城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 204.39.142.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13481
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;204.39.142.96. IN A
;; AUTHORITY SECTION:
. 377 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022010702 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 08 07:23:44 CST 2022
;; MSG SIZE rcvd: 106Host 96.142.39.204.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 96.142.39.204.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 202.60.165.226 | attackspambots | Unauthorised access (Nov 30) SRC=202.60.165.226 LEN=40 TTL=49 ID=17904 TCP DPT=8080 WINDOW=13665 SYN Unauthorised access (Nov 29) SRC=202.60.165.226 LEN=40 TTL=49 ID=48365 TCP DPT=8080 WINDOW=13665 SYN Unauthorised access (Nov 29) SRC=202.60.165.226 LEN=40 TTL=49 ID=47033 TCP DPT=8080 WINDOW=13665 SYN Unauthorised access (Nov 29) SRC=202.60.165.226 LEN=40 TTL=49 ID=52612 TCP DPT=8080 WINDOW=13665 SYN Unauthorised access (Nov 29) SRC=202.60.165.226 LEN=40 TTL=49 ID=34597 TCP DPT=8080 WINDOW=13665 SYN Unauthorised access (Nov 28) SRC=202.60.165.226 LEN=40 TTL=49 ID=4754 TCP DPT=8080 WINDOW=13665 SYN Unauthorised access (Nov 28) SRC=202.60.165.226 LEN=40 TTL=49 ID=61248 TCP DPT=8080 WINDOW=13665 SYN Unauthorised access (Nov 27) SRC=202.60.165.226 LEN=40 PREC=0x20 TTL=41 ID=24805 TCP DPT=8080 WINDOW=62545 SYN |
2019-11-30 18:05:00 |
| 122.199.152.157 | attackbotsspam | Nov 29 22:50:04 web9 sshd\[16950\]: Invalid user otsuki from 122.199.152.157 Nov 29 22:50:04 web9 sshd\[16950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 Nov 29 22:50:05 web9 sshd\[16950\]: Failed password for invalid user otsuki from 122.199.152.157 port 27881 ssh2 Nov 29 22:53:35 web9 sshd\[17444\]: Invalid user olivia from 122.199.152.157 Nov 29 22:53:35 web9 sshd\[17444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 |
2019-11-30 18:18:33 |
| 82.163.78.169 | attackbotsspam | 82.163.78.169 - - \[30/Nov/2019:14:24:45 +0800\] "GET /wordpress/\~wp-config.php HTTP/1.1" 301 498 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-11-30 18:30:47 |
| 106.51.33.29 | attack | SSH brute-force: detected 27 distinct usernames within a 24-hour window. |
2019-11-30 18:04:36 |
| 118.238.4.201 | attackbotsspam | fail2ban honeypot |
2019-11-30 18:34:48 |
| 139.198.122.76 | attack | Oct 14 00:47:27 meumeu sshd[12941]: Failed password for root from 139.198.122.76 port 42364 ssh2 Oct 14 00:52:11 meumeu sshd[13609]: Failed password for root from 139.198.122.76 port 54040 ssh2 ... |
2019-11-30 18:12:02 |
| 112.85.42.182 | attackbots | 2019-11-30T11:20:57.516137scmdmz1 sshd\[1286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root 2019-11-30T11:21:00.007295scmdmz1 sshd\[1286\]: Failed password for root from 112.85.42.182 port 41616 ssh2 2019-11-30T11:21:03.267949scmdmz1 sshd\[1286\]: Failed password for root from 112.85.42.182 port 41616 ssh2 ... |
2019-11-30 18:24:41 |
| 125.138.217.102 | attack | " " |
2019-11-30 18:05:14 |
| 171.229.27.121 | attackbots | Brute force attempt |
2019-11-30 18:35:52 |
| 49.205.182.65 | attack | Port Scan 1433 |
2019-11-30 18:24:12 |
| 81.22.45.159 | attackbots | 11/30/2019-04:52:13.319557 81.22.45.159 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-11-30 18:27:13 |
| 209.17.97.34 | attackspambots | 209.17.97.34 was recorded 5 times by 5 hosts attempting to connect to the following ports: 993,5061,1025,62078,67. Incident counter (4h, 24h, all-time): 5, 56, 993 |
2019-11-30 18:19:52 |
| 78.253.85.143 | attackspambots | Invalid user admin from 78.253.85.143 port 44906 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.253.85.143 Failed password for invalid user admin from 78.253.85.143 port 44906 ssh2 Invalid user ubuntu from 78.253.85.143 port 45956 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.253.85.143 |
2019-11-30 18:36:31 |
| 47.75.15.127 | attackbotsspam | CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found |
2019-11-30 18:38:29 |
| 138.121.35.102 | attackspam | Lines containing failures of 138.121.35.102 Nov 30 08:07:08 home sshd[10077]: Invalid user test7 from 138.121.35.102 port 34744 Nov 30 08:07:08 home sshd[10077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.35.102 Nov 30 08:07:10 home sshd[10077]: Failed password for invalid user test7 from 138.121.35.102 port 34744 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.121.35.102 |
2019-11-30 18:20:58 |