城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.114.80.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19185
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;68.114.80.4. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020602 1800 900 604800 86400
;; Query time: 48 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 07:37:20 CST 2025
;; MSG SIZE rcvd: 104
4.80.114.68.in-addr.arpa domain name pointer syn-068-114-080-004.res.spectrum.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
4.80.114.68.in-addr.arpa name = syn-068-114-080-004.res.spectrum.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 122.224.131.186 | attackbots | $f2bV_matches |
2020-03-25 14:05:13 |
| 148.72.23.58 | attackspam | 148.72.23.58 - - [25/Mar/2020:05:19:50 +0100] "GET /wp-login.php HTTP/1.1" 200 5688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.72.23.58 - - [25/Mar/2020:05:19:54 +0100] "POST /wp-login.php HTTP/1.1" 200 6587 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.72.23.58 - - [25/Mar/2020:05:19:57 +0100] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-03-25 13:32:11 |
| 218.240.137.68 | attackspam | Repeated brute force against a port |
2020-03-25 13:41:57 |
| 222.175.232.114 | attackspambots | Mar 25 06:56:07 vps691689 sshd[29636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.175.232.114 Mar 25 06:56:08 vps691689 sshd[29636]: Failed password for invalid user harmeet from 222.175.232.114 port 53760 ssh2 Mar 25 07:02:14 vps691689 sshd[29812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.175.232.114 ... |
2020-03-25 14:03:42 |
| 14.166.50.243 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 25-03-2020 03:55:14. |
2020-03-25 13:31:43 |
| 89.40.114.6 | attackbots | 2020-03-25T07:02:08.145113vps751288.ovh.net sshd\[8959\]: Invalid user samba from 89.40.114.6 port 37500 2020-03-25T07:02:08.157332vps751288.ovh.net sshd\[8959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mokavar.hu 2020-03-25T07:02:10.090755vps751288.ovh.net sshd\[8959\]: Failed password for invalid user samba from 89.40.114.6 port 37500 ssh2 2020-03-25T07:06:53.563938vps751288.ovh.net sshd\[8992\]: Invalid user ikeda from 89.40.114.6 port 52470 2020-03-25T07:06:53.570847vps751288.ovh.net sshd\[8992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mokavar.hu |
2020-03-25 14:19:43 |
| 46.101.103.207 | attackspam | Mar 25 03:46:28 vlre-nyc-1 sshd\[6966\]: Invalid user nagios from 46.101.103.207 Mar 25 03:46:28 vlre-nyc-1 sshd\[6966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.103.207 Mar 25 03:46:30 vlre-nyc-1 sshd\[6966\]: Failed password for invalid user nagios from 46.101.103.207 port 42538 ssh2 Mar 25 03:54:56 vlre-nyc-1 sshd\[7118\]: Invalid user xj from 46.101.103.207 Mar 25 03:54:56 vlre-nyc-1 sshd\[7118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.103.207 ... |
2020-03-25 13:46:28 |
| 182.52.30.94 | attackbots | $f2bV_matches |
2020-03-25 13:53:16 |
| 202.79.168.214 | attack | Lines containing failures of 202.79.168.214 Mar 24 04:15:44 f sshd[6859]: Invalid user jy from 202.79.168.214 port 40674 Mar 24 04:15:44 f sshd[6859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.168.214 Mar 24 04:15:46 f sshd[6859]: Failed password for invalid user jy from 202.79.168.214 port 40674 ssh2 Mar 24 04:15:46 f sshd[6859]: Received disconnect from 202.79.168.214 port 40674:11: Bye Bye [preauth] Mar 24 04:15:46 f sshd[6859]: Disconnected from 202.79.168.214 port 40674 [preauth] Mar 24 04:25:43 f sshd[7084]: Invalid user testnet from 202.79.168.214 port 43530 Mar 24 04:25:43 f sshd[7084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.168.214 Mar 24 04:25:45 f sshd[7084]: Failed password for invalid user testnet from 202.79.168.214 port 43530 ssh2 Mar 24 04:25:45 f sshd[7084]: Received disconnect from 202.79.168.214 port 43530:11: Bye Bye [preauth] Mar 24 04:25:45 f........ ------------------------------ |
2020-03-25 14:00:42 |
| 51.83.74.203 | attack | Mar 25 06:21:19 legacy sshd[24301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.203 Mar 25 06:21:20 legacy sshd[24301]: Failed password for invalid user lc from 51.83.74.203 port 60343 ssh2 Mar 25 06:25:06 legacy sshd[24460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.203 ... |
2020-03-25 13:55:36 |
| 45.249.92.66 | attackbotsspam | Invalid user informix from 45.249.92.66 port 48278 |
2020-03-25 14:15:19 |
| 106.12.33.174 | attack | Mar 25 05:42:31 game-panel sshd[12969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.174 Mar 25 05:42:33 game-panel sshd[12969]: Failed password for invalid user user from 106.12.33.174 port 34416 ssh2 Mar 25 05:47:32 game-panel sshd[13144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.174 |
2020-03-25 14:08:52 |
| 80.82.77.189 | attackspambots | 03/25/2020-01:33:25.844887 80.82.77.189 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-03-25 13:53:48 |
| 116.107.125.92 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 25-03-2020 03:55:13. |
2020-03-25 13:33:08 |
| 46.105.99.163 | attackbotsspam | (mod_security) mod_security (id:7) triggered by 46.105.99.163 (FR/France/ns382403.ip-46-105-99.eu): 5 in the last 300 secs |
2020-03-25 13:34:20 |