城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.237.12.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2604
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.237.12.41. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021102 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 12:00:21 CST 2025
;; MSG SIZE rcvd: 106Host 41.12.237.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 41.12.237.139.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 213.250.21.189 | attack | Unauthorized connection attempt detected from IP address 213.250.21.189 to port 4567 [J] |
2020-03-03 08:08:54 |
| 51.158.25.171 | attackspambots | 51.158.25.171 - - \[03/Mar/2020:04:00:30 +0600\] "GET /admin.txt HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:30 +0600\] "GET /admin.cfg HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:31 +0600\] "GET /pass.txt HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:31 +0600\] "GET /pass.cfg HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:32 +0600\] "GET /password.txt HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:32 +0600\] "GET /password.cfg HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:33 +0600\] "GET /p.txt HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:33 +0600\] "GET /p.cfg HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:33 +0600\] "GET /pps/aastra.txt HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:34 +0600\] "GET /pps/aastra.cfg HTTP/1.1" 301 184 "-" "-"51.158.25.171 - - \[03/Mar/2020:04:00:34 +0600\] "GET /bw.txt HTTP/1.1" 301 184 "-" "-"51.158. ... |
2020-03-03 07:55:54 |
| 81.98.34.156 | attackbots | Email rejected due to spam filtering |
2020-03-03 08:05:27 |
| 104.175.32.206 | attack | Mar 3 03:47:59 areeb-Workstation sshd[25734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.175.32.206 Mar 3 03:48:01 areeb-Workstation sshd[25734]: Failed password for invalid user samp from 104.175.32.206 port 48950 ssh2 ... |
2020-03-03 07:58:24 |
| 115.44.243.152 | attackbots | Mar 3 00:58:44 sd-53420 sshd\[13781\]: User root from 115.44.243.152 not allowed because none of user's groups are listed in AllowGroups Mar 3 00:58:44 sd-53420 sshd\[13781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.44.243.152 user=root Mar 3 00:58:45 sd-53420 sshd\[13781\]: Failed password for invalid user root from 115.44.243.152 port 52474 ssh2 Mar 3 01:07:18 sd-53420 sshd\[14571\]: Invalid user e from 115.44.243.152 Mar 3 01:07:18 sd-53420 sshd\[14571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.44.243.152 ... |
2020-03-03 08:14:43 |
| 189.160.234.88 | attack | 20/3/2@17:00:40: FAIL: Alarm-Network address from=189.160.234.88 ... |
2020-03-03 08:13:38 |
| 104.248.29.180 | attackspambots | Mar 2 15:37:43 mockhub sshd[2747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.29.180 Mar 2 15:37:45 mockhub sshd[2747]: Failed password for invalid user robert from 104.248.29.180 port 45366 ssh2 ... |
2020-03-03 07:46:30 |
| 212.50.2.211 | attackbotsspam | Ssh brute force |
2020-03-03 08:10:45 |
| 195.74.76.237 | attackbots | Lines containing failures of 195.74.76.237 Mar 2 22:56:42 shared11 sshd[21956]: Invalid user admin from 195.74.76.237 port 56903 Mar 2 22:56:42 shared11 sshd[21956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.74.76.237 Mar 2 22:56:44 shared11 sshd[21956]: Failed password for invalid user admin from 195.74.76.237 port 56903 ssh2 Mar 2 22:56:44 shared11 sshd[21956]: Connection closed by invalid user admin 195.74.76.237 port 56903 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=195.74.76.237 |
2020-03-03 07:41:10 |
| 3.91.219.32 | attackbots | (sshd) Failed SSH login from 3.91.219.32 (US/United States/ec2-3-91-219-32.compute-1.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 3 00:11:33 s1 sshd[11129]: Invalid user ubuntu from 3.91.219.32 port 46246 Mar 3 00:11:35 s1 sshd[11129]: Failed password for invalid user ubuntu from 3.91.219.32 port 46246 ssh2 Mar 3 00:36:14 s1 sshd[11895]: Invalid user kidostore from 3.91.219.32 port 53034 Mar 3 00:36:15 s1 sshd[11895]: Failed password for invalid user kidostore from 3.91.219.32 port 53034 ssh2 Mar 3 01:01:19 s1 sshd[12727]: Invalid user ftpuser from 3.91.219.32 port 59790 |
2020-03-03 08:07:03 |
| 27.72.135.111 | attackspambots | Automatic report - Port Scan Attack |
2020-03-03 08:01:06 |
| 186.5.36.172 | attackspambots | Unauthorized connection attempt from IP address 186.5.36.172 on Port 445(SMB) |
2020-03-03 07:39:00 |
| 202.153.82.2 | attackspambots | Email rejected due to spam filtering |
2020-03-03 07:56:31 |
| 111.231.15.35 | attackbots | Unauthorized connection attempt from IP address 111.231.15.35 on Port 445(SMB) |
2020-03-03 08:10:34 |
| 41.34.188.198 | attackbots | Unauthorized connection attempt from IP address 41.34.188.198 on Port 445(SMB) |
2020-03-03 08:00:42 |