城市(city): unknown
省份(region): unknown
国家(country): Taiwan (Province of China)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.104.242.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24090
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;120.104.242.63. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022001 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 06:14:54 CST 2025
;; MSG SIZE rcvd: 107b'Host 63.242.104.120.in-addr.arpa not found: 2(SERVFAIL)
';; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 63.242.104.120.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.136.110.26 | attackspambots | 12/28/2019-10:01:10.484428 45.136.110.26 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-12-28 23:29:24 |
| 178.134.99.134 | attack | Time: Sat Dec 28 09:10:17 2019 -0500 IP: 178.134.99.134 (GE/Georgia/178-134-99-134.dsl.utg.ge) Failures: 20 (WordPressBruteForcePOST) Interval: 3600 seconds Blocked: Permanent Block |
2019-12-28 23:30:46 |
| 188.165.250.228 | attackspam | Dec 28 02:08:45 server sshd\[18224\]: Invalid user user from 188.165.250.228 Dec 28 02:08:45 server sshd\[18224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns380620.ip-188-165-250.eu Dec 28 02:08:47 server sshd\[18224\]: Failed password for invalid user user from 188.165.250.228 port 39243 ssh2 Dec 28 18:14:21 server sshd\[19295\]: Invalid user stegavik from 188.165.250.228 Dec 28 18:14:21 server sshd\[19295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns380620.ip-188-165-250.eu ... |
2019-12-28 23:35:19 |
| 51.158.120.115 | attack | Dec 28 16:29:19 mout sshd[21321]: Invalid user a4abroad from 51.158.120.115 port 55514 |
2019-12-28 23:32:02 |
| 218.64.226.57 | attack | Unauthorized connection attempt from IP address 218.64.226.57 on Port 445(SMB) |
2019-12-28 23:28:04 |
| 88.7.95.167 | attack | Unauthorized connection attempt from IP address 88.7.95.167 on Port 445(SMB) |
2019-12-28 23:12:26 |
| 13.70.84.151 | attack | Unauthorized connection attempt from IP address 13.70.84.151 on Port 3389(RDP) |
2019-12-28 22:58:24 |
| 41.41.160.36 | attack | Unauthorized connection attempt from IP address 41.41.160.36 on Port 445(SMB) |
2019-12-28 23:36:06 |
| 222.124.158.12 | attackspam | Unauthorized connection attempt from IP address 222.124.158.12 on Port 445(SMB) |
2019-12-28 23:17:33 |
| 45.136.108.115 | attackbots | SMTP:25. Incomplete TCP connect x 2. Probable port probe. IP blocked. |
2019-12-28 23:36:31 |
| 95.143.135.226 | attackspambots | 95.143.135.226 - - [28/Dec/2019:09:30:15 -0500] "GET /?page=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&action=view& HTTP/1.1" 200 17545 "https://ccbrass.com/?page=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&action=view&" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ... |
2019-12-28 23:19:03 |
| 123.16.108.73 | attackspam | Unauthorized connection attempt from IP address 123.16.108.73 on Port 445(SMB) |
2019-12-28 23:28:29 |
| 201.163.114.170 | attackbots | Unauthorized connection attempt from IP address 201.163.114.170 on Port 445(SMB) |
2019-12-28 23:20:27 |
| 200.122.224.200 | attack | Unauthorized connection attempt from IP address 200.122.224.200 on Port 445(SMB) |
2019-12-28 22:59:30 |
| 165.76.149.163 | attack | Lines containing failures of 165.76.149.163 Dec 28 15:26:50 kvm05 sshd[5277]: Received disconnect from 165.76.149.163 port 46804:11: Normal Shutdown, Thank you for playing [preauth] Dec 28 15:26:50 kvm05 sshd[5277]: Disconnected from authenticating user bin 165.76.149.163 port 46804 [preauth] Dec 28 15:28:23 kvm05 sshd[5409]: Invalid user daemond from 165.76.149.163 port 36876 Dec 28 15:28:24 kvm05 sshd[5409]: Received disconnect from 165.76.149.163 port 36876:11: Normal Shutdown, Thank you for playing [preauth] Dec 28 15:28:24 kvm05 sshd[5409]: Disconnected from invalid user daemond 165.76.149.163 port 36876 [preauth] Dec 28 15:30:03 kvm05 sshd[5470]: Invalid user jenkins from 165.76.149.163 port 55270 Dec 28 15:30:04 kvm05 sshd[5470]: Received disconnect from 165.76.149.163 port 55270:11: Normal Shutdown, Thank you for playing [preauth] Dec 28 15:30:04 kvm05 sshd[5470]: Disconnected from invalid user jenkins 165.76.149.163 port 55270 [preauth] Dec 28 15:31:44 kvm05 ssh........ ------------------------------ |
2019-12-28 23:18:31 |