城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 75.14.190.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18650
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;75.14.190.199. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012802 1800 900 604800 86400
;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 07:03:16 CST 2025
;; MSG SIZE rcvd: 106b'Host 199.190.14.75.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 75.14.190.199.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 187.74.95.176 | attackspam | Automatic report - Port Scan Attack |
2019-08-26 10:11:51 |
| 58.211.161.74 | attackbotsspam | RDP Brute-Force (Grieskirchen RZ1) |
2019-08-26 09:48:35 |
| 101.255.56.42 | attackbotsspam | ... |
2019-08-26 09:44:51 |
| 114.39.147.19 | attack | Honeypot attack, port: 23, PTR: 114-39-147-19.dynamic-ip.hinet.net. |
2019-08-26 10:19:22 |
| 178.93.20.164 | attackbotsspam | Aug 25 18:30:21 mxgate1 postfix/postscreen[18951]: CONNECT from [178.93.20.164]:44226 to [176.31.12.44]:25 Aug 25 18:30:21 mxgate1 postfix/dnsblog[18988]: addr 178.93.20.164 listed by domain zen.spamhaus.org as 127.0.0.3 Aug 25 18:30:21 mxgate1 postfix/dnsblog[18988]: addr 178.93.20.164 listed by domain zen.spamhaus.org as 127.0.0.11 Aug 25 18:30:21 mxgate1 postfix/dnsblog[18988]: addr 178.93.20.164 listed by domain zen.spamhaus.org as 127.0.0.4 Aug 25 18:30:21 mxgate1 postfix/dnsblog[18989]: addr 178.93.20.164 listed by domain cbl.abuseat.org as 127.0.0.2 Aug 25 18:30:21 mxgate1 postfix/dnsblog[18990]: addr 178.93.20.164 listed by domain bl.spamcop.net as 127.0.0.2 Aug 25 18:30:21 mxgate1 postfix/dnsblog[18987]: addr 178.93.20.164 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 25 18:30:22 mxgate1 postfix/dnsblog[18986]: addr 178.93.20.164 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Aug 25 18:30:27 mxgate1 postfix/postscreen[18951]: DNSBL rank 6 for [178........ ------------------------------- |
2019-08-26 10:05:06 |
| 71.237.171.150 | attackbotsspam | Aug 26 00:55:14 rpi sshd[11692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.237.171.150 Aug 26 00:55:16 rpi sshd[11692]: Failed password for invalid user shiny from 71.237.171.150 port 51154 ssh2 |
2019-08-26 10:06:13 |
| 98.143.148.45 | attackbotsspam | Aug 26 01:16:04 debian sshd\[23772\]: Invalid user 123456 from 98.143.148.45 port 59208 Aug 26 01:16:04 debian sshd\[23772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.143.148.45 ... |
2019-08-26 09:51:30 |
| 182.70.253.202 | attack | Aug 25 10:42:48 php2 sshd\[11446\]: Invalid user talk from 182.70.253.202 Aug 25 10:42:48 php2 sshd\[11446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.70.253.202 Aug 25 10:42:50 php2 sshd\[11446\]: Failed password for invalid user talk from 182.70.253.202 port 54183 ssh2 Aug 25 10:47:53 php2 sshd\[12235\]: Invalid user mike from 182.70.253.202 Aug 25 10:47:53 php2 sshd\[12235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.70.253.202 |
2019-08-26 09:59:08 |
| 58.249.123.38 | attackspam | SSH bruteforce (Triggered fail2ban) |
2019-08-26 10:13:52 |
| 189.45.42.148 | attackbots | Aug 26 01:23:13 our-server-hostname postfix/smtpd[6486]: connect from unknown[189.45.42.148] Aug x@x Aug 26 01:23:16 our-server-hostname postfix/smtpd[6486]: lost connection after RCPT from unknown[189.45.42.148] Aug 26 01:23:16 our-server-hostname postfix/smtpd[6486]: disconnect from unknown[189.45.42.148] Aug 26 01:47:47 our-server-hostname postfix/smtpd[12816]: connect from unknown[189.45.42.148] Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x Aug 26 01:47:53 our-server-hostname postfix/smtpd[12816]: lost connection after RCPT from unknown[189.45.42.148] Aug 26 01:47:53 our-server-hostname postfix/smtpd[12816]: disconnect from unknown[189.45.42.148] Aug 26 01:50:10 our-server-hostname postfix/smtpd[10918]: connect from unknown[189.45.42.148] Aug x@x Aug 26 01:50:13 our-server-hostname postfix/smtpd[10918]: lost connection after RCPT from unknown[189.45.42.148] Aug 26 01:50:13 our-server-hostname postfix/smtpd[10918]: disconnect from unknown[189.45.42.148] Aug 26 02:0........ ------------------------------- |
2019-08-26 10:10:34 |
| 189.145.120.194 | attackspambots | Port Scan: TCP/445 |
2019-08-26 10:14:59 |
| 114.204.218.154 | attackspam | Aug 26 00:56:46 marvibiene sshd[27106]: Invalid user school from 114.204.218.154 port 33351 Aug 26 00:56:46 marvibiene sshd[27106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.204.218.154 Aug 26 00:56:46 marvibiene sshd[27106]: Invalid user school from 114.204.218.154 port 33351 Aug 26 00:56:49 marvibiene sshd[27106]: Failed password for invalid user school from 114.204.218.154 port 33351 ssh2 ... |
2019-08-26 09:48:16 |
| 49.231.148.149 | attackspam | Honeypot attack, port: 445, PTR: PTR record not found |
2019-08-26 10:12:57 |
| 223.99.194.168 | attackspam | Honeypot attack, port: 23, PTR: PTR record not found |
2019-08-26 10:00:29 |
| 51.15.118.122 | attack | Aug 25 18:09:52 vps200512 sshd\[10803\]: Invalid user admin from 51.15.118.122 Aug 25 18:09:52 vps200512 sshd\[10803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.118.122 Aug 25 18:09:54 vps200512 sshd\[10803\]: Failed password for invalid user admin from 51.15.118.122 port 56556 ssh2 Aug 25 18:13:50 vps200512 sshd\[10866\]: Invalid user wq from 51.15.118.122 Aug 25 18:13:50 vps200512 sshd\[10866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.118.122 |
2019-08-26 10:02:27 |