城市(city): unknown
省份(region): unknown
国家(country): Viet Nam
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.249.67.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14816
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.249.67.13. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 02:30:43 CST 2025
;; MSG SIZE rcvd: 10513.67.249.14.in-addr.arpa domain name pointer static.vnpt.vn.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
13.67.249.14.in-addr.arpa name = static.vnpt.vn.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 191.217.84.226 | attackbots | Jun 30 01:53:00 srv-4 sshd\[23586\]: Invalid user admin from 191.217.84.226 Jun 30 01:53:00 srv-4 sshd\[23586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.217.84.226 Jun 30 01:53:01 srv-4 sshd\[23586\]: Failed password for invalid user admin from 191.217.84.226 port 48677 ssh2 ... |
2019-06-30 10:48:54 |
| 213.209.114.26 | attackspambots | Jun 30 11:04:07 localhost sshd[18301]: Invalid user movies from 213.209.114.26 port 51770 ... |
2019-06-30 11:17:46 |
| 37.49.231.105 | attack | Port scan on 1 port(s): 50802 |
2019-06-30 11:24:54 |
| 14.18.191.206 | attackbots | port scan and connect, tcp 1433 (ms-sql-s) |
2019-06-30 11:31:55 |
| 193.106.26.133 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-29 18:20:56,866 INFO [shellcode_manager] (193.106.26.133) no match, writing hexdump (62fac287814c195fd321eaba9c13180c :6283) - SMB (Unknown) |
2019-06-30 10:45:33 |
| 211.240.121.125 | attackspambots | SSH-BRUTEFORCE |
2019-06-30 11:15:03 |
| 101.81.48.131 | attack | TCP port 445 (SMB) attempt blocked by firewall. [2019-06-29 20:47:41] |
2019-06-30 11:12:48 |
| 51.75.169.169 | attackspam | [SatJun2920:48:28.0520392019][:error][pid29926:tid47129061897984][client51.75.169.169:52558][client51.75.169.169]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"206"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"archivioamarca.ch"][uri"/administrator/index.php"][unique_id"XReyfJfcWKlFwIVqgC7m5wAAAI0"][SatJun2920:48:28.3314512019][:error][pid29922:tid47129072404224][client51.75.169.169:52712][client51.75.169.169]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"206"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICA |
2019-06-30 11:08:49 |
| 89.231.108.143 | attack | Lines containing failures of 89.231.108.143 Jun 26 00:06:51 mellenthin sshd[26270]: Did not receive identification string from 89.231.108.143 port 54766 Jun 26 00:12:54 mellenthin sshd[26438]: Received disconnect from 89.231.108.143 port 56574:11: Bye Bye [preauth] Jun 26 00:12:54 mellenthin sshd[26438]: Disconnected from 89.231.108.143 port 56574 [preauth] Jun 26 00:27:02 mellenthin sshd[26575]: Invalid user admin from 89.231.108.143 port 58968 Jun 26 00:27:02 mellenthin sshd[26575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.231.108.143 Jun 26 00:27:05 mellenthin sshd[26575]: Failed password for invalid user admin from 89.231.108.143 port 58968 ssh2 Jun 26 00:27:05 mellenthin sshd[26575]: Received disconnect from 89.231.108.143 port 58968:11: Bye Bye [preauth] Jun 26 00:27:05 mellenthin sshd[26575]: Disconnected from invalid user admin 89.231.108.143 port 58968 [preauth] Jun 26 00:31:45 mellenthin sshd[26615]: Invalid use........ ------------------------------ |
2019-06-30 10:55:43 |
| 23.129.64.161 | attack | ssh failed login |
2019-06-30 11:29:10 |
| 185.222.56.122 | attackspam | [portscan] Port scan |
2019-06-30 11:06:55 |
| 68.183.29.124 | attackbotsspam | Invalid user daniel from 68.183.29.124 port 39126 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.29.124 Failed password for invalid user daniel from 68.183.29.124 port 39126 ssh2 Invalid user webmaster from 68.183.29.124 port 37074 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.29.124 |
2019-06-30 11:09:50 |
| 189.89.210.42 | attack | SASL PLAIN auth failed: ruser=... |
2019-06-30 10:59:14 |
| 204.17.56.42 | attackspambots | Jun 29 19:48:01 debian sshd\[22854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.17.56.42 user=root Jun 29 19:48:03 debian sshd\[22854\]: Failed password for root from 204.17.56.42 port 33158 ssh2 ... |
2019-06-30 11:18:22 |
| 222.122.202.35 | attackspambots | Jun 30 01:01:22 XXX sshd[28759]: Invalid user postgres from 222.122.202.35 port 33560 |
2019-06-30 11:26:57 |