城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 216.139.98.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6742
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;216.139.98.140. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 01:46:18 CST 2022
;; MSG SIZE rcvd: 107b'140.98.139.216.in-addr.arpa domain name pointer customer98-140.grm.net.
'b'140.98.139.216.in-addr.arpa name = customer98-140.grm.net.
Authoritative answers can be found from:
'| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 81.22.45.116 | attack | Oct 22 18:30:29 mc1 kernel: \[3048179.077625\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.116 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=63278 PROTO=TCP SPT=56757 DPT=19696 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 22 18:33:10 mc1 kernel: \[3048340.076727\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.116 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=54851 PROTO=TCP SPT=56757 DPT=19990 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 22 18:36:33 mc1 kernel: \[3048542.841019\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.116 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=62666 PROTO=TCP SPT=56757 DPT=20363 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-10-23 00:40:15 |
| 121.254.26.153 | attackbotsspam | Invalid user kulwinder from 121.254.26.153 port 54326 |
2019-10-23 00:45:38 |
| 37.214.44.150 | attackbotsspam | 2019-10-21 x@x 2019-10-21 09:58:02 unexpected disconnection while reading SMTP command from (mm-150-44-214-37.mgts.dynamic.pppoe.byfly.by) [37.214.44.150]:10920 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.214.44.150 |
2019-10-23 01:09:02 |
| 45.125.66.66 | attack | \[2019-10-22 12:46:18\] SECURITY\[2046\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-22T12:46:18.968-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="878801148627490017",SessionID="0x7f6130804e48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.66/49154",ACLName="no_extension_match" \[2019-10-22 12:46:35\] SECURITY\[2046\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-22T12:46:35.768-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="44901148957156001",SessionID="0x7f61307f6da8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.66/57321",ACLName="no_extension_match" \[2019-10-22 12:46:36\] SECURITY\[2046\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-22T12:46:36.526-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="458401148757329001",SessionID="0x7f6130286de8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.66/60022",ACLName="n |
2019-10-23 00:58:45 |
| 130.61.118.231 | attack | 2019-10-22T16:38:35.221171abusebot-3.cloudsearch.cf sshd\[28533\]: Invalid user tyuiop\)\(\*\&\^% from 130.61.118.231 port 57318 |
2019-10-23 01:02:16 |
| 121.78.129.147 | attack | $f2bV_matches |
2019-10-23 01:04:26 |
| 139.5.36.110 | attackspambots | 2019-10-21 x@x 2019-10-21 09:52:02 unexpected disconnection while reading SMTP command from ([139.5.36.110]) [139.5.36.110]:50274 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.5.36.110 |
2019-10-23 00:51:52 |
| 116.255.149.226 | attackspambots | Oct 22 14:17:50 meumeu sshd[16944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.149.226 Oct 22 14:17:52 meumeu sshd[16944]: Failed password for invalid user phil from 116.255.149.226 port 55527 ssh2 Oct 22 14:24:14 meumeu sshd[17753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.149.226 ... |
2019-10-23 00:57:30 |
| 185.42.181.218 | attack | [portscan] Port scan |
2019-10-23 01:00:05 |
| 195.3.147.47 | attack | Oct 22 18:03:22 herz-der-gamer sshd[414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.3.147.47 user=root Oct 22 18:03:23 herz-der-gamer sshd[414]: Failed password for root from 195.3.147.47 port 21577 ssh2 ... |
2019-10-23 01:01:44 |
| 185.100.85.61 | attack | Oct 22 13:46:56 vpn01 sshd[4834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.100.85.61 Oct 22 13:46:59 vpn01 sshd[4834]: Failed password for invalid user admin from 185.100.85.61 port 54194 ssh2 ... |
2019-10-23 00:49:53 |
| 206.189.30.73 | attackbotsspam | Oct 22 15:03:54 pkdns2 sshd\[17387\]: Invalid user mara from 206.189.30.73Oct 22 15:03:56 pkdns2 sshd\[17387\]: Failed password for invalid user mara from 206.189.30.73 port 53554 ssh2Oct 22 15:07:35 pkdns2 sshd\[17570\]: Invalid user 1z2x3 from 206.189.30.73Oct 22 15:07:37 pkdns2 sshd\[17570\]: Failed password for invalid user 1z2x3 from 206.189.30.73 port 35812 ssh2Oct 22 15:11:13 pkdns2 sshd\[17774\]: Invalid user security from 206.189.30.73Oct 22 15:11:15 pkdns2 sshd\[17774\]: Failed password for invalid user security from 206.189.30.73 port 46290 ssh2 ... |
2019-10-23 01:21:47 |
| 183.82.143.230 | attackspambots | 19/10/22@07:46:20: FAIL: Alarm-Intrusion address from=183.82.143.230 ... |
2019-10-23 01:13:49 |
| 106.12.138.245 | attack | 2019-10-22T16:19:50.636778abusebot-6.cloudsearch.cf sshd\[10109\]: Invalid user adnane from 106.12.138.245 port 44374 |
2019-10-23 00:42:51 |
| 187.72.125.226 | attackspam | SSH Brute Force, server-1 sshd[22021]: Failed password for root from 187.72.125.226 port 8990 ssh2 |
2019-10-23 00:58:11 |