城市(city): Taipei
省份(region): Taipei City
国家(country): Taiwan, China
运营商(isp): Chunghwa Telecom Co. Ltd.
主机名(hostname): unknown
机构(organization): Data Communication Business Group
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.128.142.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27462
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.128.142.139. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019042500 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 25 22:56:28 +08 2019
;; MSG SIZE rcvd: 119
139.142.128.220.in-addr.arpa domain name pointer ktoa.com.tw.
Server: 67.207.67.3
Address: 67.207.67.3#53
Non-authoritative answer:
139.142.128.220.in-addr.arpa name = ktoa.com.tw.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 51.38.129.74 | attackbotsspam | May 20 02:24:09 home sshd[744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.129.74 May 20 02:24:12 home sshd[744]: Failed password for invalid user oce from 51.38.129.74 port 41831 ssh2 May 20 02:28:02 home sshd[1361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.129.74 ... |
2020-05-20 08:39:55 |
| 1.199.159.178 | attackbotsspam | Unauthorized connection attempt detected from IP address 1.199.159.178 to port 139 [T] |
2020-05-20 09:03:41 |
| 213.180.203.30 | attackspambots | [Wed May 20 06:43:12.623881 2020] [:error] [pid 11844:tid 140678298334976] [client 213.180.203.30:57706] [client 213.180.203.30] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XsRvEBNGGN9CEqIJiAc2xwAAAcQ"] ... |
2020-05-20 08:33:20 |
| 106.42.96.129 | attackbots | Unauthorized connection attempt detected from IP address 106.42.96.129 to port 139 [T] |
2020-05-20 08:59:59 |
| 106.12.71.84 | attackspam | May 19 20:40:41 firewall sshd[18084]: Invalid user vxg from 106.12.71.84 May 19 20:40:43 firewall sshd[18084]: Failed password for invalid user vxg from 106.12.71.84 port 59928 ssh2 May 19 20:44:34 firewall sshd[18178]: Invalid user lod from 106.12.71.84 ... |
2020-05-20 08:41:12 |
| 171.12.138.247 | attack | Unauthorized connection attempt detected from IP address 171.12.138.247 to port 139 [T] |
2020-05-20 08:53:30 |
| 85.207.216.2 | attackbots | 20/5/19@19:43:16: FAIL: IoT-Telnet address from=85.207.216.2 ... |
2020-05-20 08:31:55 |
| 1.197.213.160 | attack | Unauthorized connection attempt detected from IP address 1.197.213.160 to port 139 [T] |
2020-05-20 09:06:42 |
| 1.192.103.87 | attackbots | Unauthorized connection attempt detected from IP address 1.192.103.87 to port 139 [T] |
2020-05-20 08:51:53 |
| 49.231.35.39 | attackspam | May 20 02:25:50 piServer sshd[27360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.35.39 May 20 02:25:52 piServer sshd[27360]: Failed password for invalid user wfi from 49.231.35.39 port 39551 ssh2 May 20 02:29:48 piServer sshd[27757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.35.39 ... |
2020-05-20 08:38:09 |
| 202.137.155.68 | attackbots | (sshd) Failed SSH login from 202.137.155.68 (LA/Laos/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 20 01:42:41 ubnt-55d23 sshd[24318]: Invalid user admin from 202.137.155.68 port 35613 May 20 01:42:43 ubnt-55d23 sshd[24318]: Failed password for invalid user admin from 202.137.155.68 port 35613 ssh2 |
2020-05-20 08:52:05 |
| 92.63.194.106 | attack | Invalid user 1234 from 92.63.194.106 port 35415 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.106 Failed password for invalid user 1234 from 92.63.194.106 port 35415 ssh2 Invalid user camera from 92.63.194.106 port 39609 Failed none for invalid user camera from 92.63.194.106 port 39609 ssh2 |
2020-05-20 08:51:07 |
| 171.12.138.201 | attack | Unauthorized connection attempt detected from IP address 171.12.138.201 to port 139 [T] |
2020-05-20 08:53:54 |
| 1.196.140.103 | attackbotsspam | Unauthorized connection attempt detected from IP address 1.196.140.103 to port 139 [T] |
2020-05-20 09:10:59 |
| 106.42.98.118 | attackspam | Unauthorized connection attempt detected from IP address 106.42.98.118 to port 139 [T] |
2020-05-20 08:59:19 |