城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.44.42.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13949
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;117.44.42.164. IN A
;; AUTHORITY SECTION:
. 214 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400
;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 21:26:26 CST 2022
;; MSG SIZE rcvd: 106
Host 164.42.44.117.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 164.42.44.117.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 101.249.227.246 | bots | 124.235.138.144 - - [23/May/2019:12:41:36 +0800] "GET /favicon.ico HTTP/1.1" 200 4286 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0" 101.249.227.246 - - [23/May/2019:12:41:36 +0800] "GET /favicon.ico HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0" 101.249.227.246 - - [23/May/2019:12:41:37 +0800] "GET /favicon.ico HTTP/1.1" 200 4286 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0" 101.249.227.246 - - [23/May/2019:12:41:38 +0800] "GET /home/favicon.ico HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko" 101.249.227.246 - - [23/May/2019:12:41:39 +0800] "GET /home/favicon.ico HTTP/1.1" 404 209 "-" "Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko" 124.235.138.144 - - [23/May/2019:12:41:42 +0800] "GET /home/favicon.ico HTTP/1.1" 404 209 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0" |
2019-05-23 13:08:05 |
| 220.136.130.164 | attack | TCP port 445 (SMB) attempt blocked by firewall. [2019-05-25 01:11:10] |
2019-05-25 07:40:15 |
| 194.187.123.171 | spam | porra |
2019-06-13 22:03:04 |
| 208.103.30.53 | attack | This IP tried to sign in to my yahoo account System info: Chrome, Mac OS X |
2019-06-20 08:31:55 |
| 185.2.102.147 | bots | 185.2.102.147 - - [10/Jun/2019:18:24:52 +0800] "GET /aastra.cfg HTTP/1.0" 301 194 "-" "Wget/1.12 (linux-gnu)" 185.2.102.147 - - [10/Jun/2019:18:24:54 +0800] "GET / HTTP/1.0" 200 10435 "-" "Wget/1.12 (linux-gnu)" 185.2.102.147 - - [10/Jun/2019:18:25:29 +0800] "GET /000000000000.cfg HTTP/1.0" 301 194 "-" "Wget/1.12 (linux-gnu)" |
2019-06-10 18:26:04 |
| 203.129.219.198 | attack | Bruteforce ssh attacks |
2019-05-28 23:42:03 |
| 80.82.70.39 | attack | Attacking home routers |
2019-06-21 11:23:58 |
| 172.58.221.194 | attack | Google account has been hacked into. Recovery ip address comes up in Providence R.I.. Can you help me access my google account |
2019-06-12 01:31:33 |
| 45.64.98.132 | attack | Feb 25 18:16:36 motanud sshd\\[4637\\]: Invalid user glassfish from 45.64.98.132 port 55478 Feb 25 18:16:36 motanud sshd\\[4637\\]: pam_unix\\(sshd:auth\\): authentication failure\\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.98.132 Feb 25 18:16:38 motanud sshd\\[4637\\]: Failed password for invalid user glassfish from 45.64.98.132 port 55478 ssh2 |
2019-06-21 11:23:42 |
