城市(city): Bo
省份(region): Telemark
国家(country): Norway
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): UNINETT AS
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.39.152.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1485
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;128.39.152.7. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019042600 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 26 21:05:05 +08 2019
;; MSG SIZE rcvd: 116
Host 7.152.39.128.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.3
Address: 67.207.67.3#53
** server can't find 7.152.39.128.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.195.146.104 | attackspam | [portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=1024)(10151156) |
2019-10-16 01:02:07 |
| 177.19.98.110 | attack | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=27628)(10151156) |
2019-10-16 00:50:01 |
| 196.203.248.149 | attack | The IP 196.203.248.149 has just been banned by Fail2Ban after 5 attempts against sshd. Here is more information about 196.203.248.149 : % This is the AfriNIC Whois server. % Note: this output has been filtered. % To receive output for a database update, use the "-B" flag. % Information related to '196.203.248.0 - 196.203.251.255' % No abuse contact registered for 196.203.248.0 - 196.203.251.255 inetnum: 196.203.248.0 - 196.203.251.255 netname: TOPNET-3 descr: organisation : Topnet descr: contact name: Ahmed Kooli descr: phone: +216 71 780 900 descr: e-mail: Ahmed@topnet.tn descr: website: http://topnet.tn country: TN org: ORG-ATIA2-AFRINIC admin-c: AK34-AFRINIC tech-c: AK34-AFRINIC status: SUB-ALLOCATED PA mnt-by: AFRINIC-HM-MNT mnt-lower: ATI-MNT mnt-domains: ATI-MNT source: AFRINIC # Filtered parent: 196.203.0.0 - 196.203.255.255 organisation: ORG-ATIA2-AFRINIC org-name: ATI - Agence Tunisienne Internet org-type: LIR country: TN remarks: data has been transferred from RIPE Whois Database 20050221 address: 13, rue Jughurta, Belvedere address: Tunis 1002 phone: tel:+216-70-147-700 phone: tel:+216-71-846-100 fax-no: tel:+216-71-846-600 admin-c: JF13-AFRINIC tech-c: TG12-AFRINIC mnt-ref: AFRINIC-HM-MNT mnt-ref: ATI-MNT mnt-by: AFRINIC-HM-MNT source: AFRINIC # Filtered person: Ahmed Kooli address: Centre Urbain Nord address: 1073 Tunis address: TN phone: tel:+216-71-780-900 nic-hdl: AK34-AFRINIC mnt-by: GENERATED-4YNEP8TTA1VHG1TEIFKF5ZSZ41FGKHTS-MNT source: AFRINIC # Filtered Regards, Fail2Ban |
2019-10-16 00:55:19 |
| 113.160.1.70 | attack | [portscan] tcp/1433 [MsSQL] in sorbs:'listed [web]' in spfbl.net:'listed' *(RWIN=1024)(10151156) |
2019-10-16 00:33:56 |
| 111.185.73.145 | attackbots | [portscan] tcp/81 [alter-web/web-proxy] in spfbl.net:'listed' *(RWIN=14600)(10151156) |
2019-10-16 00:55:28 |
| 49.143.187.141 | attack | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=61124)(10151156) |
2019-10-16 00:42:43 |
| 77.87.192.182 | attackspambots | [portscan] tcp/21 [FTP] [scan/connect: 5 time(s)] in blocklist.de:'listed [ftp]' *(RWIN=14600)(10151156) |
2019-10-16 00:38:48 |
| 45.172.146.115 | attackspambots | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=56934)(10151156) |
2019-10-16 00:43:10 |
| 191.13.205.67 | attackbots | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=14600)(10151156) |
2019-10-16 01:04:47 |
| 156.219.41.94 | attack | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=42775)(10151156) |
2019-10-16 00:51:32 |
| 95.46.34.226 | attack | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=12492)(10151156) |
2019-10-16 00:36:30 |
| 89.151.138.18 | attack | [portscan] tcp/1433 [MsSQL] [scan/connect: 3 time(s)] in spfbl.net:'listed' *(RWIN=8192)(10151156) |
2019-10-16 00:37:54 |
| 45.32.161.153 | attackspambots | [portscan] tcp/21 [FTP] [portscan] tcp/22 [SSH] [scan/connect: 2 time(s)] *(RWIN=1024)(10151156) |
2019-10-16 01:16:18 |
| 118.88.71.216 | attack | [portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=43052)(10151156) |
2019-10-16 01:10:32 |
| 102.165.35.137 | attackspambots | SCAN: Host Sweep |
2019-10-16 00:57:40 |