城市(city): Porsgrunn
省份(region): Vestfold og Telemark
国家(country): Norway
运营商(isp): Telenor
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 193.214.107.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26840
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;193.214.107.12. IN A
;; AUTHORITY SECTION:
. 216 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020033101 1800 900 604800 86400
;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 05:26:27 CST 2020
;; MSG SIZE rcvd: 118Host 12.107.214.193.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 12.107.214.193.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 190.207.136.35 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 22:00:44. |
2019-09-23 09:14:57 |
| 191.232.191.238 | attackbots | Sep 22 20:47:48 TORMINT sshd\[3584\]: Invalid user libsys from 191.232.191.238 Sep 22 20:47:48 TORMINT sshd\[3584\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.191.238 Sep 22 20:47:49 TORMINT sshd\[3584\]: Failed password for invalid user libsys from 191.232.191.238 port 41392 ssh2 ... |
2019-09-23 09:02:33 |
| 39.59.12.182 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 22:00:51. |
2019-09-23 09:05:52 |
| 217.133.58.148 | attackbots | Sep 22 22:18:09 XXX sshd[48947]: Invalid user mona from 217.133.58.148 port 49577 |
2019-09-23 09:21:25 |
| 46.101.170.142 | attack | Sep 22 17:54:44 auw2 sshd\[14344\]: Invalid user oracle from 46.101.170.142 Sep 22 17:54:44 auw2 sshd\[14344\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=thibaut.sh Sep 22 17:54:46 auw2 sshd\[14344\]: Failed password for invalid user oracle from 46.101.170.142 port 50770 ssh2 Sep 22 17:58:54 auw2 sshd\[14775\]: Invalid user tecmin from 46.101.170.142 Sep 22 17:58:54 auw2 sshd\[14775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=thibaut.sh |
2019-09-23 12:05:52 |
| 125.123.127.80 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 22:00:41. |
2019-09-23 09:23:19 |
| 222.186.190.2 | attackbotsspam | [Aegis] @ 2019-09-23 05:02:15 0100 -> Maximum authentication attempts exceeded. |
2019-09-23 12:04:38 |
| 114.37.80.164 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 22:00:36. |
2019-09-23 09:30:14 |
| 203.195.246.58 | attack | SSH authentication failure x 6 reported by Fail2Ban ... |
2019-09-23 12:04:56 |
| 14.228.167.230 | attackbotsspam | Unauthorised access (Sep 23) SRC=14.228.167.230 LEN=52 TTL=117 ID=26859 DF TCP DPT=445 WINDOW=8192 SYN |
2019-09-23 09:31:22 |
| 142.93.99.56 | attackspam | [munged]::443 142.93.99.56 - - [23/Sep/2019:01:19:12 +0200] "POST /[munged]: HTTP/1.1" 200 9078 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 142.93.99.56 - - [23/Sep/2019:01:19:15 +0200] "POST /[munged]: HTTP/1.1" 200 9078 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 142.93.99.56 - - [23/Sep/2019:01:19:18 +0200] "POST /[munged]: HTTP/1.1" 200 9078 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 142.93.99.56 - - [23/Sep/2019:01:19:22 +0200] "POST /[munged]: HTTP/1.1" 200 9078 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 142.93.99.56 - - [23/Sep/2019:01:19:25 +0200] "POST /[munged]: HTTP/1.1" 200 9078 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 142.93.99.56 - - [23/Sep/2019:01:19:27 +0200] "POST /[munged]: HTTP/1.1" 200 9078 "-" "Mozilla/5.0 (X11; Ubuntu; Li |
2019-09-23 08:59:51 |
| 180.183.128.40 | attack | Triggered by Fail2Ban at Vostok web server |
2019-09-23 09:26:47 |
| 36.71.238.203 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 22:00:49. |
2019-09-23 09:08:26 |
| 165.227.18.169 | attackbotsspam | Sep 23 00:52:50 ws12vmsma01 sshd[1257]: Invalid user sm from 165.227.18.169 Sep 23 00:52:52 ws12vmsma01 sshd[1257]: Failed password for invalid user sm from 165.227.18.169 port 34212 ssh2 Sep 23 00:58:51 ws12vmsma01 sshd[2060]: Invalid user roland from 165.227.18.169 ... |
2019-09-23 12:02:58 |
| 106.12.202.181 | attackbots | Sep 22 15:06:07 aiointranet sshd\[11169\]: Invalid user jules from 106.12.202.181 Sep 22 15:06:07 aiointranet sshd\[11169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.202.181 Sep 22 15:06:08 aiointranet sshd\[11169\]: Failed password for invalid user jules from 106.12.202.181 port 30085 ssh2 Sep 22 15:10:16 aiointranet sshd\[11658\]: Invalid user diretor from 106.12.202.181 Sep 22 15:10:16 aiointranet sshd\[11658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.202.181 |
2019-09-23 09:26:09 |