城市(city): Riyadh
省份(region): Ar Riyad
国家(country): Saudi Arabia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.49.4.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9416
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;94.49.4.139. IN A
;; AUTHORITY SECTION:
. 536 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2023021201 1800 900 604800 86400
;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 13 05:21:39 CST 2023
;; MSG SIZE rcvd: 104Host 139.4.49.94.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 139.4.49.94.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 185.143.73.142 | attack | 2020-07-16 09:45:22 auth_plain authenticator failed for (User) [185.143.73.142]: 535 Incorrect authentication data (set_id=saturne@csmailer.org) 2020-07-16 09:45:45 auth_plain authenticator failed for (User) [185.143.73.142]: 535 Incorrect authentication data (set_id=smarterstats@csmailer.org) 2020-07-16 09:46:07 auth_plain authenticator failed for (User) [185.143.73.142]: 535 Incorrect authentication data (set_id=blindfold@csmailer.org) 2020-07-16 09:46:28 auth_plain authenticator failed for (User) [185.143.73.142]: 535 Incorrect authentication data (set_id=no-exist-subdomain-pre@csmailer.org) 2020-07-16 09:46:51 auth_plain authenticator failed for (User) [185.143.73.142]: 535 Incorrect authentication data (set_id=From@csmailer.org) ... |
2020-07-16 17:48:58 |
| 94.102.56.231 | attackbots | TCP ports : 8488 / 8996 |
2020-07-16 18:20:06 |
| 23.94.92.51 | attack | unknown 23.94.92.51 vps-2758f11b.vps.ovh.net 51.68.140.104 spf:workablebeam.tech:51.68.140.104 Mary White |
2020-07-16 18:03:39 |
| 123.206.23.106 | attackspambots | Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-07-16 17:47:05 |
| 184.105.247.239 | attackspambots | srv02 Mass scanning activity detected Target: 5351 .. |
2020-07-16 18:19:05 |
| 139.59.4.200 | attackbots | 139.59.4.200 - - [16/Jul/2020:07:20:05 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.4.200 - - [16/Jul/2020:07:20:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1924 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.4.200 - - [16/Jul/2020:07:20:10 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-07-16 18:15:12 |
| 106.13.82.231 | attackbots | Invalid user rancid from 106.13.82.231 port 44962 |
2020-07-16 18:19:32 |
| 218.78.44.107 | attack | Port Scan ... |
2020-07-16 17:53:51 |
| 13.75.71.42 | attackbots | SSH Brute-Force reported by Fail2Ban |
2020-07-16 18:00:22 |
| 34.195.178.249 | attackspam | 2020-07-16T13:22:01.763223SusPend.routelink.net.id sshd[57189]: Invalid user ubuntu from 34.195.178.249 port 34910 2020-07-16T13:22:04.216938SusPend.routelink.net.id sshd[57189]: Failed password for invalid user ubuntu from 34.195.178.249 port 34910 ssh2 2020-07-16T13:30:00.795686SusPend.routelink.net.id sshd[58148]: Invalid user 1 from 34.195.178.249 port 37238 ... |
2020-07-16 18:13:13 |
| 142.93.246.42 | attackspam | 2020-07-16T10:31:40+0200 Failed SSH Authentication/Brute Force Attack. (Server 10) |
2020-07-16 18:10:09 |
| 222.89.56.136 | attackspam | firewall-block, port(s): 23/tcp |
2020-07-16 17:52:06 |
| 210.245.12.150 | attackbots | firewall-block, port(s): 9090/tcp |
2020-07-16 17:56:09 |
| 178.33.12.237 | attackbotsspam | Jul 16 12:15:03 hosting sshd[29918]: Invalid user iptv from 178.33.12.237 port 52632 ... |
2020-07-16 18:00:38 |
| 13.65.214.72 | attackbotsspam | Jul 16 12:13:07 lvps178-77-74-153 sshd[14242]: User root from 13.65.214.72 not allowed because none of user's groups are listed in AllowGroups ... |
2020-07-16 18:14:15 |