城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.94.126.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36731
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;149.94.126.142. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021102 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 13:05:59 CST 2025
;; MSG SIZE rcvd: 107Host 142.126.94.149.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 142.126.94.149.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 54.162.223.100 | attack | 2020/06/02 13:03:55 \[error\] 27758\#27758: \*15553 open\(\) "/volume1/web/wordpress/404javascript.js" failed \(2: No such file or directory\), client: 54.162.223.100, server: blog.rakkor.uk, request: "GET /404javascript.js HTTP/1.1", host: "blog.rakkor.uk", referrer: "http://blog.rakkor.uk/404javascript.js" 2020/06/02 13:03:55 \[error\] 27759\#27759: \*15551 open\(\) "/volume1/web/wordpress/404testpage4525d2fdc" failed \(2: No such file or directory\), client: 54.162.223.100, server: blog.rakkor.uk, request: "GET /404testpage4525d2fdc HTTP/1.1", host: "blog.rakkor.uk", referrer: "http://blog.rakkor.uk/404testpage4525d2fdc" 2020/06/02 13:03:55 \[error\] 27758\#27758: \*15554 open\(\) "/volume1/web/wordpress/.git/HEAD" failed \(2: No such file or directory\), client: 54.162.223.100, server: blog.rakkor.uk, request: "GET /.git/HEAD HTTP/1.1", host: "blog.rakkor.uk", referrer: "http://blog.rakkor.uk/.git/HEAD" |
2020-06-03 00:56:35 |
| 106.54.87.169 | attackbotsspam | SSH/22 MH Probe, BF, Hack - |
2020-06-03 00:38:22 |
| 49.231.35.39 | attack | "fail2ban match" |
2020-06-03 00:36:44 |
| 144.217.214.100 | attackbots | Blocked until: 2020.07.20 20:52:41 TCPMSS DPT=24021 LEN=40 TOS=0x18 PREC=0x00 TTL=243 ID=65213 PROTO=TCP WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-06-03 00:42:42 |
| 177.32.168.211 | attackspam | Jun 2 13:54:14 mxgate1 postfix/postscreen[1463]: CONNECT from [177.32.168.211]:25309 to [176.31.12.44]:25 Jun 2 13:54:14 mxgate1 postfix/dnsblog[1556]: addr 177.32.168.211 listed by domain zen.spamhaus.org as 127.0.0.11 Jun 2 13:54:14 mxgate1 postfix/dnsblog[1556]: addr 177.32.168.211 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 2 13:54:14 mxgate1 postfix/dnsblog[1574]: addr 177.32.168.211 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 2 13:54:14 mxgate1 postfix/dnsblog[1558]: addr 177.32.168.211 listed by domain b.barracudacentral.org as 127.0.0.2 Jun 2 13:54:15 mxgate1 postfix/dnsblog[1559]: addr 177.32.168.211 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 2 13:54:20 mxgate1 postfix/postscreen[1463]: DNSBL rank 5 for [177.32.168.211]:25309 Jun x@x Jun 2 13:54:21 mxgate1 postfix/postscreen[1463]: HANGUP after 1.1 from [177.32.168.211]:25309 in tests after SMTP handshake Jun 2 13:54:21 mxgate1 postfix/postscreen[1463]: DISCONNECT [177.32.168.21........ ------------------------------- |
2020-06-03 00:24:03 |
| 92.82.194.231 | attack | ft-1848-basketball.de 92.82.194.231 [02/Jun/2020:14:04:06 +0200] "POST /xmlrpc.php HTTP/1.1" 200 408 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" ft-1848-basketball.de 92.82.194.231 [02/Jun/2020:14:04:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 408 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" |
2020-06-03 00:48:18 |
| 123.143.203.67 | attack | Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-06-03 00:42:08 |
| 177.1.214.84 | attackspam | 2020-06-02T10:22:58.947575server.mjenks.net sshd[2903852]: Failed password for root from 177.1.214.84 port 3655 ssh2 2020-06-02T10:24:42.798265server.mjenks.net sshd[2904023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.214.84 user=root 2020-06-02T10:24:44.745184server.mjenks.net sshd[2904023]: Failed password for root from 177.1.214.84 port 35020 ssh2 2020-06-02T10:26:28.776391server.mjenks.net sshd[2904270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.214.84 user=root 2020-06-02T10:26:30.276450server.mjenks.net sshd[2904270]: Failed password for root from 177.1.214.84 port 19411 ssh2 ... |
2020-06-03 00:40:06 |
| 165.227.203.162 | attackbots | 2020-06-02T17:19:28.917420mail.broermann.family sshd[31330]: Failed password for root from 165.227.203.162 port 59906 ssh2 2020-06-02T17:22:50.926154mail.broermann.family sshd[31620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.203.162 user=root 2020-06-02T17:22:52.832325mail.broermann.family sshd[31620]: Failed password for root from 165.227.203.162 port 36566 ssh2 2020-06-02T17:26:15.161088mail.broermann.family sshd[32025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.203.162 user=root 2020-06-02T17:26:17.875923mail.broermann.family sshd[32025]: Failed password for root from 165.227.203.162 port 41446 ssh2 ... |
2020-06-03 00:49:55 |
| 203.86.239.251 | attackbotsspam | Jun 2 14:56:14 cdc sshd[22356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.86.239.251 user=root Jun 2 14:56:17 cdc sshd[22356]: Failed password for invalid user root from 203.86.239.251 port 36082 ssh2 |
2020-06-03 00:50:56 |
| 52.188.109.7 | attackspam | ece-17 : Block hidden directories=>/.env(/) |
2020-06-03 00:44:22 |
| 209.141.40.12 | attack | SSH brute-force: detected 13 distinct usernames within a 24-hour window. |
2020-06-03 00:29:47 |
| 46.32.45.207 | attack | Jun 2 16:03:29 vps647732 sshd[30578]: Failed password for root from 46.32.45.207 port 36478 ssh2 ... |
2020-06-03 00:53:29 |
| 187.86.200.18 | attackspam | Bruteforce detected by fail2ban |
2020-06-03 00:39:47 |
| 192.119.71.147 | attackspam | SSH Brute force |
2020-06-03 00:38:44 |