城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.71.69.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14676
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;134.71.69.114. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 11:15:29 CST 2025
;; MSG SIZE rcvd: 106Host 114.69.71.134.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
*** Can't find 114.69.71.134.in-addr.arpa.: No answer
Authoritative answers can be found from:
71.134.in-addr.arpa
origin = dnsa-01.unx.cpp.edu
mail addr = domainadmin.cpp.edu
serial = 1
refresh = 7200
retry = 900
expire = 1209600
minimum = 10800| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 94.102.56.181 | attack | Port scan on 3 port(s): 1703 1729 1736 |
2019-11-27 07:08:29 |
| 103.47.60.37 | attackspambots | (sshd) Failed SSH login from 103.47.60.37 (ID/Indonesia/-/-/jol.jatengprov.go.id/[AS131724 DINHUBKOMINFO PEMPROV. JAWA TENGAH]): 1 in the last 3600 secs |
2019-11-27 07:35:18 |
| 51.83.41.120 | attackspam | Nov 26 17:57:18 plusreed sshd[28853]: Invalid user http from 51.83.41.120 ... |
2019-11-27 07:08:58 |
| 103.26.43.202 | attackbotsspam | Nov 27 00:09:12 sd-53420 sshd\[17403\]: Invalid user woznik from 103.26.43.202 Nov 27 00:09:12 sd-53420 sshd\[17403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.43.202 Nov 27 00:09:13 sd-53420 sshd\[17403\]: Failed password for invalid user woznik from 103.26.43.202 port 36316 ssh2 Nov 27 00:13:09 sd-53420 sshd\[18183\]: User root from 103.26.43.202 not allowed because none of user's groups are listed in AllowGroups Nov 27 00:13:09 sd-53420 sshd\[18183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.43.202 user=root ... |
2019-11-27 07:21:40 |
| 218.92.0.157 | attack | SSH-BruteForce |
2019-11-27 07:35:35 |
| 54.37.156.188 | attackbots | 2019-11-26T23:27:59.085075abusebot.cloudsearch.cf sshd\[719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.ip-54-37-156.eu user=root |
2019-11-27 07:38:59 |
| 185.199.96.78 | attackbots | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/185.199.96.78/ UA - 1H : (51) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : UA NAME ASN : ASN43139 IP : 185.199.96.78 CIDR : 185.199.96.0/22 PREFIX COUNT : 10 UNIQUE IP COUNT : 29696 ATTACKS DETECTED ASN43139 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-26 23:57:27 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-27 07:01:59 |
| 165.22.51.236 | attack | Nov 27 00:50:17 server sshd\[15895\]: Invalid user bronwyn from 165.22.51.236 port 36746 Nov 27 00:50:17 server sshd\[15895\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.51.236 Nov 27 00:50:18 server sshd\[15895\]: Failed password for invalid user bronwyn from 165.22.51.236 port 36746 ssh2 Nov 27 00:57:16 server sshd\[15609\]: Invalid user quarto from 165.22.51.236 port 45802 Nov 27 00:57:16 server sshd\[15609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.51.236 |
2019-11-27 07:10:44 |
| 222.186.180.6 | attack | SSH auth scanning - multiple failed logins |
2019-11-27 07:23:33 |
| 222.186.42.4 | attackspambots | Nov 24 21:35:44 microserver sshd[14986]: Failed none for root from 222.186.42.4 port 23360 ssh2 Nov 24 21:35:44 microserver sshd[14986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Nov 24 21:35:46 microserver sshd[14986]: Failed password for root from 222.186.42.4 port 23360 ssh2 Nov 24 21:35:49 microserver sshd[14986]: Failed password for root from 222.186.42.4 port 23360 ssh2 Nov 24 21:35:52 microserver sshd[14986]: Failed password for root from 222.186.42.4 port 23360 ssh2 Nov 25 01:44:01 microserver sshd[49661]: Failed none for root from 222.186.42.4 port 56750 ssh2 Nov 25 01:44:02 microserver sshd[49661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Nov 25 01:44:04 microserver sshd[49661]: Failed password for root from 222.186.42.4 port 56750 ssh2 Nov 25 01:44:07 microserver sshd[49661]: Failed password for root from 222.186.42.4 port 56750 ssh2 Nov 25 01:44:10 microserve |
2019-11-27 07:07:03 |
| 94.130.92.61 | attackbotsspam | [TueNov2623:57:06.2867202019][:error][pid964:tid47011403462400][client94.130.92.61:43286][client94.130.92.61]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles\(disablethisruleifyourequireaccesstofilesthatendwith.sql\)"][severity"CRITICAL"][hostname"www.bluwater.ch"][uri"/exp.sql"][unique_id"Xd2twu1fzFCldH4LDsAH@AAAAZM"][TueNov2623:57:07.5456572019][:error][pid1029:tid47011297191680][client94.130.92.61:43474][client94.130.92.61]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles\(disablethisruleifyourequireaccesstofilesthatendwith.sql\)"][severity" |
2019-11-27 07:14:53 |
| 223.197.151.55 | attackspambots | Nov 26 13:10:09 sachi sshd\[24461\]: Invalid user bendal from 223.197.151.55 Nov 26 13:10:09 sachi sshd\[24461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.151.55 Nov 26 13:10:11 sachi sshd\[24461\]: Failed password for invalid user bendal from 223.197.151.55 port 50105 ssh2 Nov 26 13:17:00 sachi sshd\[25039\]: Invalid user kaitlyn from 223.197.151.55 Nov 26 13:17:00 sachi sshd\[25039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.151.55 |
2019-11-27 07:32:29 |
| 106.12.81.233 | attackbots | Nov 27 00:08:37 legacy sshd[28862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.81.233 Nov 27 00:08:38 legacy sshd[28862]: Failed password for invalid user kite from 106.12.81.233 port 52246 ssh2 Nov 27 00:12:37 legacy sshd[28942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.81.233 ... |
2019-11-27 07:22:37 |
| 187.144.190.140 | attackbotsspam | port scan and connect, tcp 23 (telnet) |
2019-11-27 07:27:54 |
| 49.88.112.75 | attackbots | Nov 27 00:22:32 vps666546 sshd\[7823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.75 user=root Nov 27 00:22:33 vps666546 sshd\[7823\]: Failed password for root from 49.88.112.75 port 22603 ssh2 Nov 27 00:22:36 vps666546 sshd\[7823\]: Failed password for root from 49.88.112.75 port 22603 ssh2 Nov 27 00:22:38 vps666546 sshd\[7823\]: Failed password for root from 49.88.112.75 port 22603 ssh2 Nov 27 00:23:29 vps666546 sshd\[7872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.75 user=root ... |
2019-11-27 07:27:23 |