城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.39.52.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3716
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;12.39.52.169. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022800 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 19:28:09 CST 2025
;; MSG SIZE rcvd: 105Host 169.52.39.12.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 169.52.39.12.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 177.106.17.158 | attack | Honeypot attack, port: 445, PTR: 177-106-017-158.xd-dynamic.algarnetsuper.com.br. |
2019-11-05 19:35:18 |
| 51.255.86.223 | attackspambots | Nov 5 12:38:29 mail postfix/smtpd[25802]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 5 12:38:29 mail postfix/smtpd[26209]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 5 12:38:29 mail postfix/smtpd[25801]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-05 19:59:01 |
| 139.198.122.76 | attack | Nov 5 03:14:45 mockhub sshd[25671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.122.76 Nov 5 03:14:46 mockhub sshd[25671]: Failed password for invalid user wolwerine from 139.198.122.76 port 40376 ssh2 ... |
2019-11-05 19:54:46 |
| 142.93.235.47 | attackbots | Nov 5 03:48:03 TORMINT sshd\[3664\]: Invalid user system from 142.93.235.47 Nov 5 03:48:03 TORMINT sshd\[3664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 Nov 5 03:48:05 TORMINT sshd\[3664\]: Failed password for invalid user system from 142.93.235.47 port 50566 ssh2 ... |
2019-11-05 20:01:06 |
| 218.49.131.233 | attackspam | Port 1433 Scan |
2019-11-05 19:33:46 |
| 212.92.106.146 | attack | RDP brute force attack detected by fail2ban |
2019-11-05 19:45:20 |
| 186.94.120.148 | attackspambots | Port 1433 Scan |
2019-11-05 20:00:09 |
| 148.70.59.43 | attackbots | Nov 4 22:35:54 php1 sshd\[3147\]: Invalid user zf from 148.70.59.43 Nov 4 22:35:54 php1 sshd\[3147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.59.43 Nov 4 22:35:56 php1 sshd\[3147\]: Failed password for invalid user zf from 148.70.59.43 port 42364 ssh2 Nov 4 22:41:14 php1 sshd\[3806\]: Invalid user guest from 148.70.59.43 Nov 4 22:41:14 php1 sshd\[3806\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.59.43 |
2019-11-05 19:22:04 |
| 222.186.175.148 | attack | Triggered by Fail2Ban at Vostok web server |
2019-11-05 19:42:35 |
| 117.0.39.22 | attackbots | Unauthorised access (Nov 5) SRC=117.0.39.22 LEN=52 TTL=106 ID=10762 DF TCP DPT=445 WINDOW=8192 SYN |
2019-11-05 19:41:33 |
| 144.217.169.90 | attack | Nov 4 05:32:51 lamijardin sshd[2767]: Did not receive identification string from 144.217.169.90 Nov 4 05:40:54 lamijardin sshd[2848]: Invalid user ntps from 144.217.169.90 Nov 4 05:40:54 lamijardin sshd[2848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.169.90 Nov 4 05:40:56 lamijardin sshd[2848]: Failed password for invalid user ntps from 144.217.169.90 port 60816 ssh2 Nov 4 05:40:56 lamijardin sshd[2848]: Received disconnect from 144.217.169.90 port 60816:11: Normal Shutdown, Thank you for playing [preauth] Nov 4 05:40:56 lamijardin sshd[2848]: Disconnected from 144.217.169.90 port 60816 [preauth] Nov 4 05:50:16 lamijardin sshd[2863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.169.90 user=r.r Nov 4 05:50:18 lamijardin sshd[2863]: Failed password for r.r from 144.217.169.90 port 36980 ssh2 Nov 4 05:50:18 lamijardin sshd[2863]: Received disconnect from 144......... ------------------------------- |
2019-11-05 19:29:14 |
| 113.160.37.4 | attackbotsspam | ssh bruteforce or scan ... |
2019-11-05 19:53:12 |
| 132.145.170.174 | attackbotsspam | Nov 5 16:26:04 itv-usvr-02 sshd[29616]: Invalid user developer from 132.145.170.174 port 36333 Nov 5 16:26:04 itv-usvr-02 sshd[29616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 Nov 5 16:26:04 itv-usvr-02 sshd[29616]: Invalid user developer from 132.145.170.174 port 36333 Nov 5 16:26:07 itv-usvr-02 sshd[29616]: Failed password for invalid user developer from 132.145.170.174 port 36333 ssh2 Nov 5 16:31:31 itv-usvr-02 sshd[29664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 user=root Nov 5 16:31:33 itv-usvr-02 sshd[29664]: Failed password for root from 132.145.170.174 port 19518 ssh2 |
2019-11-05 19:25:45 |
| 159.224.93.3 | attack | postfix (unknown user, SPF fail or relay access denied) |
2019-11-05 19:32:26 |
| 52.232.31.246 | attackbots | $f2bV_matches |
2019-11-05 19:55:09 |