城市(city): unknown
省份(region): unknown
国家(country): United Kingdom of Great Britain and Northern Ireland (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.234.14.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2308
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;92.234.14.68. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012701 1800 900 604800 86400
;; Query time: 154 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 28 02:56:58 CST 2025
;; MSG SIZE rcvd: 10568.14.234.92.in-addr.arpa domain name pointer 68.14-234-92.static.virginmediabusiness.co.uk.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
68.14.234.92.in-addr.arpa name = 68.14-234-92.static.virginmediabusiness.co.uk.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 216.245.209.230 | attackspam | ET SCAN Sipvicious Scan - port: 5060 proto: sip cat: Attempted Information Leakbytes: 448 |
2020-10-14 05:15:31 |
| 92.63.197.53 | attack | firewall-block, port(s): 13343/tcp, 13354/tcp, 13358/tcp, 13390/tcp |
2020-10-14 05:02:30 |
| 89.248.160.178 | attackbots | ET CINS Active Threat Intelligence Poor Reputation IP group 79 - port: 1005 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-14 05:04:10 |
| 194.87.139.188 | attackbots | 164.68.126.225 194.87.139.188 [13/Oct/2020:19:20:38 +0200] "GET //phpMyAdmin/scripts/setup.php HTTP/1.1" 301 532 "-" "-" 164.68.126.225 194.87.139.188 [13/Oct/2020:19:20:38 +0200] "GET //phpmyadmin/scripts/setup.php HTTP/1.1" 301 532 "-" "-" 164.68.126.225 194.87.139.188 [13/Oct/2020:19:20:38 +0200] "GET //pma/scripts/setup.php HTTP/1.1" 301 518 "-" "-" |
2020-10-14 04:39:49 |
| 94.102.51.28 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 86 - port: 14265 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-14 05:18:39 |
| 193.27.228.27 | attackspam | ET DROP Dshield Block Listed Source group 1 - port: 6379 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-14 04:56:58 |
| 185.171.10.96 | attackspambots | Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "db2si4" at 2020-10-13T18:27:00Z |
2020-10-14 04:52:12 |
| 14.185.180.118 | attackbotsspam | Oct 12 13:17:11 cumulus sshd[6794]: Invalid user frank from 14.185.180.118 port 47536 Oct 12 13:17:11 cumulus sshd[6794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.185.180.118 Oct 12 13:17:13 cumulus sshd[6794]: Failed password for invalid user frank from 14.185.180.118 port 47536 ssh2 Oct 12 13:17:13 cumulus sshd[6794]: Received disconnect from 14.185.180.118 port 47536:11: Bye Bye [preauth] Oct 12 13:17:13 cumulus sshd[6794]: Disconnected from 14.185.180.118 port 47536 [preauth] Oct 12 13:20:54 cumulus sshd[7133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.185.180.118 user=r.r Oct 12 13:20:56 cumulus sshd[7133]: Failed password for r.r from 14.185.180.118 port 45414 ssh2 Oct 12 13:20:56 cumulus sshd[7133]: Received disconnect from 14.185.180.118 port 45414:11: Bye Bye [preauth] Oct 12 13:20:56 cumulus sshd[7133]: Disconnected from 14.185.180.118 port 45414 [preauth] ........ ---------------------------------- |
2020-10-14 04:50:56 |
| 51.75.23.214 | attackspambots | 51.75.23.214 - - [13/Oct/2020:21:57:18 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.75.23.214 - - [13/Oct/2020:22:20:38 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-10-14 04:39:05 |
| 71.11.249.31 | attackbotsspam | 2020-10-12T20:42:55.510347abusebot-4.cloudsearch.cf sshd[21843]: Invalid user admin from 71.11.249.31 port 49339 2020-10-12T20:42:55.642691abusebot-4.cloudsearch.cf sshd[21843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=071-011-249-031.res.spectrum.com 2020-10-12T20:42:55.510347abusebot-4.cloudsearch.cf sshd[21843]: Invalid user admin from 71.11.249.31 port 49339 2020-10-12T20:42:57.564633abusebot-4.cloudsearch.cf sshd[21843]: Failed password for invalid user admin from 71.11.249.31 port 49339 ssh2 2020-10-12T20:42:58.660990abusebot-4.cloudsearch.cf sshd[21845]: Invalid user admin from 71.11.249.31 port 49413 2020-10-12T20:42:58.785762abusebot-4.cloudsearch.cf sshd[21845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=071-011-249-031.res.spectrum.com 2020-10-12T20:42:58.660990abusebot-4.cloudsearch.cf sshd[21845]: Invalid user admin from 71.11.249.31 port 49413 2020-10-12T20:43:01.021481abusebot-4.c ... |
2020-10-14 04:42:24 |
| 194.26.25.108 | attackbots | ET DROP Dshield Block Listed Source group 1 - port: 3352 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-14 04:56:39 |
| 103.145.13.124 | attackspambots | ET DROP Dshield Block Listed Source group 1 - port: 5060 proto: sip cat: Misc Attackbytes: 452 |
2020-10-14 05:18:15 |
| 185.221.134.250 | attack | ET SCAN Sipvicious Scan - port: 5060 proto: sip cat: Attempted Information Leakbytes: 452 |
2020-10-14 05:16:34 |
| 78.36.152.186 | attackbots | Oct 13 21:09:38 vm0 sshd[9163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.36.152.186 Oct 13 21:09:41 vm0 sshd[9163]: Failed password for invalid user rupert from 78.36.152.186 port 52551 ssh2 ... |
2020-10-14 04:41:01 |
| 77.72.169.212 | attack | ET INFO Session Traversal Utilities for NAT (STUN Binding Response) - port: 20725 proto: udp cat: Attempted User Privilege Gainbytes: 160 |
2020-10-14 05:05:58 |