城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.82.59.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19745
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;18.82.59.54. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400
;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 05:06:50 CST 2025
;; MSG SIZE rcvd: 104Host 54.59.82.18.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 54.59.82.18.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 188.165.238.65 | attack | 2019-09-23 07:49:48,386 fail2ban.actions [818]: NOTICE [sshd] Ban 188.165.238.65 2019-09-23 10:56:41,492 fail2ban.actions [818]: NOTICE [sshd] Ban 188.165.238.65 2019-09-23 14:02:18,350 fail2ban.actions [818]: NOTICE [sshd] Ban 188.165.238.65 ... |
2019-11-09 04:27:42 |
| 177.129.207.41 | attackbotsspam | Caught in portsentry honeypot |
2019-11-09 04:21:48 |
| 51.255.86.223 | attack | Nov 8 20:55:03 mail postfix/smtpd[11300]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 8 20:55:03 mail postfix/smtpd[13137]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 8 20:55:03 mail postfix/smtpd[12935]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-09 04:16:11 |
| 212.1.67.138 | attack | Trying to (more than 3 packets) bruteforce (not open) Samba/Microsoft-DS port 445 |
2019-11-09 04:45:35 |
| 14.168.157.5 | attackbotsspam | Unauthorized connection attempt from IP address 14.168.157.5 on Port 445(SMB) |
2019-11-09 04:49:35 |
| 108.62.5.84 | attack | Multiple attempts: Microsoft Windows win.ini Access Attempt Detected, OpenVAS Vulnerability Scanner Detection, HTTP Directory Traversal Request Attempt, Apache Tomcat URIencoding Directory Traversal Vulnerability, Advantech Studio NTWebServer Arbitrary File Access Vulnerability, Generic HTTP Cross Site Scripting Attempt |
2019-11-09 04:23:47 |
| 159.203.201.54 | attackbotsspam | scan z |
2019-11-09 04:38:43 |
| 182.162.143.236 | attack | 2019-11-08T18:15:43.275048abusebot-5.cloudsearch.cf sshd\[2631\]: Invalid user rakesh from 182.162.143.236 port 38558 |
2019-11-09 04:26:22 |
| 27.72.78.220 | attackspam | Unauthorized connection attempt from IP address 27.72.78.220 on Port 445(SMB) |
2019-11-09 04:31:52 |
| 92.118.160.17 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 90 - port: 8333 proto: TCP cat: Misc Attack |
2019-11-09 04:12:46 |
| 58.65.197.155 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2019-11-09 04:35:48 |
| 183.87.140.29 | attack | Unauthorized connection attempt from IP address 183.87.140.29 on Port 445(SMB) |
2019-11-09 04:41:23 |
| 142.44.243.161 | attackspambots | Nov 8 19:09:16 h2177944 kernel: \[6112155.288070\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=64571 PROTO=TCP SPT=23990 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:09:34 h2177944 kernel: \[6112173.258398\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=60261 PROTO=TCP SPT=57166 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:12:10 h2177944 kernel: \[6112329.221696\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=19014 PROTO=TCP SPT=40139 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:13:54 h2177944 kernel: \[6112433.916701\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=55872 PROTO=TCP SPT=6946 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:15:10 h2177944 kernel: \[6112509.834276\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 |
2019-11-09 04:30:24 |
| 167.71.8.70 | attack | Nov 8 21:10:16 server sshd\[29741\]: Invalid user Operator from 167.71.8.70 Nov 8 21:10:16 server sshd\[29741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=saudigov.info Nov 8 21:10:18 server sshd\[29741\]: Failed password for invalid user Operator from 167.71.8.70 port 54366 ssh2 Nov 8 21:19:35 server sshd\[31698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=saudigov.info user=root Nov 8 21:19:37 server sshd\[31698\]: Failed password for root from 167.71.8.70 port 39000 ssh2 ... |
2019-11-09 04:13:36 |
| 113.160.117.88 | attackspam | Unauthorised access (Nov 8) SRC=113.160.117.88 LEN=44 TTL=243 ID=61050 TCP DPT=1433 WINDOW=1024 SYN |
2019-11-09 04:19:49 |