城市(city): Singapore
省份(region): unknown
国家(country): Singapore
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.180.139.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8117
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.180.139.243. IN A
;; AUTHORITY SECTION:
. 299 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400
;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:12:03 CST 2022
;; MSG SIZE rcvd: 108243.139.180.139.in-addr.arpa domain name pointer 139.180.139.243.vultr.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
243.139.180.139.in-addr.arpa name = 139.180.139.243.vultr.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 200.40.45.82 | attackspam | detected by Fail2Ban |
2020-03-16 17:10:13 |
| 106.12.204.75 | attack | Invalid user info from 106.12.204.75 port 48488 |
2020-03-14 14:02:40 |
| 115.112.66.204 | attackspam | Mar 16 08:49:37 marvibiene sshd[42547]: Invalid user mother from 115.112.66.204 port 53461 Mar 16 08:49:37 marvibiene sshd[42547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.112.66.204 Mar 16 08:49:37 marvibiene sshd[42547]: Invalid user mother from 115.112.66.204 port 53461 Mar 16 08:49:40 marvibiene sshd[42547]: Failed password for invalid user mother from 115.112.66.204 port 53461 ssh2 ... |
2020-03-16 17:06:55 |
| 213.150.206.88 | attackspam | 2020-03-14T05:55:44.288603vps751288.ovh.net sshd\[8499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.150.206.88 user=root 2020-03-14T05:55:46.249382vps751288.ovh.net sshd\[8499\]: Failed password for root from 213.150.206.88 port 50280 ssh2 2020-03-14T05:58:25.334248vps751288.ovh.net sshd\[8517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.150.206.88 user=root 2020-03-14T05:58:27.731664vps751288.ovh.net sshd\[8517\]: Failed password for root from 213.150.206.88 port 59186 ssh2 2020-03-14T06:01:06.157099vps751288.ovh.net sshd\[8533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.150.206.88 user=root |
2020-03-14 13:43:12 |
| 193.232.218.12 | attack | Mar 14 06:41:13 [host] sshd[24638]: pam_unix(sshd: Mar 14 06:41:15 [host] sshd[24638]: Failed passwor Mar 14 06:47:36 [host] sshd[24811]: pam_unix(sshd: |
2020-03-14 14:00:33 |
| 185.156.73.38 | attackbots | 03/14/2020-00:58:16.929718 185.156.73.38 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-03-14 13:43:32 |
| 49.88.112.68 | attack | Mar 14 06:51:08 ArkNodeAT sshd\[4682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.68 user=root Mar 14 06:51:11 ArkNodeAT sshd\[4682\]: Failed password for root from 49.88.112.68 port 58767 ssh2 Mar 14 06:51:14 ArkNodeAT sshd\[4682\]: Failed password for root from 49.88.112.68 port 58767 ssh2 |
2020-03-14 13:57:35 |
| 222.186.180.142 | attack | Mar 14 02:49:17 firewall sshd[10852]: Failed password for root from 222.186.180.142 port 54395 ssh2 Mar 14 02:49:20 firewall sshd[10852]: Failed password for root from 222.186.180.142 port 54395 ssh2 Mar 14 02:49:23 firewall sshd[10852]: Failed password for root from 222.186.180.142 port 54395 ssh2 ... |
2020-03-14 13:52:25 |
| 185.53.88.36 | attack | [2020-03-14 01:18:58] NOTICE[1148][C-00011821] chan_sip.c: Call from '' (185.53.88.36:59947) to extension '9011441482455983' rejected because extension not found in context 'public'. [2020-03-14 01:18:58] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-14T01:18:58.164-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441482455983",SessionID="0x7fd82c43c848",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.36/59947",ACLName="no_extension_match" [2020-03-14 01:19:17] NOTICE[1148][C-00011822] chan_sip.c: Call from '' (185.53.88.36:56042) to extension '8011441482455983' rejected because extension not found in context 'public'. [2020-03-14 01:19:17] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-14T01:19:17.805-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="8011441482455983",SessionID="0x7fd82c3f03d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP ... |
2020-03-14 13:40:56 |
| 76.113.104.218 | attack | Honeypot attack, port: 81, PTR: c-76-113-104-218.hsd1.nm.comcast.net. |
2020-03-16 17:05:18 |
| 49.234.61.180 | attack | 2020-03-14T04:53:21.528810shield sshd\[20553\]: Invalid user cisco from 49.234.61.180 port 44436 2020-03-14T04:53:21.536670shield sshd\[20553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.61.180 2020-03-14T04:53:24.199934shield sshd\[20553\]: Failed password for invalid user cisco from 49.234.61.180 port 44436 ssh2 2020-03-14T04:56:50.713597shield sshd\[21187\]: Invalid user ns2 from 49.234.61.180 port 53748 2020-03-14T04:56:50.719613shield sshd\[21187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.61.180 |
2020-03-14 14:05:38 |
| 120.70.100.2 | attackbots | Mar 14 04:49:19 OPSO sshd\[26202\]: Invalid user report from 120.70.100.2 port 58132 Mar 14 04:49:19 OPSO sshd\[26202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.100.2 Mar 14 04:49:21 OPSO sshd\[26202\]: Failed password for invalid user report from 120.70.100.2 port 58132 ssh2 Mar 14 04:53:27 OPSO sshd\[26763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.100.2 user=root Mar 14 04:53:28 OPSO sshd\[26763\]: Failed password for root from 120.70.100.2 port 47726 ssh2 |
2020-03-14 14:03:59 |
| 103.66.16.18 | attackspambots | SSH brute-force attempt |
2020-03-16 17:49:45 |
| 195.231.3.155 | attackbotsspam | Mar 14 05:58:43 mail.srvfarm.net postfix/smtpd[2941132]: warning: unknown[195.231.3.155]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 14 05:58:43 mail.srvfarm.net postfix/smtpd[2941132]: lost connection after AUTH from unknown[195.231.3.155] Mar 14 05:59:18 mail.srvfarm.net postfix/smtpd[2940780]: warning: unknown[195.231.3.155]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 14 05:59:18 mail.srvfarm.net postfix/smtpd[2940780]: lost connection after AUTH from unknown[195.231.3.155] Mar 14 06:00:03 mail.srvfarm.net postfix/smtpd[2939580]: warning: unknown[195.231.3.155]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 14 06:00:03 mail.srvfarm.net postfix/smtpd[2939580]: lost connection after AUTH from unknown[195.231.3.155] |
2020-03-14 14:07:38 |
| 222.186.175.167 | attack | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root Failed password for root from 222.186.175.167 port 63068 ssh2 Failed password for root from 222.186.175.167 port 63068 ssh2 Failed password for root from 222.186.175.167 port 63068 ssh2 Failed password for root from 222.186.175.167 port 63068 ssh2 |
2020-03-14 14:00:18 |