城市(city): Winnipeg
省份(region): Manitoba
国家(country): Canada
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): University of Winnipeg
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.132.192.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23307
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.132.192.195. IN A
;; AUTHORITY SECTION:
. 2642 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019060900 1800 900 604800 86400
;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 10 01:54:53 CST 2019
;; MSG SIZE rcvd: 119
Host 195.192.132.142.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 195.192.132.142.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 202.55.191.40 | attackspambots | Unauthorized connection attempt from IP address 202.55.191.40 on Port 445(SMB) |
2020-03-17 14:03:45 |
| 101.200.53.232 | attackspambots | (smtpauth) Failed SMTP AUTH login from 101.200.53.232 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-03-17 02:59:26 login authenticator failed for (ADMIN) [101.200.53.232]: 535 Incorrect authentication data (set_id=dog@spadanaco.com) |
2020-03-17 14:27:22 |
| 45.238.229.211 | attackspam | Mar 17 00:29:10 nextcloud sshd\[2183\]: Invalid user debian from 45.238.229.211 Mar 17 00:29:10 nextcloud sshd\[2183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.238.229.211 Mar 17 00:29:12 nextcloud sshd\[2183\]: Failed password for invalid user debian from 45.238.229.211 port 62254 ssh2 |
2020-03-17 14:33:53 |
| 222.92.19.227 | attackspambots | Abusive port scan |
2020-03-17 14:22:28 |
| 181.40.66.11 | attackbotsspam | Unauthorized connection attempt detected from IP address 181.40.66.11 to port 445 |
2020-03-17 14:26:55 |
| 203.137.23.66 | attackspam | Brute force Wordpress login |
2020-03-17 14:22:07 |
| 139.210.37.78 | attack | 03/16/2020-19:46:48.944341 139.210.37.78 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-03-17 14:00:12 |
| 94.25.179.124 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 16-03-2020 23:30:11. |
2020-03-17 13:59:25 |
| 41.249.90.200 | attack | Automatic report - Port Scan Attack |
2020-03-17 14:23:30 |
| 140.143.80.8 | attack | Triggered: repeated knocking on closed ports. |
2020-03-17 14:11:16 |
| 61.218.122.209 | attack | firewall-block, port(s): 4567/tcp |
2020-03-17 14:14:18 |
| 36.67.81.7 | attack | (sshd) Failed SSH login from 36.67.81.7 (ID/Indonesia/-): 5 in the last 3600 secs |
2020-03-17 14:31:02 |
| 193.57.40.38 | attack | IP: 193.57.40.38
Ports affected
http protocol over TLS/SSL (443)
World Wide Web HTTP (80)
Abuse Confidence rating 100%
Found in DNSBL('s)
ASN Details
AS49453 Global Layer B.V.
Ukraine (UA)
CIDR 193.57.40.0/24
Log Date: 17/03/2020 5:23:17 AM UTC |
2020-03-17 14:23:49 |
| 190.214.76.144 | attack | SSH_scan |
2020-03-17 14:12:26 |
| 132.148.164.97 | attack | 2020-03-16T20:17:46.219175-07:00 suse-nuc sshd[9943]: Invalid user export from 132.148.164.97 port 44107 ... |
2020-03-17 14:00:49 |