城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.139.210.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20882
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;12.139.210.169. IN A
;; AUTHORITY SECTION:
. 179 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400
;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:24:35 CST 2022
;; MSG SIZE rcvd: 107Host 169.210.139.12.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 169.210.139.12.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 1.46.163.236 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-04-24 02:37:34 |
| 138.68.226.234 | attackspam | "fail2ban match" |
2020-04-24 02:05:56 |
| 200.17.114.136 | attack | 2020-04-23T19:28:49.215841v22018076590370373 sshd[4424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.17.114.136 user=root 2020-04-23T19:28:51.230925v22018076590370373 sshd[4424]: Failed password for root from 200.17.114.136 port 42002 ssh2 2020-04-23T19:33:43.810052v22018076590370373 sshd[25737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.17.114.136 user=root 2020-04-23T19:33:45.853145v22018076590370373 sshd[25737]: Failed password for root from 200.17.114.136 port 55220 ssh2 2020-04-23T19:38:40.523868v22018076590370373 sshd[18093]: Invalid user admin from 200.17.114.136 port 40214 ... |
2020-04-24 02:12:06 |
| 142.93.68.181 | attackbots | Apr 23 18:57:41 server sshd[21931]: Failed password for invalid user pj from 142.93.68.181 port 44146 ssh2 Apr 23 19:56:53 server sshd[37721]: Failed password for root from 142.93.68.181 port 58286 ssh2 Apr 23 19:59:49 server sshd[38472]: Failed password for invalid user developer from 142.93.68.181 port 57464 ssh2 |
2020-04-24 02:20:40 |
| 36.110.39.217 | attack | Brute-force attempt banned |
2020-04-24 02:11:43 |
| 116.2.175.179 | attack | $f2bV_matches |
2020-04-24 02:04:08 |
| 195.34.243.30 | attack | Unauthorized connection attempt from IP address 195.34.243.30 on Port 445(SMB) |
2020-04-24 01:58:30 |
| 91.132.0.203 | attack | Apr 23 19:26:06 mail sshd[21636]: Invalid user oracle from 91.132.0.203 Apr 23 19:26:06 mail sshd[21636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.132.0.203 Apr 23 19:26:06 mail sshd[21636]: Invalid user oracle from 91.132.0.203 Apr 23 19:26:07 mail sshd[21636]: Failed password for invalid user oracle from 91.132.0.203 port 32840 ssh2 ... |
2020-04-24 02:18:50 |
| 60.249.82.121 | attack | Apr 23 15:21:52 ws12vmsma01 sshd[25516]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60-249-82-121.hinet-ip.hinet.net user=root Apr 23 15:21:53 ws12vmsma01 sshd[25516]: Failed password for root from 60.249.82.121 port 34078 ssh2 Apr 23 15:25:17 ws12vmsma01 sshd[25986]: Invalid user lt from 60.249.82.121 ... |
2020-04-24 02:32:33 |
| 82.119.111.122 | attack | "Unauthorized connection attempt on SSHD detected" |
2020-04-24 02:38:22 |
| 80.211.245.129 | attackspam | Apr 23 19:45:50 DAAP sshd[24898]: Invalid user zj from 80.211.245.129 port 58328 Apr 23 19:45:50 DAAP sshd[24898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.245.129 Apr 23 19:45:50 DAAP sshd[24898]: Invalid user zj from 80.211.245.129 port 58328 Apr 23 19:45:52 DAAP sshd[24898]: Failed password for invalid user zj from 80.211.245.129 port 58328 ssh2 Apr 23 19:51:42 DAAP sshd[24978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.245.129 user=root Apr 23 19:51:44 DAAP sshd[24978]: Failed password for root from 80.211.245.129 port 44152 ssh2 ... |
2020-04-24 02:04:49 |
| 222.92.139.158 | attackspam | prod3 ... |
2020-04-24 02:15:48 |
| 49.48.189.34 | attackspam | Honeypot attack, port: 445, PTR: mx-ll-49.48.189-34.dynamic.3bb.co.th. |
2020-04-24 02:06:14 |
| 5.45.69.188 | attackbotsspam | Dear Sir / Madam, Yesterday, my close friend (Simona Simova) was contacted via fake Facebook profile to be informed that she has a profile on a escort website. While researching via the German phone number used in the advert, we have came across more ads. These profiles are created without her permission and she is now very upset. Here is a list of the profiles we have found: - https://escortsitesofia.com/de/eleonora-7/ (5.45.69.188) - https://escortsitesofia.com/de/sia-9/ (5.45.69.188) We have already hired a lawyer in Germany who will escalate the issue to the authorities. |
2020-04-24 02:07:12 |
| 180.76.148.147 | attack | Apr 23 18:44:39 debian-2gb-nbg1-2 kernel: \[9919227.730545\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.76.148.147 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=13872 PROTO=TCP SPT=41547 DPT=22606 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-24 02:36:48 |