城市(city): unknown
省份(region): unknown
国家(country): unknown
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2001:8d8:1000:20af:364e:450a:9fdb:2811
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 20288
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2001:8d8:1000:20af:364e:450a:9fdb:2811. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Feb 19 00:35:38 CST 2022
;; MSG SIZE rcvd: 67
'1.1.8.2.b.d.f.9.a.0.5.4.e.4.6.3.f.a.0.2.0.0.0.1.8.d.8.0.1.0.0.2.ip6.arpa domain name pointer kundenserver.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
1.1.8.2.b.d.f.9.a.0.5.4.e.4.6.3.f.a.0.2.0.0.0.1.8.d.8.0.1.0.0.2.ip6.arpa name = kundenserver.de.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 85.109.182.37 | attack | Automatic report - Port Scan Attack |
2020-04-27 17:02:34 |
| 161.35.8.29 | attackspambots | (sshd) Failed SSH login from 161.35.8.29 (US/United States/-): 5 in the last 3600 secs |
2020-04-27 16:48:18 |
| 181.48.155.149 | attack | Apr 27 10:26:38 vps333114 sshd[9203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.155.149 Apr 27 10:26:40 vps333114 sshd[9203]: Failed password for invalid user sleeper from 181.48.155.149 port 40644 ssh2 ... |
2020-04-27 17:19:43 |
| 14.143.64.114 | attack | Apr 27 07:15:49 meumeu sshd[23123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.64.114 Apr 27 07:15:51 meumeu sshd[23123]: Failed password for invalid user vmail from 14.143.64.114 port 55740 ssh2 Apr 27 07:19:34 meumeu sshd[23623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.64.114 ... |
2020-04-27 17:06:57 |
| 35.199.82.233 | attack | SSH Brute Force |
2020-04-27 17:25:52 |
| 190.178.200.31 | attack | Fail2Ban Ban Triggered SMTP Abuse Attempt |
2020-04-27 16:56:25 |
| 104.196.4.163 | attackbotsspam | Apr 27 05:45:23 h1745522 sshd[22198]: Invalid user soan from 104.196.4.163 port 56548 Apr 27 05:45:23 h1745522 sshd[22198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.196.4.163 Apr 27 05:45:23 h1745522 sshd[22198]: Invalid user soan from 104.196.4.163 port 56548 Apr 27 05:45:25 h1745522 sshd[22198]: Failed password for invalid user soan from 104.196.4.163 port 56548 ssh2 Apr 27 05:49:06 h1745522 sshd[22243]: Invalid user route from 104.196.4.163 port 50756 Apr 27 05:49:06 h1745522 sshd[22243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.196.4.163 Apr 27 05:49:06 h1745522 sshd[22243]: Invalid user route from 104.196.4.163 port 50756 Apr 27 05:49:09 h1745522 sshd[22243]: Failed password for invalid user route from 104.196.4.163 port 50756 ssh2 Apr 27 05:52:57 h1745522 sshd[22360]: Invalid user lena from 104.196.4.163 port 44358 ... |
2020-04-27 17:19:16 |
| 66.102.6.6 | attackbotsspam | [Mon Apr 27 10:53:12.561278 2020] [:error] [pid 11638:tid 139751813748480] [client 66.102.6.6:51847] [client 66.102.6.6] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/analisis-klimatologi"] [unique_id "XqZXKNsUVPp--jG8n2jRgQAAALU"] ... |
2020-04-27 16:59:31 |
| 180.76.15.157 | attackbotsspam | Automatic report - Banned IP Access |
2020-04-27 17:23:45 |
| 161.35.106.159 | attackbotsspam | Port scan on 1 port(s): 8088 |
2020-04-27 17:05:39 |
| 106.12.193.96 | attackspam | Apr 27 06:09:49 haigwepa sshd[26522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.193.96 Apr 27 06:09:52 haigwepa sshd[26522]: Failed password for invalid user harshini from 106.12.193.96 port 40254 ssh2 ... |
2020-04-27 17:06:05 |
| 82.77.112.108 | attack | Automatic report - Banned IP Access |
2020-04-27 17:20:13 |
| 120.92.155.102 | attackspam | Apr 27 13:42:58 gw1 sshd[7320]: Failed password for root from 120.92.155.102 port 64930 ssh2 ... |
2020-04-27 17:07:31 |
| 91.121.164.188 | attack | 2020-04-27T08:39:40.487836v220200467592115444 sshd[32063]: Invalid user davi from 91.121.164.188 port 40488 2020-04-27T08:39:40.496821v220200467592115444 sshd[32063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.164.188 2020-04-27T08:39:40.487836v220200467592115444 sshd[32063]: Invalid user davi from 91.121.164.188 port 40488 2020-04-27T08:39:42.020901v220200467592115444 sshd[32063]: Failed password for invalid user davi from 91.121.164.188 port 40488 ssh2 2020-04-27T08:43:15.413986v220200467592115444 sshd[32224]: Invalid user dva from 91.121.164.188 port 51494 ... |
2020-04-27 17:02:09 |
| 191.191.170.233 | attackbots | Apr 27 07:02:05 srv-ubuntu-dev3 sshd[47281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.191.170.233 user=root Apr 27 07:02:08 srv-ubuntu-dev3 sshd[47281]: Failed password for root from 191.191.170.233 port 57595 ssh2 Apr 27 07:05:56 srv-ubuntu-dev3 sshd[47804]: Invalid user sun from 191.191.170.233 Apr 27 07:05:56 srv-ubuntu-dev3 sshd[47804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.191.170.233 Apr 27 07:05:56 srv-ubuntu-dev3 sshd[47804]: Invalid user sun from 191.191.170.233 Apr 27 07:05:58 srv-ubuntu-dev3 sshd[47804]: Failed password for invalid user sun from 191.191.170.233 port 44012 ssh2 Apr 27 07:09:39 srv-ubuntu-dev3 sshd[48478]: Invalid user testing from 191.191.170.233 Apr 27 07:09:39 srv-ubuntu-dev3 sshd[48478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.191.170.233 Apr 27 07:09:39 srv-ubuntu-dev3 sshd[48478]: Invalid user testi ... |
2020-04-27 17:14:06 |