城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.16.44.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35576
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.16.44.42. IN A
;; AUTHORITY SECTION:
. 320 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400
;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 01:37:23 CST 2022
;; MSG SIZE rcvd: 105Host 42.44.16.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 42.44.16.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 89.248.168.202 | attackspam | Feb 26 18:08:33 debian-2gb-nbg1-2 kernel: \[4996108.916441\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.168.202 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=32637 PROTO=TCP SPT=53577 DPT=6213 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-02-27 01:24:05 |
| 5.101.0.209 | attackbots | 5.101.0.209, -, 2/25/2020, 20:06:56, W3SVC1, be-par, 10.0.4.5, 211, 324, 1477, 404, 2, GET, /index.php, s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP, 5.101.0.209, -, 2/25/2020, 20:11:18, W3SVC1, be-par, 10.0.4.5, 2914, 244, 44719, 200, 0, GET, /, XDEBUG_SESSION_START=phpstorm, |
2020-02-27 01:34:50 |
| 176.113.115.185 | attackbotsspam | scans 11 times in preceeding hours on the ports (in chronological order) 12000 55001 17000 3889 54000 8009 53000 5889 43000 5555 1318 resulting in total of 65 scans from 176.113.115.0/24 block. |
2020-02-27 01:13:41 |
| 194.26.29.130 | attack | IP: 194.26.29.130
Ports affected
World Wide Web HTTP (80)
Abuse Confidence rating 100%
ASN Details
AS23470 RELIABLESITE
Russia (RU)
CIDR 194.26.29.0/24
Log Date: 26/02/2020 4:08:29 PM UTC |
2020-02-27 01:05:16 |
| 125.64.94.220 | attackspam | Port 38 scan denied |
2020-02-27 01:16:54 |
| 89.248.167.131 | attack | 9001/tcp 1515/tcp 3790/tcp... [2019-12-27/2020-02-26]301pkt,174pt.(tcp),35pt.(udp) |
2020-02-27 01:25:22 |
| 51.91.212.81 | attackspam | Port 8444 scan denied |
2020-02-27 01:31:47 |
| 89.248.168.157 | attackspam | " " |
2020-02-27 01:24:39 |
| 51.178.78.152 | attack | Port 2087 scan denied |
2020-02-27 01:31:16 |
| 185.200.118.55 | attackspam | Feb 26 14:36:14 debian-2gb-nbg1-2 kernel: \[4983369.963202\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.200.118.55 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=TCP SPT=57194 DPT=1723 WINDOW=65535 RES=0x00 SYN URGP=0 |
2020-02-27 01:40:51 |
| 194.26.29.104 | attackbotsspam | scans 44 times in preceeding hours on the ports (in chronological order) 34170 34207 34143 34455 34265 34256 34307 34412 34025 34291 34152 34275 34421 34130 34109 34032 34011 34240 34211 34224 34428 34145 34300 34024 34363 34203 34388 34219 34338 34492 34249 34212 34292 34050 34006 34135 34018 34354 34474 34446 34390 34052 34123 34090 resulting in total of 236 scans from 194.26.29.0/24 block. |
2020-02-27 01:06:23 |
| 185.176.27.34 | attack | ET DROP Dshield Block Listed Source group 1 - port: 17900 proto: TCP cat: Misc Attack |
2020-02-27 01:45:23 |
| 172.105.210.107 | attackbotsspam | scans 1 times in preceeding hours on the ports (in chronological order) 8009 resulting in total of 6 scans from 172.104.0.0/15 block. |
2020-02-27 01:14:17 |
| 185.176.27.190 | attackspam | ET DROP Dshield Block Listed Source group 1 - port: 55489 proto: TCP cat: Misc Attack |
2020-02-27 01:41:55 |
| 185.176.27.102 | attackspambots | ET DROP Dshield Block Listed Source group 1 - port: 17887 proto: TCP cat: Misc Attack |
2020-02-27 01:43:18 |