城市(city): La Grande
省份(region): Oregon
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): Frontier Communications of America, Inc.
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.169.156.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21357
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.169.156.12. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019062600 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 27 01:41:14 CST 2019
;; MSG SIZE rcvd: 11812.156.169.104.in-addr.arpa domain name pointer static-104-169-156-12.ftwy.in.frontiernet.net.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
12.156.169.104.in-addr.arpa name = static-104-169-156-12.ftwy.in.frontiernet.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 37.49.230.95 | attackspambots | 12/25/2019-00:58:59.650722 37.49.230.95 Protocol: 17 ET SCAN Sipvicious Scan |
2019-12-25 08:01:52 |
| 185.211.245.198 | attack | Dec 24 18:30:21 web1 postfix/smtpd[17202]: warning: unknown[185.211.245.198]: SASL PLAIN authentication failed: authentication failure ... |
2019-12-25 07:53:26 |
| 157.245.188.167 | attackspambots | 3389BruteforceFW22 |
2019-12-25 08:16:52 |
| 66.94.126.50 | attack | Dec 24 23:23:32 raspberrypi sshd\[17448\]: Invalid user denied from 66.94.126.50Dec 24 23:23:34 raspberrypi sshd\[17448\]: Failed password for invalid user denied from 66.94.126.50 port 46208 ssh2Dec 24 23:30:06 raspberrypi sshd\[17824\]: Invalid user alejos from 66.94.126.50 ... |
2019-12-25 08:30:24 |
| 96.93.151.150 | attack | Dec 25 00:09:36 HOST sshd[18204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96-93-151-150-static.hfc.comcastbusiness.net Dec 25 00:09:38 HOST sshd[18204]: Failed password for invalid user lk from 96.93.151.150 port 58671 ssh2 Dec 25 00:09:38 HOST sshd[18204]: Received disconnect from 96.93.151.150: 11: Bye Bye [preauth] Dec 25 00:19:05 HOST sshd[18406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96-93-151-150-static.hfc.comcastbusiness.net Dec 25 00:19:07 HOST sshd[18406]: Failed password for invalid user ocean from 96.93.151.150 port 46379 ssh2 Dec 25 00:19:07 HOST sshd[18406]: Received disconnect from 96.93.151.150: 11: Bye Bye [preauth] Dec 25 00:21:56 HOST sshd[18488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96-93-151-150-static.hfc.comcastbusiness.net Dec 25 00:21:58 HOST sshd[18488]: Failed password for invalid user duffany fro........ ------------------------------- |
2019-12-25 08:30:11 |
| 159.203.201.172 | attackbots | Unauthorized connection attempt detected from IP address 159.203.201.172 to port 80 |
2019-12-25 08:08:34 |
| 165.227.109.3 | attack | WordPress wp-login brute force :: 165.227.109.3 0.108 BYPASS [24/Dec/2019:23:27:37 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2287 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-12-25 08:06:15 |
| 52.46.35.165 | attackspambots | Automatic report generated by Wazuh |
2019-12-25 07:56:35 |
| 175.195.124.138 | attack | Unauthorized connection attempt detected from IP address 175.195.124.138 to port 2323 |
2019-12-25 08:00:15 |
| 185.176.27.54 | attackspambots | 12/24/2019-18:27:45.819213 185.176.27.54 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-12-25 07:58:35 |
| 101.91.200.186 | attack | Dec 24 03:13:06 fwweb01 sshd[24446]: Invalid user test from 101.91.200.186 Dec 24 03:13:06 fwweb01 sshd[24446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.200.186 Dec 24 03:13:08 fwweb01 sshd[24446]: Failed password for invalid user test from 101.91.200.186 port 49392 ssh2 Dec 24 03:13:08 fwweb01 sshd[24446]: Received disconnect from 101.91.200.186: 11: Bye Bye [preauth] Dec 24 03:39:01 fwweb01 sshd[25541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.200.186 user=backup Dec 24 03:39:03 fwweb01 sshd[25541]: Failed password for backup from 101.91.200.186 port 34674 ssh2 Dec 24 03:39:03 fwweb01 sshd[25541]: Received disconnect from 101.91.200.186: 11: Bye Bye [preauth] Dec 24 03:42:24 fwweb01 sshd[25712]: Invalid user info from 101.91.200.186 Dec 24 03:42:24 fwweb01 sshd[25712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101......... ------------------------------- |
2019-12-25 07:56:21 |
| 128.201.59.93 | attack | port scan and connect, tcp 23 (telnet) |
2019-12-25 08:03:59 |
| 123.16.62.200 | attack | Automatic report - SSH Brute-Force Attack |
2019-12-25 07:55:25 |
| 103.243.164.254 | attackspam | Dec 25 00:39:29 silence02 sshd[3266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.164.254 Dec 25 00:39:32 silence02 sshd[3266]: Failed password for invalid user laraine from 103.243.164.254 port 60294 ssh2 Dec 25 00:42:14 silence02 sshd[3391]: Failed password for mysql from 103.243.164.254 port 59324 ssh2 |
2019-12-25 07:53:59 |
| 218.92.0.168 | attackbots | Dec 24 14:10:45 php1 sshd\[4480\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root Dec 24 14:10:47 php1 sshd\[4480\]: Failed password for root from 218.92.0.168 port 27392 ssh2 Dec 24 14:10:51 php1 sshd\[4480\]: Failed password for root from 218.92.0.168 port 27392 ssh2 Dec 24 14:10:54 php1 sshd\[4480\]: Failed password for root from 218.92.0.168 port 27392 ssh2 Dec 24 14:11:11 php1 sshd\[4528\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root |
2019-12-25 08:25:47 |