城市(city): unknown
省份(region): unknown
国家(country): Korea Republic of
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.180.143.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1133
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;121.180.143.169. IN A
;; AUTHORITY SECTION:
. 371 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:29:56 CST 2022
;; MSG SIZE rcvd: 108Host 169.143.180.121.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 169.143.180.121.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 150.95.52.111 | attack | [munged]::443 150.95.52.111 - - [22/Oct/2019:18:08:38 +0200] "POST /[munged]: HTTP/1.1" 200 8925 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-10-23 00:27:01 |
| 159.69.189.212 | attack | Joomla User : try to access forms... |
2019-10-23 00:20:53 |
| 81.22.45.116 | attack | Oct 22 18:30:29 mc1 kernel: \[3048179.077625\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.116 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=63278 PROTO=TCP SPT=56757 DPT=19696 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 22 18:33:10 mc1 kernel: \[3048340.076727\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.116 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=54851 PROTO=TCP SPT=56757 DPT=19990 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 22 18:36:33 mc1 kernel: \[3048542.841019\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.116 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=62666 PROTO=TCP SPT=56757 DPT=20363 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-10-23 00:40:15 |
| 137.63.246.39 | attackspam | Oct 22 17:55:20 lnxweb62 sshd[460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.63.246.39 |
2019-10-23 00:26:01 |
| 132.145.22.134 | attackbotsspam | Probing for vulnerable services |
2019-10-23 00:38:51 |
| 49.88.112.76 | attack | 2019-10-22T23:17:18.860714enmeeting.mahidol.ac.th sshd\[20799\]: User root from 49.88.112.76 not allowed because not listed in AllowUsers 2019-10-22T23:17:19.284903enmeeting.mahidol.ac.th sshd\[20799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.76 user=root 2019-10-22T23:17:21.430938enmeeting.mahidol.ac.th sshd\[20799\]: Failed password for invalid user root from 49.88.112.76 port 19050 ssh2 ... |
2019-10-23 00:21:46 |
| 78.186.66.64 | attackspambots | Automatic report - Port Scan Attack |
2019-10-23 00:17:36 |
| 94.177.163.133 | attackbotsspam | Oct 22 15:43:29 *** sshd[12564]: Invalid user it2 from 94.177.163.133 |
2019-10-23 00:28:38 |
| 195.3.147.47 | attack | Oct 22 18:03:22 herz-der-gamer sshd[414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.3.147.47 user=root Oct 22 18:03:23 herz-der-gamer sshd[414]: Failed password for root from 195.3.147.47 port 21577 ssh2 ... |
2019-10-23 01:01:44 |
| 89.46.105.152 | attackspam | goldgier-watches-purchase.com:80 89.46.105.152 - - \[22/Oct/2019:13:47:40 +0200\] "POST /xmlrpc.php HTTP/1.1" 301 469 "-" "Windows Live Writter" goldgier-watches-purchase.com 89.46.105.152 \[22/Oct/2019:13:47:40 +0200\] "POST /xmlrpc.php HTTP/1.1" 302 4131 "-" "Windows Live Writter" |
2019-10-23 00:21:18 |
| 106.12.182.70 | attackspambots | Oct 22 06:43:07 php1 sshd\[21487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.182.70 user=root Oct 22 06:43:09 php1 sshd\[21487\]: Failed password for root from 106.12.182.70 port 36634 ssh2 Oct 22 06:47:54 php1 sshd\[22109\]: Invalid user normaluser from 106.12.182.70 Oct 22 06:47:54 php1 sshd\[22109\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.182.70 Oct 22 06:47:55 php1 sshd\[22109\]: Failed password for invalid user normaluser from 106.12.182.70 port 44078 ssh2 |
2019-10-23 00:51:32 |
| 192.99.88.153 | attackbots | Oct 22 15:14:32 sshgateway sshd\[32732\]: Invalid user eddie from 192.99.88.153 Oct 22 15:14:32 sshgateway sshd\[32732\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.88.153 Oct 22 15:14:34 sshgateway sshd\[32732\]: Failed password for invalid user eddie from 192.99.88.153 port 47572 ssh2 |
2019-10-23 00:42:25 |
| 118.31.36.134 | attackbotsspam | [portscan] Port scan |
2019-10-23 00:53:48 |
| 185.42.181.218 | attack | [portscan] Port scan |
2019-10-23 01:00:05 |
| 49.75.63.188 | attackbots | 49.75.63.188 - - [18/Oct/2019:02:41:22 -0700] "GET /otsmobile/app/mgs/mgw.htm?operationType=com.cars.otsmobile.queryLeftTicket&requestData=%5B%7B%22train_date%22%3A%2220191023%22%2C%22purpose_codes%22%3A%2200%22%2C%22from_station%22%3A%22SHH%22%2C%22to_station%22%3A%22CNW%22%2C%22station_train_code%22%3A%22%22%2C%22start_time_begin%22%3A%220000%22%2C%22start_time_end%22%3A%222400%22%2C%22train_headers%22%3A%22QB%23%22%2C%22train_flag%22%3A%22%22%2C%22seat_type%22%3A%22%22%2C%22seatBack_Type%22%3A%22%22%2C%22ticket_num%22%3A%22%22%2C%22dfpStr%22%3A%22WDiblWx6jPO93KkW6SAC1MoIEORFuzmq6knO8mCWbXPg-dTZ4aEt-EH8KzhB59CaFnUyKLabD8EsSTaJk_n57dBS5qFMRhvKLvgN_KupQShfMXkPx6hiAdib3fO9pZShO3RdjRvjSq3u1OSFjOB18sfYTP24oYaN%22%2C%22baseDTO%22%3A%7B%22check_code%22%3A%229383d8336585707518500dee9e175f65%22%2C%22device_no%22%3A%22Xalk%2FkUU0QEzMEeQ8DRGjmca%22%2C%22mobile_no%22%3A%22%22%2C%22os_type%22%3A%22a%22%2C%22time_str%22%3A%2220191018173325%22%2C%22user_name%22%3A%22%22%2C%22version_no%22%3A%224.2.36%22%7D%7D%5D&ts=157139 |
2019-10-23 00:27:50 |