城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): China Tietong
主机名(hostname): unknown
机构(organization): China TieTong Telecommunications Corporation
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.139.197.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46490
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.139.197.40. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019052202 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 24 00:38:40 CST 2019
;; MSG SIZE rcvd: 118
Host 40.197.139.111.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 40.197.139.111.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 37.32.125.145 | attack | ET SCAN Suspicious inbound to mySQL port 3306 - port: 3306 proto: TCP cat: Potentially Bad Traffic |
2020-05-03 07:33:13 |
| 211.218.245.66 | attack | May 3 01:45:07 lukav-desktop sshd\[28491\]: Invalid user mq from 211.218.245.66 May 3 01:45:07 lukav-desktop sshd\[28491\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.218.245.66 May 3 01:45:09 lukav-desktop sshd\[28491\]: Failed password for invalid user mq from 211.218.245.66 port 39344 ssh2 May 3 01:47:40 lukav-desktop sshd\[1021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.218.245.66 user=root May 3 01:47:42 lukav-desktop sshd\[1021\]: Failed password for root from 211.218.245.66 port 52184 ssh2 |
2020-05-03 07:36:38 |
| 89.248.160.178 | attackbots | Triggered: repeated knocking on closed ports. |
2020-05-03 07:17:02 |
| 37.49.226.4 | attack | ET DROP Dshield Block Listed Source group 1 - port: 81 proto: TCP cat: Misc Attack |
2020-05-03 07:32:58 |
| 79.124.62.82 | attack | Multiport scan : 14 ports scanned 33 1337 2006 3502 5901 6668 7289 8005 8484 8891 9529 10005 20002 20089 |
2020-05-03 07:24:23 |
| 87.251.74.243 | attackbots | Multiport scan : 29 ports scanned 1054 1074 1076 1717 1919 1981 2626 3170 3371 3420 4013 5090 5522 6010 6611 8060 8520 8580 9085 10495 10625 10950 25025 25152 31313 40804 47047 51051 64064 |
2020-05-03 07:18:05 |
| 61.250.179.81 | attackbotsspam | May 2 22:49:34 scw-6657dc sshd[11473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.250.179.81 May 2 22:49:34 scw-6657dc sshd[11473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.250.179.81 May 2 22:49:36 scw-6657dc sshd[11473]: Failed password for invalid user sinha from 61.250.179.81 port 36714 ssh2 ... |
2020-05-03 07:43:31 |
| 185.153.198.249 | attack | ET DROP Dshield Block Listed Source group 1 - port: 33892 proto: TCP cat: Misc Attack |
2020-05-03 07:08:29 |
| 79.124.8.95 | attack | 05/02/2020-17:32:42.465373 79.124.8.95 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-05-03 07:25:18 |
| 94.102.56.181 | attackspambots | May 3 00:38:44 debian-2gb-nbg1-2 kernel: \[10718030.454716\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.56.181 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=64936 PROTO=TCP SPT=40429 DPT=5094 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-05-03 07:13:25 |
| 45.121.144.203 | attack | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2020-05-03 07:30:51 |
| 80.82.77.240 | attackspambots | 05/03/2020-01:19:01.803711 80.82.77.240 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-05-03 07:21:07 |
| 45.55.32.34 | attackbotsspam | Invalid user upload from 45.55.32.34 port 55281 |
2020-05-03 07:31:23 |
| 80.82.70.118 | attackspambots | Multiport scan : 7 ports scanned 21 50 110 1080 3307 3790 10001 |
2020-05-03 07:23:04 |
| 66.240.205.34 | attackspam | " " |
2020-05-03 07:26:57 |