城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.140.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19599
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.140.55. IN A
;; AUTHORITY SECTION:
. 584 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019111800 1800 900 604800 86400
;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 19 01:18:00 CST 2019
;; MSG SIZE rcvd: 118Host 55.140.199.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 55.140.199.139.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 203.113.130.198 | attackbots | $f2bV_matches |
2020-01-08 19:18:32 |
| 155.4.13.42 | attackspam | [munged]::443 155.4.13.42 - - [08/Jan/2020:12:04:25 +0100] "POST /[munged]: HTTP/1.1" 200 12387 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 155.4.13.42 - - [08/Jan/2020:12:04:26 +0100] "POST /[munged]: HTTP/1.1" 200 12387 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 155.4.13.42 - - [08/Jan/2020:12:04:26 +0100] "POST /[munged]: HTTP/1.1" 200 12387 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 155.4.13.42 - - [08/Jan/2020:12:04:27 +0100] "POST /[munged]: HTTP/1.1" 200 12387 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 155.4.13.42 - - [08/Jan/2020:12:04:27 +0100] "POST /[munged]: HTTP/1.1" 200 12387 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 155.4.13.42 - - [08/Jan/2020:12:04:28 +0100] |
2020-01-08 19:08:21 |
| 69.196.150.210 | attack | Unauthorized connection attempt detected from IP address 69.196.150.210 to port 1433 |
2020-01-08 18:54:10 |
| 27.76.186.204 | attackbots | Unauthorized connection attempt detected from IP address 27.76.186.204 to port 445 |
2020-01-08 19:05:26 |
| 121.238.48.175 | attack | 2020-01-07 22:46:40 dovecot_login authenticator failed for (oysnt) [121.238.48.175]:51093 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=yanglei@lerctr.org) 2020-01-07 22:46:47 dovecot_login authenticator failed for (mgbio) [121.238.48.175]:51093 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=yanglei@lerctr.org) 2020-01-07 22:46:58 dovecot_login authenticator failed for (zzxmg) [121.238.48.175]:51093 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=yanglei@lerctr.org) ... |
2020-01-08 19:15:13 |
| 45.82.34.90 | attack | Brute force attempt |
2020-01-08 19:29:55 |
| 178.32.113.68 | attackbots | Jan 7 23:08:03 cumulus sshd[15525]: Invalid user rtvcm from 178.32.113.68 port 58800 Jan 7 23:08:03 cumulus sshd[15525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.113.68 Jan 7 23:08:06 cumulus sshd[15525]: Failed password for invalid user rtvcm from 178.32.113.68 port 58800 ssh2 Jan 7 23:08:06 cumulus sshd[15525]: Received disconnect from 178.32.113.68 port 58800:11: Bye Bye [preauth] Jan 7 23:08:06 cumulus sshd[15525]: Disconnected from 178.32.113.68 port 58800 [preauth] Jan 7 23:20:59 cumulus sshd[16609]: Invalid user developer from 178.32.113.68 port 47644 Jan 7 23:20:59 cumulus sshd[16609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.113.68 Jan 7 23:21:01 cumulus sshd[16609]: Failed password for invalid user developer from 178.32.113.68 port 47644 ssh2 Jan 7 23:21:01 cumulus sshd[16609]: Received disconnect from 178.32.113.68 port 47644:11: Bye Bye [preau........ ------------------------------- |
2020-01-08 19:05:43 |
| 41.41.241.234 | attack | unauthorized connection attempt |
2020-01-08 19:05:57 |
| 14.228.240.121 | attackspambots | Unauthorized connection attempt from IP address 14.228.240.121 on Port 445(SMB) |
2020-01-08 19:18:10 |
| 88.235.107.95 | attackbotsspam | Fail2Ban Ban Triggered |
2020-01-08 19:05:04 |
| 118.173.235.168 | attackbotsspam | Unauthorized connection attempt from IP address 118.173.235.168 on Port 445(SMB) |
2020-01-08 19:04:16 |
| 186.170.28.46 | attackspambots | (sshd) Failed SSH login from 186.170.28.46 (CO/Colombia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jan 8 03:22:39 host sshd[34352]: Invalid user vncuser from 186.170.28.46 port 40329 |
2020-01-08 19:20:15 |
| 85.192.138.149 | attackbotsspam | leo_www |
2020-01-08 18:53:22 |
| 42.119.46.237 | attackspambots | Unauthorized connection attempt from IP address 42.119.46.237 on Port 445(SMB) |
2020-01-08 19:26:12 |
| 36.68.52.206 | attack | unauthorized connection attempt |
2020-01-08 19:16:25 |