城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 204.139.72.224
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28743
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;204.139.72.224. IN A
;; AUTHORITY SECTION:
. 428 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022011001 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 03:34:02 CST 2022
;; MSG SIZE rcvd: 107b'Host 224.72.139.204.in-addr.arpa not found: 2(SERVFAIL)
';; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 224.72.139.204.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 218.92.0.178 | attack | Jan 20 03:18:24 debian sshd[13967]: Unable to negotiate with 218.92.0.178 port 40778: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Jan 20 03:31:46 debian sshd[14487]: Unable to negotiate with 218.92.0.178 port 42098: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ... |
2020-01-20 16:37:37 |
| 49.233.136.245 | attackbots | Jan 20 07:28:13 srv206 sshd[6483]: Invalid user tec from 49.233.136.245 Jan 20 07:28:13 srv206 sshd[6483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.136.245 Jan 20 07:28:13 srv206 sshd[6483]: Invalid user tec from 49.233.136.245 Jan 20 07:28:14 srv206 sshd[6483]: Failed password for invalid user tec from 49.233.136.245 port 38262 ssh2 ... |
2020-01-20 16:09:05 |
| 122.51.45.200 | attack | Jan 20 04:48:04 vtv3 sshd[30447]: Failed password for root from 122.51.45.200 port 46542 ssh2 Jan 20 05:00:27 vtv3 sshd[4255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.45.200 Jan 20 05:00:29 vtv3 sshd[4255]: Failed password for invalid user system from 122.51.45.200 port 51192 ssh2 Jan 20 05:05:16 vtv3 sshd[6501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.45.200 Jan 20 05:17:33 vtv3 sshd[12032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.45.200 Jan 20 05:17:35 vtv3 sshd[12032]: Failed password for invalid user chen from 122.51.45.200 port 50028 ssh2 Jan 20 05:20:30 vtv3 sshd[13543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.45.200 Jan 20 05:31:10 vtv3 sshd[18380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.45.200 Jan 20 05:31:12 vtv3 sshd[18380] |
2020-01-20 16:06:30 |
| 164.132.63.169 | attack | ET SCAN Sipvicious User-Agent Detected (friendly-scanner) - port: 5060 proto: UDP cat: Attempted Information Leak |
2020-01-20 15:58:55 |
| 123.124.71.106 | attack | 01/20/2020-05:53:47.101821 123.124.71.106 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433 |
2020-01-20 16:31:54 |
| 155.159.253.60 | attack | Attack, like DDOS, Brute-Force, Port Scan, Hack, etc. |
2020-01-20 16:24:59 |
| 144.217.85.55 | attackbots | /posting.php?mode=post&f=4 |
2020-01-20 16:12:11 |
| 222.186.175.140 | attackbotsspam | Jan 20 09:33:39 vps691689 sshd[27835]: Failed password for root from 222.186.175.140 port 42726 ssh2 Jan 20 09:33:49 vps691689 sshd[27835]: Failed password for root from 222.186.175.140 port 42726 ssh2 Jan 20 09:33:52 vps691689 sshd[27835]: Failed password for root from 222.186.175.140 port 42726 ssh2 Jan 20 09:33:52 vps691689 sshd[27835]: error: maximum authentication attempts exceeded for root from 222.186.175.140 port 42726 ssh2 [preauth] ... |
2020-01-20 16:37:00 |
| 122.164.205.159 | attackbotsspam | ... |
2020-01-20 16:14:38 |
| 185.86.164.106 | attackspambots | Automatic report - Banned IP Access |
2020-01-20 16:01:14 |
| 162.254.0.30 | attack | 20/1/19@23:53:53: FAIL: Alarm-Intrusion address from=162.254.0.30 ... |
2020-01-20 16:26:31 |
| 107.172.150.60 | attackspambots | (From palmermckelvey687@gmail.com) Hello, Have you thought about making your site l function more efficiently and look better so it can generate more profit to your business? I see a significant potential for your site to attract more clients. As soon as people start noticing your site, it'll generate more profit. It's not difficult to achieve, and it'll be cheap too! With a simple redesign and some additional modern and functional elements, your site will be able to attract more clients and make your business grow. I'd like to present you examples that I've made from my previous projects and discuss with you my ideas. Please let me know if you're interested so I can contact you as soon as possible. Just reply with your preferred contact details and the best time for us to have a free consultation over the phone. I hope to speak with you soon! - Mckelvey |
2020-01-20 16:22:50 |
| 104.248.117.234 | attack | Unauthorized connection attempt detected from IP address 104.248.117.234 to port 2220 [J] |
2020-01-20 15:58:40 |
| 192.169.219.72 | attackbots | xmlrpc attack |
2020-01-20 16:09:25 |
| 128.14.133.58 | attack | Unauthorized connection attempt detected from IP address 128.14.133.58 to port 443 [J] |
2020-01-20 16:00:26 |