城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.197.228.127
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12419
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.197.228.127. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022801 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 06:03:38 CST 2025
;; MSG SIZE rcvd: 108127.228.197.142.in-addr.arpa domain name pointer syn-142-197-228-127.res.spectrum.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
127.228.197.142.in-addr.arpa name = syn-142-197-228-127.res.spectrum.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.227.253.66 | attack | 24 attempts against mh_ha-misbehave-ban on pole |
2020-08-19 12:32:40 |
| 122.117.154.90 | attackspam | 1597809341 - 08/19/2020 05:55:41 Host: 122.117.154.90/122.117.154.90 Port: 23 TCP Blocked ... |
2020-08-19 12:56:44 |
| 193.169.253.136 | attackbots | 2020-08-19 06:17:12 auth_plain authenticator failed for (gameplay-club.com.ua) [193.169.253.136]: 535 Incorrect authentication data (set_id=sales@gameplay-club.com.ua) 2020-08-19 06:56:19 auth_plain authenticator failed for (gameplay-club.com.ua) [193.169.253.136]: 535 Incorrect authentication data (set_id=sales@gameplay-club.com.ua) ... |
2020-08-19 12:19:45 |
| 45.55.59.115 | attackspam | 45.55.59.115 - - [19/Aug/2020:05:55:50 +0200] "GET /wp-login.php HTTP/1.1" 200 9032 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.59.115 - - [19/Aug/2020:05:55:52 +0200] "POST /wp-login.php HTTP/1.1" 200 9283 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.59.115 - - [19/Aug/2020:05:55:58 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-08-19 12:40:52 |
| 62.210.86.35 | attack | [portscan] Port scan |
2020-08-19 12:58:11 |
| 49.234.212.177 | attackspam | Aug 19 05:46:16 vps1 sshd[10107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.212.177 Aug 19 05:46:18 vps1 sshd[10107]: Failed password for invalid user server from 49.234.212.177 port 50940 ssh2 Aug 19 05:49:31 vps1 sshd[10152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.212.177 Aug 19 05:49:33 vps1 sshd[10152]: Failed password for invalid user pi from 49.234.212.177 port 57858 ssh2 Aug 19 05:52:52 vps1 sshd[10199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.212.177 user=root Aug 19 05:52:53 vps1 sshd[10199]: Failed password for invalid user root from 49.234.212.177 port 36550 ssh2 ... |
2020-08-19 12:33:39 |
| 73.190.128.201 | attackspam | Unauthorised access (Aug 19) SRC=73.190.128.201 LEN=40 TOS=0x10 PREC=0x40 TTL=52 ID=52271 TCP DPT=8080 WINDOW=7887 SYN Unauthorised access (Aug 18) SRC=73.190.128.201 LEN=40 TOS=0x10 PREC=0x40 TTL=52 ID=10432 TCP DPT=8080 WINDOW=7887 SYN |
2020-08-19 12:35:26 |
| 212.70.149.36 | attackbotsspam | 2020-08-18 11:13 SMTP:587 IP autobanned - 3 attempts a day |
2020-08-19 12:55:35 |
| 196.206.254.241 | attackspam | Aug 19 06:48:17 cosmoit sshd[17258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.206.254.241 |
2020-08-19 12:49:23 |
| 118.27.11.126 | attack | 2020-08-19T05:55:43.676540centos sshd[6093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.11.126 2020-08-19T05:55:43.668776centos sshd[6093]: Invalid user remo from 118.27.11.126 port 60282 2020-08-19T05:55:45.953525centos sshd[6093]: Failed password for invalid user remo from 118.27.11.126 port 60282 ssh2 ... |
2020-08-19 12:54:03 |
| 142.93.246.42 | attackspambots | 2020-08-19T04:07:01.641367shield sshd\[24416\]: Invalid user lqx from 142.93.246.42 port 59456 2020-08-19T04:07:01.650018shield sshd\[24416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-19T04:07:03.669370shield sshd\[24416\]: Failed password for invalid user lqx from 142.93.246.42 port 59456 ssh2 2020-08-19T04:10:41.269912shield sshd\[24696\]: Invalid user admin from 142.93.246.42 port 39044 2020-08-19T04:10:41.278362shield sshd\[24696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 |
2020-08-19 12:40:19 |
| 116.105.97.157 | attackspambots | 1597809343 - 08/19/2020 05:55:43 Host: 116.105.97.157/116.105.97.157 Port: 445 TCP Blocked |
2020-08-19 12:54:53 |
| 65.74.177.84 | attackbots | 65.74.177.84 - - [19/Aug/2020:05:50:35 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 65.74.177.84 - - [19/Aug/2020:05:50:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 65.74.177.84 - - [19/Aug/2020:05:50:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2019 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-19 12:51:01 |
| 59.124.6.166 | attackbotsspam | Aug 19 06:25:39 OPSO sshd\[13864\]: Invalid user wct from 59.124.6.166 port 46275 Aug 19 06:25:39 OPSO sshd\[13864\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.124.6.166 Aug 19 06:25:41 OPSO sshd\[13864\]: Failed password for invalid user wct from 59.124.6.166 port 46275 ssh2 Aug 19 06:29:20 OPSO sshd\[14070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.124.6.166 user=root Aug 19 06:29:22 OPSO sshd\[14070\]: Failed password for root from 59.124.6.166 port 47282 ssh2 |
2020-08-19 12:29:46 |
| 58.164.204.22 | attackspam | Draytek Vigor Remote Command Execution Vulnerability, PTR: cpe-58-164-204-22.4cbp-r-962.cha.qld.bigpond.net.au. |
2020-08-19 12:29:18 |