城市(city): unknown
省份(region): unknown
国家(country): Italy
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 185.139.31.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56535
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;185.139.31.103. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 04:50:36 CST 2025
;; MSG SIZE rcvd: 107Host 103.31.139.185.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 103.31.139.185.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 192.241.220.59 | attackspambots | Unauthorized SSH login attempts |
2020-07-05 22:07:59 |
| 218.92.0.219 | attack | Jul 5 15:38:56 * sshd[4256]: Failed password for root from 218.92.0.219 port 38472 ssh2 |
2020-07-05 21:42:50 |
| 84.242.176.138 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 74 - port: 26927 proto: TCP cat: Misc Attack |
2020-07-05 21:36:24 |
| 104.131.189.4 | attackbotsspam | 2020-07-05T15:38:27.505240ns386461 sshd\[24274\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.189.4 user=root 2020-07-05T15:38:29.374426ns386461 sshd\[24274\]: Failed password for root from 104.131.189.4 port 40395 ssh2 2020-07-05T15:40:29.295662ns386461 sshd\[26289\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.189.4 user=root 2020-07-05T15:40:31.581794ns386461 sshd\[26289\]: Failed password for root from 104.131.189.4 port 51164 ssh2 2020-07-05T15:41:08.229829ns386461 sshd\[26949\]: Invalid user user2 from 104.131.189.4 port 55246 2020-07-05T15:41:08.234351ns386461 sshd\[26949\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.189.4 ... |
2020-07-05 21:53:41 |
| 192.241.219.144 | attack | ET SCAN Suspicious inbound to Oracle SQL port 1521 - port: 1521 proto: TCP cat: Potentially Bad Traffic |
2020-07-05 21:48:08 |
| 124.193.236.144 | attack | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2020-07-05 21:52:08 |
| 80.82.64.208 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 71 - port: 5901 proto: TCP cat: Misc Attack |
2020-07-05 21:57:26 |
| 156.96.150.87 | attackspambots | ET DROP Spamhaus DROP Listed Traffic Inbound group 12 - port: 80 proto: TCP cat: Misc Attack |
2020-07-05 22:10:26 |
| 104.248.122.143 | attackspam | DATE:2020-07-05 15:37:36, IP:104.248.122.143, PORT:ssh SSH brute force auth (docker-dc) |
2020-07-05 22:13:36 |
| 104.236.115.5 | attackspam | ET CINS Active Threat Intelligence Poor Reputation IP group 100 - port: 12752 proto: TCP cat: Misc Attack |
2020-07-05 22:13:56 |
| 51.91.247.125 | attack |
|
2020-07-05 21:39:34 |
| 5.94.20.9 | attack | Automatic report - Banned IP Access |
2020-07-05 22:04:37 |
| 93.174.95.106 | attackbots | scans 2 times in preceeding hours on the ports (in chronological order) 25565 4321 resulting in total of 3 scans from 93.174.88.0/21 block. |
2020-07-05 21:34:40 |
| 192.241.227.40 | attackbots | ET DROP Dshield Block Listed Source group 1 - port: 1931 proto: TCP cat: Misc Attack |
2020-07-05 21:45:53 |
| 51.161.34.239 | attackbots | SSH Brute-Force reported by Fail2Ban |
2020-07-05 21:39:02 |