城市(city): San Antonio
省份(region): Texas
国家(country): United States
运营商(isp): AT&T
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.138.170.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;12.138.170.134. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400
;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 13:12:51 CST 2025
;; MSG SIZE rcvd: 107Host 134.170.138.12.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 134.170.138.12.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 117.4.69.64 | attack | 20/9/10@12:52:22: FAIL: Alarm-Intrusion address from=117.4.69.64 ... |
2020-09-12 01:58:36 |
| 40.77.167.219 | attackspambots | Automated report (2020-09-10T20:59:38-07:00). Query command injection attempt detected. |
2020-09-12 01:33:09 |
| 111.93.205.186 | attackbots | Sep 11 16:28:20 home sshd[1712620]: Invalid user januario from 111.93.205.186 port 48157 Sep 11 16:28:20 home sshd[1712620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.205.186 Sep 11 16:28:20 home sshd[1712620]: Invalid user januario from 111.93.205.186 port 48157 Sep 11 16:28:23 home sshd[1712620]: Failed password for invalid user januario from 111.93.205.186 port 48157 ssh2 Sep 11 16:31:11 home sshd[1712882]: Invalid user Google@123 from 111.93.205.186 port 60296 ... |
2020-09-12 01:48:14 |
| 137.226.113.10 | attack | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-09-12 01:59:28 |
| 194.225.228.98 | attackbots | 3389BruteforceStormFW23 |
2020-09-12 01:52:09 |
| 132.232.132.103 | attackbotsspam | $f2bV_matches |
2020-09-12 01:59:40 |
| 24.137.101.210 | attack | Sep 11 17:01:02 vps639187 sshd\[11315\]: Invalid user admin from 24.137.101.210 port 46037 Sep 11 17:01:02 vps639187 sshd\[11315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.137.101.210 Sep 11 17:01:05 vps639187 sshd\[11315\]: Failed password for invalid user admin from 24.137.101.210 port 46037 ssh2 ... |
2020-09-12 01:59:06 |
| 101.206.239.206 | attackbots | Sep 9 17:20:08 server6 sshd[12569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.206.239.206 user=r.r Sep 9 17:20:10 server6 sshd[12569]: Failed password for r.r from 101.206.239.206 port 45518 ssh2 Sep 9 17:20:10 server6 sshd[12569]: Received disconnect from 101.206.239.206: 11: Bye Bye [preauth] Sep 9 17:29:56 server6 sshd[15497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.206.239.206 user=r.r Sep 9 17:29:57 server6 sshd[15497]: Failed password for r.r from 101.206.239.206 port 47838 ssh2 Sep 9 17:29:58 server6 sshd[15497]: Received disconnect from 101.206.239.206: 11: Bye Bye [preauth] Sep 9 17:34:24 server6 sshd[17572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.206.239.206 user=r.r Sep 9 17:34:27 server6 sshd[17572]: Failed password for r.r from 101.206.239.206 port 42122 ssh2 Sep 9 17:34:27 server6 sshd[17572]........ ------------------------------- |
2020-09-12 01:34:19 |
| 185.234.218.83 | attackspambots | Sep 11 16:53:13 mail postfix/smtpd\[26403\]: warning: unknown\[185.234.218.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 11 17:33:06 mail postfix/smtpd\[27961\]: warning: unknown\[185.234.218.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 11 18:12:41 mail postfix/smtpd\[29130\]: warning: unknown\[185.234.218.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 11 18:51:35 mail postfix/smtpd\[30607\]: warning: unknown\[185.234.218.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ |
2020-09-12 01:30:27 |
| 64.225.119.164 | attack | Sep 11 17:49:00 sshgateway sshd\[19054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.119.164 user=root Sep 11 17:49:02 sshgateway sshd\[19054\]: Failed password for root from 64.225.119.164 port 39592 ssh2 Sep 11 17:55:55 sshgateway sshd\[19896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.119.164 user=root |
2020-09-12 01:48:36 |
| 122.14.47.18 | attack | Bruteforce detected by fail2ban |
2020-09-12 01:58:07 |
| 210.245.110.9 | attackspam | ssh intrusion attempt |
2020-09-12 01:51:52 |
| 167.71.140.30 | attack | 167.71.140.30 - - \[11/Sep/2020:17:00:01 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 167.71.140.30 - - \[11/Sep/2020:17:00:02 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 167.71.140.30 - - \[11/Sep/2020:17:00:02 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-09-12 01:42:20 |
| 128.199.92.187 | attack | Invalid user mmdb from 128.199.92.187 port 55634 |
2020-09-12 02:01:13 |
| 180.214.237.98 | attackbotsspam | Sep 8 10:11:09 mail.srvfarm.net postfix/smtpd[1712849]: warning: unknown[180.214.237.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 10:11:09 mail.srvfarm.net postfix/smtpd[1712849]: lost connection after AUTH from unknown[180.214.237.98] Sep 8 10:11:16 mail.srvfarm.net postfix/smtpd[1712852]: warning: unknown[180.214.237.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 10:11:16 mail.srvfarm.net postfix/smtpd[1712852]: lost connection after AUTH from unknown[180.214.237.98] Sep 8 10:11:27 mail.srvfarm.net postfix/smtpd[1700079]: warning: unknown[180.214.237.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-09-12 02:07:17 |