城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.68.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51897
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.68.123. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019091500 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 15 17:54:19 CST 2019
;; MSG SIZE rcvd: 118Host 123.68.199.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 123.68.199.139.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 179.95.225.148 | attackbotsspam | Sep 16 23:53:58 www sshd\[198238\]: Invalid user aag from 179.95.225.148 Sep 16 23:53:58 www sshd\[198238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.95.225.148 Sep 16 23:54:01 www sshd\[198238\]: Failed password for invalid user aag from 179.95.225.148 port 34435 ssh2 ... |
2019-09-17 05:03:14 |
| 177.158.92.195 | attackspambots | 3389BruteforceFW23 |
2019-09-17 05:04:22 |
| 129.146.147.62 | attackbotsspam | Sep 16 20:43:20 microserver sshd[44222]: Invalid user 123456 from 129.146.147.62 port 50845 Sep 16 20:43:20 microserver sshd[44222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.147.62 Sep 16 20:43:22 microserver sshd[44222]: Failed password for invalid user 123456 from 129.146.147.62 port 50845 ssh2 Sep 16 20:50:27 microserver sshd[45139]: Invalid user mri from 129.146.147.62 port 41983 Sep 16 20:50:27 microserver sshd[45139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.147.62 Sep 16 21:01:01 microserver sshd[46815]: Invalid user hms from 129.146.147.62 port 42808 Sep 16 21:01:01 microserver sshd[46815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.147.62 Sep 16 21:01:02 microserver sshd[46815]: Failed password for invalid user hms from 129.146.147.62 port 42808 ssh2 Sep 16 21:04:35 microserver sshd[47030]: Invalid user 123456 from 129.146.147.62 port 52496 |
2019-09-17 04:44:34 |
| 45.136.108.12 | attackbotsspam | rdp brute-force attack 2019-09-16 19:02:53 ALLOW TCP 45.136.108.12 ###.###.###.### 54688 3391 0 - 0 0 0 - - - RECEIVE 2019-09-16 19:02:53 ALLOW TCP 45.136.108.12 ###.###.###.### 54694 3391 0 - 0 0 0 - - - RECEIVE 2019-09-16 19:03:05 ALLOW TCP 45.136.108.12 ###.###.###.### 58004 3391 0 - 0 0 0 - - - RECEIVE ... |
2019-09-17 05:27:08 |
| 138.118.103.128 | attackbots | Automatic report - Port Scan Attack |
2019-09-17 04:41:54 |
| 51.68.123.37 | attackspambots | Sep 16 23:12:46 cp sshd[31273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.37 Sep 16 23:12:48 cp sshd[31273]: Failed password for invalid user student from 51.68.123.37 port 36838 ssh2 Sep 16 23:16:25 cp sshd[919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.37 |
2019-09-17 05:26:01 |
| 45.136.108.16 | attackspambots | rdp brute-force attack 2019-09-16 19:03:05 ALLOW TCP 45.136.108.16 ###.###.###.### 61490 3391 0 - 0 0 0 - - - RECEIVE 2019-09-16 19:03:05 ALLOW TCP 45.136.108.16 ###.###.###.### 61515 3391 0 - 0 0 0 - - - RECEIVE ... |
2019-09-17 04:44:02 |
| 134.119.212.52 | attackbots | Sep 16 22:12:26 lnxded64 sshd[12994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.119.212.52 |
2019-09-17 04:50:32 |
| 93.118.104.149 | attackspam | postfix (unknown user, SPF fail or relay access denied) |
2019-09-17 04:51:05 |
| 120.92.12.108 | attackbots | 120.92.12.108 - - [16/Sep/2019:20:57:24 +0200] "GET /TP/public/index.php HTTP/1.1" 404 390 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.92.12.108 - - [16/Sep/2019:20:57:24 +0200] "GET /TP/index.php HTTP/1.1" 404 390 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.92.12.108 - - [16/Sep/2019:20:57:25 +0200] "GET /thinkphp/html/public/index.php HTTP/1.1" 404 390 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.92.12.108 - - [16/Sep/2019:20:57:25 +0200] "GET /html/public/index.php HTTP/1.1" 404 390 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.92.12.108 - - [16/Sep/2019:20:57:26 +0200] "GET /public/index.php HTTP/1.1" 404 390 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 F ... |
2019-09-17 04:58:12 |
| 47.17.183.18 | attackspam | Sep 16 22:01:56 jane sshd[6265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.17.183.18 Sep 16 22:01:58 jane sshd[6265]: Failed password for invalid user Mirjami from 47.17.183.18 port 33686 ssh2 ... |
2019-09-17 04:52:49 |
| 51.158.187.105 | attack | SSH Brute-Force reported by Fail2Ban |
2019-09-17 05:06:24 |
| 138.186.1.26 | attack | Sep 16 22:27:12 dedicated sshd[22563]: Invalid user yau from 138.186.1.26 port 43206 Sep 16 22:27:12 dedicated sshd[22563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.186.1.26 Sep 16 22:27:12 dedicated sshd[22563]: Invalid user yau from 138.186.1.26 port 43206 Sep 16 22:27:14 dedicated sshd[22563]: Failed password for invalid user yau from 138.186.1.26 port 43206 ssh2 Sep 16 22:31:31 dedicated sshd[23128]: Invalid user admin from 138.186.1.26 port 27949 |
2019-09-17 04:43:00 |
| 148.70.26.85 | attack | Automatic report - Banned IP Access |
2019-09-17 05:00:25 |
| 41.94.30.38 | attackbots | Sep 16 23:36:32 yabzik sshd[3557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.94.30.38 Sep 16 23:36:34 yabzik sshd[3557]: Failed password for invalid user oracle from 41.94.30.38 port 48342 ssh2 Sep 16 23:41:20 yabzik sshd[5797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.94.30.38 |
2019-09-17 04:59:35 |