城市(city): unknown
省份(region): unknown
国家(country): IANA Special-Purpose Address
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 254.139.243.89
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19799
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;254.139.243.89. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021200 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 15:23:45 CST 2025
;; MSG SIZE rcvd: 107Host 89.243.139.254.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 89.243.139.254.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 94.137.9.242 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 12:43:41,772 INFO [shellcode_manager] (94.137.9.242) no match, writing hexdump (cb433886e24940dc865eac7932fd3454 :2108215) - MS17010 (EternalBlue) |
2019-07-09 14:53:51 |
| 165.22.251.228 | attack | schuetzenmusikanten.de 165.22.251.228 \[09/Jul/2019:05:29:22 +0200\] "POST /wp-login.php HTTP/1.1" 200 5684 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 165.22.251.228 \[09/Jul/2019:05:29:24 +0200\] "POST /wp-login.php HTTP/1.1" 200 5650 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 165.22.251.228 \[09/Jul/2019:05:29:26 +0200\] "POST /wp-login.php HTTP/1.1" 200 5641 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-07-09 15:01:04 |
| 36.70.6.100 | attack | Unauthorized connection attempt from IP address 36.70.6.100 on Port 445(SMB) |
2019-07-09 14:24:06 |
| 151.233.49.226 | attackspam | " " |
2019-07-09 15:07:29 |
| 196.1.99.12 | attackspambots | Jul 9 04:40:29 mail sshd\[29186\]: Invalid user sgi from 196.1.99.12 port 43140 Jul 9 04:40:29 mail sshd\[29186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 ... |
2019-07-09 15:03:54 |
| 203.162.134.6 | attackspambots | Unauthorized connection attempt from IP address 203.162.134.6 on Port 445(SMB) |
2019-07-09 14:16:37 |
| 72.142.80.226 | attackspam | Unauthorized connection attempt from IP address 72.142.80.226 on Port 445(SMB) |
2019-07-09 14:18:52 |
| 14.191.98.255 | attack | Jul 9 05:29:48 vps65 sshd\[22907\]: Invalid user noc from 14.191.98.255 port 61107 Jul 9 05:29:49 vps65 sshd\[22907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.191.98.255 ... |
2019-07-09 14:51:27 |
| 153.36.242.143 | attackspambots | Jul 9 09:03:56 ubuntu-2gb-nbg1-dc3-1 sshd[14366]: Failed password for root from 153.36.242.143 port 37415 ssh2 Jul 9 09:04:00 ubuntu-2gb-nbg1-dc3-1 sshd[14366]: error: maximum authentication attempts exceeded for root from 153.36.242.143 port 37415 ssh2 [preauth] ... |
2019-07-09 15:05:06 |
| 193.70.114.154 | attackspam | Brute force attempt |
2019-07-09 15:03:19 |
| 195.206.36.34 | attackspam | Unauthorized connection attempt from IP address 195.206.36.34 on Port 445(SMB) |
2019-07-09 14:26:18 |
| 177.130.163.51 | attack | SMTP Fraud Orders |
2019-07-09 14:55:33 |
| 106.12.156.233 | attackspam | ECShop Remote Code Execution Vulnerability |
2019-07-09 14:26:58 |
| 123.142.29.76 | attackspam | Jul 9 13:05:45 itv-usvr-02 sshd[21610]: Invalid user jquery from 123.142.29.76 port 60220 Jul 9 13:05:45 itv-usvr-02 sshd[21610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.142.29.76 Jul 9 13:05:45 itv-usvr-02 sshd[21610]: Invalid user jquery from 123.142.29.76 port 60220 Jul 9 13:05:47 itv-usvr-02 sshd[21610]: Failed password for invalid user jquery from 123.142.29.76 port 60220 ssh2 Jul 9 13:08:01 itv-usvr-02 sshd[21612]: Invalid user xin from 123.142.29.76 port 52992 |
2019-07-09 14:12:06 |
| 121.188.88.70 | attack | ECShop Remote Code Execution Vulnerability |
2019-07-09 14:27:54 |