城市(city): unknown
省份(region): unknown
国家(country): Turkey
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.160.0.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56886
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;167.160.0.114. IN A
;; AUTHORITY SECTION:
. 314 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400
;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 14:54:01 CST 2022
;; MSG SIZE rcvd: 106114.0.160.167.in-addr.arpa domain name pointer .Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
114.0.160.167.in-addr.arpa name = .
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 152.231.56.196 | attack | Unauthorized connection attempt detected from IP address 152.231.56.196 to port 8080 [J] |
2020-02-04 08:07:29 |
| 165.227.93.39 | attack | Feb 4 00:07:20 ms-srv sshd[5945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.93.39 user=root Feb 4 00:07:22 ms-srv sshd[5945]: Failed password for invalid user root from 165.227.93.39 port 36002 ssh2 |
2020-02-04 08:30:57 |
| 106.13.65.106 | attackbotsspam | Feb 4 01:07:14 haigwepa sshd[25296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.65.106 Feb 4 01:07:16 haigwepa sshd[25296]: Failed password for invalid user matilda from 106.13.65.106 port 49324 ssh2 ... |
2020-02-04 08:37:54 |
| 104.248.114.67 | attack | Unauthorized connection attempt detected from IP address 104.248.114.67 to port 2220 [J] |
2020-02-04 08:25:52 |
| 199.19.224.191 | attackbots | Automatic report - Banned IP Access |
2020-02-04 08:17:05 |
| 186.19.183.70 | attack | Feb 4 01:04:24 srv01 sshd[30180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.19.183.70 user=tomcat7 Feb 4 01:04:26 srv01 sshd[30180]: Failed password for tomcat7 from 186.19.183.70 port 52192 ssh2 Feb 4 01:07:40 srv01 sshd[30359]: Invalid user lyaturinskaya from 186.19.183.70 port 50174 Feb 4 01:07:40 srv01 sshd[30359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.19.183.70 Feb 4 01:07:40 srv01 sshd[30359]: Invalid user lyaturinskaya from 186.19.183.70 port 50174 Feb 4 01:07:42 srv01 sshd[30359]: Failed password for invalid user lyaturinskaya from 186.19.183.70 port 50174 ssh2 ... |
2020-02-04 08:14:23 |
| 178.62.36.116 | attackspam | $f2bV_matches |
2020-02-04 08:20:17 |
| 66.220.149.28 | attackbotsspam | [Tue Feb 04 07:07:33.501108 2020] [:error] [pid 18719:tid 139896723326720] [client 66.220.149.28:52886] [client 66.220.149.28] ModSecurity: Access denied with code 403 (phase 2). Found 3 byte(s) in REQUEST_URI outside range: 32-36,38-126. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1304"] [id "920272"] [msg "Invalid character in request (outside of printable chars below ascii 127)"] [data "REQUEST_URI=/images/Klimatologi/Analisis/02-Analisis_Dasarian/Dinamika/2020/01_Januari_2020/Das-III/Analisis_Dinamika_Atmosfer\\xe2\\x80\\x93Laut_Dan_Prediksi_Curah_Hujan_Update_Dasarian_III_Januari_2020.jpg"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/EVASION"] [tag "paranoia-level/3"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/Klimatologi/Analisis/02-Analisis_Dasarian/Dinamika ... |
2020-02-04 08:23:07 |
| 115.231.231.3 | attackbotsspam | Feb 4 01:07:18 mout sshd[8885]: Invalid user tommy from 115.231.231.3 port 35486 |
2020-02-04 08:35:04 |
| 109.227.63.3 | attack | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.227.63.3 user=backup Failed password for backup from 109.227.63.3 port 33409 ssh2 Invalid user gg from 109.227.63.3 port 44812 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.227.63.3 Failed password for invalid user gg from 109.227.63.3 port 44812 ssh2 |
2020-02-04 08:21:57 |
| 88.146.219.245 | attackbots | Unauthorized connection attempt detected from IP address 88.146.219.245 to port 2220 [J] |
2020-02-04 08:22:09 |
| 49.232.16.241 | attackbots | Unauthorized connection attempt detected from IP address 49.232.16.241 to port 2220 [J] |
2020-02-04 08:22:35 |
| 111.231.66.74 | attack | Feb 4 01:00:31 srv-ubuntu-dev3 sshd[62114]: Invalid user 221 from 111.231.66.74 Feb 4 01:00:31 srv-ubuntu-dev3 sshd[62114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.66.74 Feb 4 01:00:31 srv-ubuntu-dev3 sshd[62114]: Invalid user 221 from 111.231.66.74 Feb 4 01:00:33 srv-ubuntu-dev3 sshd[62114]: Failed password for invalid user 221 from 111.231.66.74 port 41070 ssh2 Feb 4 01:03:59 srv-ubuntu-dev3 sshd[62389]: Invalid user 213 from 111.231.66.74 Feb 4 01:03:59 srv-ubuntu-dev3 sshd[62389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.66.74 Feb 4 01:03:59 srv-ubuntu-dev3 sshd[62389]: Invalid user 213 from 111.231.66.74 Feb 4 01:04:01 srv-ubuntu-dev3 sshd[62389]: Failed password for invalid user 213 from 111.231.66.74 port 38948 ssh2 Feb 4 01:07:25 srv-ubuntu-dev3 sshd[62730]: Invalid user vk from 111.231.66.74 ... |
2020-02-04 08:30:42 |
| 118.68.165.196 | attackbots | 1580774853 - 02/04/2020 01:07:33 Host: 118.68.165.196/118.68.165.196 Port: 445 TCP Blocked |
2020-02-04 08:24:38 |
| 2a0c:de80:0:aaab::2 | attack | 236 continuous requests such as 2a0c:de80:0:aaab::2 - - [05/Jan/2020:10:30:09 +0800] "GET /favicons/favicon-16x16.png?v=rMqQW0JY8L%29%20AND%20%28SELECT%206067%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%280x7162706b71%2C%28SELECT%20%28ELT%286067%3D6067%2C1%29%29%29%2C0x7178787a71%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%20GROUP%20BY%20x%29a%29%20AND%20%287457%3D7457 HTTP/1.1" 200 1410 "-" "Mozilla/5.0 (X11; U; Linux i686; fr-FR; rv:1.9.1) Gecko/20090624 Ubuntu/9.04 (jaunty) Firefox/3.5" |
2020-02-04 08:41:48 |