城市(city): unknown
省份(region): unknown
国家(country): Germany
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 53.75.42.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50963
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;53.75.42.73. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020400 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 15:30:18 CST 2025
;; MSG SIZE rcvd: 104Host 73.42.75.53.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 73.42.75.53.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 95.45.235.108 | attackspambots | 20/2/27@17:46:57: FAIL: IoT-Telnet address from=95.45.235.108 ... |
2020-02-28 07:46:18 |
| 112.85.42.188 | attack | 02/27/2020-18:49:33.224830 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan |
2020-02-28 07:49:41 |
| 200.56.45.49 | attack | Invalid user wangli from 200.56.45.49 port 52240 |
2020-02-28 07:55:21 |
| 103.28.52.84 | attackspam | Feb 28 01:03:12 sd-53420 sshd\[20570\]: Invalid user password from 103.28.52.84 Feb 28 01:03:12 sd-53420 sshd\[20570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.52.84 Feb 28 01:03:14 sd-53420 sshd\[20570\]: Failed password for invalid user password from 103.28.52.84 port 59214 ssh2 Feb 28 01:09:06 sd-53420 sshd\[21337\]: Invalid user nameserver from 103.28.52.84 Feb 28 01:09:06 sd-53420 sshd\[21337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.52.84 ... |
2020-02-28 08:10:50 |
| 94.77.225.243 | attackspambots | Port probing on unauthorized port 23 |
2020-02-28 08:22:57 |
| 185.36.81.23 | attack | $f2bV_matches |
2020-02-28 08:09:02 |
| 200.89.178.140 | attackbots | Feb 28 00:49:01 localhost sshd\[24030\]: Invalid user zll from 200.89.178.140 port 53782 Feb 28 00:49:01 localhost sshd\[24030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.178.140 Feb 28 00:49:03 localhost sshd\[24030\]: Failed password for invalid user zll from 200.89.178.140 port 53782 ssh2 |
2020-02-28 07:53:42 |
| 49.12.5.231 | attack | Potential Directory Traversal Attempt. |
2020-02-28 08:20:59 |
| 218.92.0.138 | attackbots | Feb 28 00:50:55 tuxlinux sshd[33501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root ... |
2020-02-28 07:51:38 |
| 223.97.196.224 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-28 08:17:51 |
| 23.116.185.114 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-28 08:14:58 |
| 46.29.163.22 | attack | Feb 28 00:14:36 localhost sshd\[53312\]: Invalid user airflow from 46.29.163.22 port 49022 Feb 28 00:14:36 localhost sshd\[53312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.29.163.22 Feb 28 00:14:39 localhost sshd\[53312\]: Failed password for invalid user airflow from 46.29.163.22 port 49022 ssh2 Feb 28 00:20:58 localhost sshd\[53420\]: Invalid user storm from 46.29.163.22 port 35068 Feb 28 00:20:58 localhost sshd\[53420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.29.163.22 ... |
2020-02-28 08:25:04 |
| 125.166.119.156 | attackspam | Feb 27 23:46:06 h2177944 kernel: \[6041313.244224\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=125.166.119.156 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=27179 PROTO=TCP SPT=22391 DPT=23 WINDOW=59870 RES=0x00 SYN URGP=0 Feb 27 23:46:06 h2177944 kernel: \[6041313.244241\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=125.166.119.156 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=27179 PROTO=TCP SPT=22391 DPT=23 WINDOW=59870 RES=0x00 SYN URGP=0 Feb 27 23:46:22 h2177944 kernel: \[6041329.215531\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=125.166.119.156 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=27179 PROTO=TCP SPT=22391 DPT=23 WINDOW=59870 RES=0x00 SYN URGP=0 Feb 27 23:46:22 h2177944 kernel: \[6041329.215546\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=125.166.119.156 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=27179 PROTO=TCP SPT=22391 DPT=23 WINDOW=59870 RES=0x00 SYN URGP=0 Feb 27 23:46:23 h2177944 kernel: \[6041329.928379\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=125.166.119.156 DST=85.214.117 |
2020-02-28 08:16:42 |
| 201.234.66.133 | attackspam | Feb 25 06:58:32 uapps sshd[17931]: reveeclipse mapping checking getaddrinfo for 201.234.66-133.static.impsat.com.co [201.234.66.133] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 25 06:58:32 uapps sshd[17931]: User r.r from 201.234.66.133 not allowed because not listed in AllowUsers Feb 25 06:58:32 uapps sshd[17931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.234.66.133 user=r.r Feb 25 06:58:34 uapps sshd[17931]: Failed password for invalid user r.r from 201.234.66.133 port 53980 ssh2 Feb 25 06:58:34 uapps sshd[17931]: Received disconnect from 201.234.66.133: 11: Bye Bye [preauth] Feb 25 07:59:17 uapps sshd[18425]: reveeclipse mapping checking getaddrinfo for 201.234.66-133.static.impsat.com.co [201.234.66.133] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 25 07:59:19 uapps sshd[18425]: Failed password for invalid user system from 201.234.66.133 port 54811 ssh2 Feb 25 07:59:19 uapps sshd[18425]: Received disconnect from 201.234.66.1........ ------------------------------- |
2020-02-28 08:04:02 |
| 24.50.31.248 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-28 07:47:06 |