| 198.20.87.98 | bots | 198.20.87.98 - - [20/May/2019:11:39:58 +0800] "GET /robots.txt HTTP/1.1" 301 194 "-" "-" 198.20.87.98 - - [20/May/2019:11:39:59 +0800] "GET /sitemap.xml HTTP/1.1" 301 194 "-" "-" 198.20.87.98 - - [20/May/2019:11:40:00 +0800] "GET /.well-known/security.txt HTTP/1.1" 301 194 "-" "-" 198.20.87.98 - - [20/May/2019:11:40:00 +0800] "GET /favicon.ico HTTP/1.1" 301 194 "-" "python-requests/2.10.0" 198.20.87.98 - - [20/May/2019:11:40:01 +0800] "GET /favicon.ico HTTP/1.1" 200 4286 "-" "python-requests/2.10.0" |
2019-05-20 11:45:29 |
| 198.20.99.130 | attack | 3389BruteforceFW21 |
2019-06-12 10:46:09 |
| 223.221.240.54 | attack | Ты чёрт |
2019-06-15 00:14:50 |
| 119.131.210.74 | botsattack | 119.131.210.74 - - [29/May/2019:12:42:13 +0800] "GET /wls-wsat/CoordinatorPortType HTTP/1.1" 301 194 "-" "-" 119.131.210.74 - - [29/May/2019:12:42:13 +0800] "GET /gs-guide-websocket/803/a8vbaovq/htmlfile?c=_jp.local HTTP/1.1" 404 178 "-" "-" 119.131.210.74 - - [29/May/2019:12:42:13 +0800] "PUT /ddd.jsp/ HTTP/1.1" 301 194 "-" "-" 119.131.210.74 - - [29/May/2019:12:42:13 +0800] "GET /ddd.jsp HTTP/1.1" 301 194 "-" "-" 119.131.210.74 - - [29/May/2019:12:42:13 +0800] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 178 "-" "-" 119.131.210.74 - - [29/May/2019:12:42:14 +0800] "POST /website/blog/ HTTP/1.1" 404 178 "-" "-" 119.131.210.74 - - [29/May/2019:12:42:14 +0800] "GET /core/install.php?rewrite=ok&langcode=en HTTP/1.1" 404 178 "-" "-" |
2019-05-29 13:19:21 |
| 119.131.210.74 | attack | 119.131.210.74 - - [29/May/2019:12:42:12 +0800] "GET /gs-guide-websocket/803/a8vbaovq/htmlfile?c=_jp.local HTTP/1.1" 301 194 "-" "-"
119.131.210.74 - - [29/May/2019:12:42:12 +0800] "GET /console/login/LoginForm.jsp HTTP/1.1" 301 194 "-" "-"
119.131.210.74 - - [29/May/2019:12:42:12 +0800] "POST /website/blog/ HTTP/1.1" 301 194 "-" "-"
119.131.210.74 - - [29/May/2019:12:42:13 +0800] "GET /core/install.php?rewrite=ok&langcode=en HTTP/1.1" 301 194 "-" "-"
119.131.210.74 - - [29/May/2019:12:42:13 +0800] "POST /RPC2 HTTP/1.1" 301 194 "-" "-"
119.131.210.74 - - [29/May/2019:12:42:13 +0800] "GET /users HTTP/1.1" 301 194 "-" "-"
119.131.210.74 - - [29/May/2019:12:42:13 +0800] "POST /flex2gateway/amf HTTP/1.1" 301 194 "-" "-"
119.131.210.74 - - [29/May/2019:12:42:13 +0800] "GET /?name={{1024*1023}} HTTP/1.1" 301 194 "-" "-"
119.131.210.74 - - [29/May/2019:12:42:13 +0800] "GET /ws_utc/resources/setting/options/general HTTP/1.1" 301 194 "-" "-" |
2019-05-29 13:16:54 |
| 54.36.33.20 | botsattack | 54.36.33.20 - - [27/May/2019:09:09:30 +0800] "GET /?q=node/add HTTP/1.1" 200 3321 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36" 54.36.33.20 - - [27/May/2019:09:09:31 +0800] "GET /?q=user HTTP/1.1" 200 3320 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36" 54.36.33.20 - - [27/May/2019:09:09:31 +0800] "GET /check-ip/103.118.112.110 HTTP/1.1" 200 9969 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36" 54.36.33.20 - - [27/May/2019:09:09:32 +0800] "GET /?q=user/register HTTP/1.1" 200 3324 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36" 54.36.33.20 - - [27/May/2019:09:09:32 +0800] "GET /check-ip/191.172.216.105 HTTP/1.1" 200 9968 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36" |
2019-05-27 09:25:46 |