec 20 07:02:05 shared04 postfix/smtpd[9374]: disconnect from pigment.jovenesarrechas.com[45.146.201.226] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 20 07:04:45 shared04 postfix/smtpd[9302]: connect from pigment.jovenesarrechas.com[45.146.201.226] Dec 20 07:04:45 shared04 policyd-spf[14845]: prepend Received-SPF: None (mailfrom) identhostnamey=mailfrom; client-ip=45.146.201.226; helo=pigment.skwed.com; envelope-from=x@x Dec x@x Dec 20 07:04:45 shared04 postfix/smtpd[9302]: disconnect from pigment.jovenesarrechas.com[45.146.201.226] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 20 07:06:21 shared04 postfix/smtpd[........ ------------------------------ |
2019-12-20 21:58:34 |
| 203.99.62.158 | attack | Dec 20 12:19:30 Ubuntu-1404-trusty-64-minimal sshd\[11597\]: Invalid user csz from 203.99.62.158 Dec 20 12:19:30 Ubuntu-1404-trusty-64-minimal sshd\[11597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.99.62.158 Dec 20 12:19:31 Ubuntu-1404-trusty-64-minimal sshd\[11597\]: Failed password for invalid user csz from 203.99.62.158 port 12632 ssh2 Dec 20 12:25:55 Ubuntu-1404-trusty-64-minimal sshd\[16429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.99.62.158 user=root Dec 20 12:25:57 Ubuntu-1404-trusty-64-minimal sshd\[16429\]: Failed password for root from 203.99.62.158 port 44924 ssh2 |
2019-12-20 22:19:21 |
| 54.39.138.246 | attack | Dec 19 22:20:14 auw2 sshd\[29951\]: Invalid user marez from 54.39.138.246 Dec 19 22:20:14 auw2 sshd\[29951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip246.ip-54-39-138.net Dec 19 22:20:16 auw2 sshd\[29951\]: Failed password for invalid user marez from 54.39.138.246 port 36860 ssh2 Dec 19 22:25:27 auw2 sshd\[30680\]: Invalid user udayasekaran from 54.39.138.246 Dec 19 22:25:27 auw2 sshd\[30680\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip246.ip-54-39-138.net |
2019-12-20 22:20:33 |
| 139.199.58.118 | attack | Invalid user postgres from 139.199.58.118 port 35540 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.58.118 Failed password for invalid user postgres from 139.199.58.118 port 35540 ssh2 Invalid user malley from 139.199.58.118 port 52864 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.58.118 |
2019-12-20 22:07:33 |
| 182.61.179.164 | attackbotsspam | Dec 20 13:58:34 cp sshd[13624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.179.164 |
2019-12-20 22:02:41 |
| 186.46.255.74 | attackbotsspam | Brute force attempt |
2019-12-20 21:45:05 |
| 159.203.201.148 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-20 22:08:22 |
| 95.6.38.152 | attack | 1576823018 - 12/20/2019 07:23:38 Host: 95.6.38.152/95.6.38.152 Port: 445 TCP Blocked |
2019-12-20 21:48:09 |
| 159.226.251.162 | attack | [ssh] SSH attack |
2019-12-20 21:52:56 |
| 159.203.177.49 | attackbots | Invalid user ian from 159.203.177.49 port 40928 |
2019-12-20 22:22:27 |
| 210.202.8.64 | attackbots | $f2bV_matches |
2019-12-20 21:55:51 |
| 49.167.65.93 | attackspam | TCP Port Scanning |
2019-12-20 21:57:58 |