城市(city): Putrajaya
省份(region): Putrajaya
国家(country): Malaysia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.191.44.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56126
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.191.44.107. IN A
;; AUTHORITY SECTION:
. 460 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020070100 1800 900 604800 86400
;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 01 10:50:01 CST 2020
;; MSG SIZE rcvd: 117
Host 107.44.191.42.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 107.44.191.42.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 191.125.40.183 | attack | Port 22 Scan, PTR: None |
2019-12-27 18:07:33 |
| 46.40.119.104 | attackspam | 1577427996 - 12/27/2019 07:26:36 Host: iliq.dbr.ddns.bulsat.com/46.40.119.104 Port: 27015 UDP Blocked |
2019-12-27 17:55:51 |
| 46.61.235.111 | attackspambots | Dec 27 07:26:41 localhost sshd\[17354\]: Invalid user eriksmoen from 46.61.235.111 port 44070 Dec 27 07:26:41 localhost sshd\[17354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.61.235.111 Dec 27 07:26:43 localhost sshd\[17354\]: Failed password for invalid user eriksmoen from 46.61.235.111 port 44070 ssh2 |
2019-12-27 17:49:51 |
| 194.152.206.93 | attack | Dec 27 10:20:53 [host] sshd[11030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.152.206.93 user=root Dec 27 10:20:56 [host] sshd[11030]: Failed password for root from 194.152.206.93 port 54839 ssh2 Dec 27 10:24:41 [host] sshd[11099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.152.206.93 user=root |
2019-12-27 17:47:59 |
| 122.15.82.90 | attackbots | Dec 26 21:56:41 web1 sshd\[15947\]: Invalid user kao from 122.15.82.90 Dec 26 21:56:41 web1 sshd\[15947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.15.82.90 Dec 26 21:56:44 web1 sshd\[15947\]: Failed password for invalid user kao from 122.15.82.90 port 44904 ssh2 Dec 26 22:00:08 web1 sshd\[16246\]: Invalid user boothe from 122.15.82.90 Dec 26 22:00:08 web1 sshd\[16246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.15.82.90 |
2019-12-27 17:39:51 |
| 51.15.95.127 | attackspam | SSH Brute Force, server-1 sshd[572]: Failed password for root from 51.15.95.127 port 45966 ssh2 |
2019-12-27 17:59:24 |
| 1.232.77.64 | attackbotsspam | 22/tcp 22/tcp 22/tcp... [2019-10-29/12-27]7pkt,1pt.(tcp) |
2019-12-27 18:15:36 |
| 139.59.77.237 | attack | Dec 27 07:55:09 sd-53420 sshd\[22667\]: Invalid user huangguo2010 from 139.59.77.237 Dec 27 07:55:09 sd-53420 sshd\[22667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.77.237 Dec 27 07:55:11 sd-53420 sshd\[22667\]: Failed password for invalid user huangguo2010 from 139.59.77.237 port 42849 ssh2 Dec 27 07:58:25 sd-53420 sshd\[23969\]: Invalid user kurtz from 139.59.77.237 Dec 27 07:58:25 sd-53420 sshd\[23969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.77.237 ... |
2019-12-27 18:14:07 |
| 139.59.80.65 | attack | Dec 27 09:39:23 localhost sshd\[1350\]: Invalid user lynda from 139.59.80.65 port 42180 Dec 27 09:39:23 localhost sshd\[1350\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.80.65 Dec 27 09:39:26 localhost sshd\[1350\]: Failed password for invalid user lynda from 139.59.80.65 port 42180 ssh2 |
2019-12-27 17:45:31 |
| 192.35.249.41 | attack | Host Scan |
2019-12-27 17:38:00 |
| 77.42.96.30 | attackbotsspam | Telnet Server BruteForce Attack |
2019-12-27 17:48:58 |
| 185.209.0.32 | attack | 12/27/2019-09:50:30.922678 185.209.0.32 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-12-27 17:53:13 |
| 120.70.103.40 | attack | $f2bV_matches |
2019-12-27 17:44:08 |
| 113.53.210.127 | attack | 1577427985 - 12/27/2019 07:26:25 Host: 113.53.210.127/113.53.210.127 Port: 445 TCP Blocked |
2019-12-27 18:00:44 |
| 92.119.160.143 | attack | Dec 27 09:07:10 h2177944 kernel: \[632745.066403\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.143 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=14331 PROTO=TCP SPT=48764 DPT=63616 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 27 09:07:10 h2177944 kernel: \[632745.066417\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.143 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=14331 PROTO=TCP SPT=48764 DPT=63616 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 27 09:11:43 h2177944 kernel: \[633018.494373\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.143 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=39460 PROTO=TCP SPT=48764 DPT=34460 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 27 09:11:43 h2177944 kernel: \[633018.494391\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.143 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=39460 PROTO=TCP SPT=48764 DPT=34460 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 27 09:23:04 h2177944 kernel: \[633699.458272\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.143 DST=85.214.1 |
2019-12-27 17:52:42 |