城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.72.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29678
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.21.72.129. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400
;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 02:50:29 CST 2022
;; MSG SIZE rcvd: 106Host 129.72.21.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 129.72.21.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 85.93.20.98 | attackspam | ET CINS Active Threat Intelligence Poor Reputation IP group 76 - port: 3390 proto: TCP cat: Misc Attack |
2020-02-25 19:33:06 |
| 89.165.72.175 | attackbots | Automatic report - Port Scan Attack |
2020-02-25 19:32:40 |
| 197.89.96.201 | attackbotsspam | GET /xmlrpc.php HTTP/1.1 |
2020-02-25 19:07:31 |
| 104.248.149.130 | attack | Feb 25 00:51:09 hpm sshd\[18380\]: Invalid user lixx from 104.248.149.130 Feb 25 00:51:09 hpm sshd\[18380\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.130 Feb 25 00:51:11 hpm sshd\[18380\]: Failed password for invalid user lixx from 104.248.149.130 port 51972 ssh2 Feb 25 00:57:46 hpm sshd\[18931\]: Invalid user sinusbot from 104.248.149.130 Feb 25 00:57:46 hpm sshd\[18931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.130 |
2020-02-25 19:11:00 |
| 194.26.29.128 | attack | Feb 25 11:07:58 [host] kernel: [5824063.111299] [U Feb 25 11:11:39 [host] kernel: [5824284.077855] [U Feb 25 11:12:26 [host] kernel: [5824330.981194] [U Feb 25 11:13:31 [host] kernel: [5824396.050676] [U Feb 25 11:33:31 [host] kernel: [5825595.387063] [U Feb 25 11:42:45 [host] kernel: [5826149.249115] [U |
2020-02-25 18:54:27 |
| 1.52.80.169 | attackbots | port scan and connect, tcp 23 (telnet) |
2020-02-25 19:26:37 |
| 188.165.250.228 | attackspambots | Feb 25 11:34:25 localhost sshd\[3492\]: Invalid user lhl from 188.165.250.228 port 53998 Feb 25 11:34:25 localhost sshd\[3492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.250.228 Feb 25 11:34:26 localhost sshd\[3492\]: Failed password for invalid user lhl from 188.165.250.228 port 53998 ssh2 |
2020-02-25 19:09:40 |
| 36.75.65.52 | attack | Port 1433 Scan |
2020-02-25 19:25:02 |
| 207.246.118.148 | attack | REQUESTED PAGE: /wp-login.php |
2020-02-25 19:02:17 |
| 187.162.4.211 | attackspambots | firewall-block, port(s): 23/tcp |
2020-02-25 18:59:31 |
| 192.99.175.179 | attack | Portscan or hack attempt detected by psad/fwsnort |
2020-02-25 19:06:40 |
| 69.163.215.247 | attackbots | WordPress wp-login brute force :: 69.163.215.247 0.080 BYPASS [25/Feb/2020:08:57:54 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2287 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-02-25 19:11:22 |
| 51.38.209.165 | attack | [ 📨 ] From return-leonir.tsi=toptec.net.br@pedindocotacao.we.bs Mon Feb 24 23:23:16 2020 Received: from pedindo-mx-1.pedindocotacao.we.bs ([51.38.209.165]:40787) |
2020-02-25 18:52:08 |
| 23.94.149.178 | attack | #BLOCKED IP-Range (Red Alert!) |
2020-02-25 19:06:57 |
| 95.255.52.120 | attackspam | Brute forcing RDP port 3389 |
2020-02-25 18:58:06 |