城市(city): unknown
省份(region): unknown
国家(country): Japan
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 126.91.105.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10910
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;126.91.105.85. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022701 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 02:08:27 CST 2025
;; MSG SIZE rcvd: 10685.105.91.126.in-addr.arpa domain name pointer softbank126091105085.bbtec.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
85.105.91.126.in-addr.arpa name = softbank126091105085.bbtec.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.131.169.32 | attackbotsspam | 104.131.169.32 - - \[08/Dec/2019:10:34:52 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.131.169.32 - - \[08/Dec/2019:10:34:53 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ... |
2019-12-08 19:22:36 |
| 94.191.93.34 | attack | Dec 8 12:28:24 MK-Soft-VM8 sshd[14004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.93.34 Dec 8 12:28:26 MK-Soft-VM8 sshd[14004]: Failed password for invalid user 1230 from 94.191.93.34 port 58742 ssh2 ... |
2019-12-08 19:52:00 |
| 142.93.154.90 | attackbotsspam | Dec 8 08:30:22 MK-Soft-VM6 sshd[2376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.154.90 Dec 8 08:30:24 MK-Soft-VM6 sshd[2376]: Failed password for invalid user eat from 142.93.154.90 port 60455 ssh2 ... |
2019-12-08 19:20:52 |
| 212.30.187.7 | attack | Automatic report - XMLRPC Attack |
2019-12-08 19:47:14 |
| 91.121.211.59 | attackspambots | Dec 8 06:53:15 web8 sshd\[28892\]: Invalid user oracle from 91.121.211.59 Dec 8 06:53:15 web8 sshd\[28892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.211.59 Dec 8 06:53:17 web8 sshd\[28892\]: Failed password for invalid user oracle from 91.121.211.59 port 35952 ssh2 Dec 8 06:58:42 web8 sshd\[31486\]: Invalid user sallehar from 91.121.211.59 Dec 8 06:58:42 web8 sshd\[31486\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.211.59 |
2019-12-08 19:39:31 |
| 222.186.190.92 | attackbotsspam | Dec 8 12:39:49 [host] sshd[18504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Dec 8 12:39:50 [host] sshd[18504]: Failed password for root from 222.186.190.92 port 11248 ssh2 Dec 8 12:40:04 [host] sshd[18504]: Failed password for root from 222.186.190.92 port 11248 ssh2 |
2019-12-08 19:42:22 |
| 222.186.42.4 | attack | Dec 8 12:37:09 sd-53420 sshd\[15172\]: User root from 222.186.42.4 not allowed because none of user's groups are listed in AllowGroups Dec 8 12:37:10 sd-53420 sshd\[15172\]: Failed none for invalid user root from 222.186.42.4 port 16002 ssh2 Dec 8 12:37:10 sd-53420 sshd\[15172\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Dec 8 12:37:12 sd-53420 sshd\[15172\]: Failed password for invalid user root from 222.186.42.4 port 16002 ssh2 Dec 8 12:37:16 sd-53420 sshd\[15172\]: Failed password for invalid user root from 222.186.42.4 port 16002 ssh2 ... |
2019-12-08 19:39:12 |
| 167.172.164.81 | attack | Blocked for port scanning (Port 23 / Telnet brute-force). Time: Sun Dec 8. 07:16:37 2019 +0100 IP: 167.172.164.81 (DE/Germany/-) Sample of block hits: Dec 8 07:16:21 vserv kernel: [586765.484044] Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC= SRC=167.172.164.81 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=23084 PROTO=TCP SPT=34374 DPT=23 WINDOW=41574 RES=0x00 SYN URGP=0 Dec 8 07:16:22 vserv kernel: [586766.148183] Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC= SRC=167.172.164.81 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=23084 PROTO=TCP SPT=34374 DPT=23 WINDOW=41574 RES=0x00 SYN URGP=0 Dec 8 07:16:24 vserv kernel: [586768.572841] Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC= SRC=167.172.164.81 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=23084 PROTO=TCP SPT=34374 DPT=23 WINDOW=41574 RES=0x00 SYN URGP=0 Dec 8 07:16:25 vserv kernel: [586769.332632] Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC= SRC=167.172.164.81 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=23084 PROTO=TCP SPT=34374 |
2019-12-08 19:37:16 |
| 159.203.201.18 | attack | 12/08/2019-01:26:58.540966 159.203.201.18 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-12-08 19:19:58 |
| 132.255.82.85 | attackspambots | CloudCIX Reconnaissance Scan Detected, PTR: cliente-132-255-82-85.almeidaparente.eti.br. |
2019-12-08 19:28:42 |
| 66.70.189.93 | attackspambots | Dec 8 11:49:50 ns382633 sshd\[24639\]: Invalid user postgres from 66.70.189.93 port 57180 Dec 8 11:49:50 ns382633 sshd\[24639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.189.93 Dec 8 11:49:53 ns382633 sshd\[24639\]: Failed password for invalid user postgres from 66.70.189.93 port 57180 ssh2 Dec 8 11:55:52 ns382633 sshd\[25997\]: Invalid user ka from 66.70.189.93 port 50980 Dec 8 11:55:52 ns382633 sshd\[25997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.189.93 |
2019-12-08 19:27:53 |
| 77.103.0.227 | attack | Dec 8 11:21:05 cvbnet sshd[24968]: Failed password for root from 77.103.0.227 port 54252 ssh2 ... |
2019-12-08 19:29:27 |
| 132.232.52.60 | attack | $f2bV_matches |
2019-12-08 19:58:59 |
| 116.101.82.11 | attackbotsspam | $f2bV_matches |
2019-12-08 19:49:38 |
| 190.221.81.6 | attackbots | $f2bV_matches |
2019-12-08 19:43:00 |