城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 97.139.130.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;97.139.130.129. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022001 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 03:00:19 CST 2025
;; MSG SIZE rcvd: 107129.130.139.97.in-addr.arpa domain name pointer 129.sub-97-139-130.myvzw.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
129.130.139.97.in-addr.arpa name = 129.sub-97-139-130.myvzw.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 179.124.34.9 | attack | Apr 16 18:34:40 ift sshd\[14431\]: Invalid user rodrigo from 179.124.34.9Apr 16 18:34:43 ift sshd\[14431\]: Failed password for invalid user rodrigo from 179.124.34.9 port 45406 ssh2Apr 16 18:39:19 ift sshd\[15145\]: Failed password for root from 179.124.34.9 port 42628 ssh2Apr 16 18:40:49 ift sshd\[15521\]: Invalid user nu from 179.124.34.9Apr 16 18:40:51 ift sshd\[15521\]: Failed password for invalid user nu from 179.124.34.9 port 52259 ssh2 ... |
2020-04-17 00:34:47 |
| 211.159.154.136 | attackspam | Lines containing failures of 211.159.154.136 Apr 16 12:55:02 viking sshd[3124]: Invalid user kz from 211.159.154.136 port 42522 Apr 16 12:55:02 viking sshd[3124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.154.136 Apr 16 12:55:04 viking sshd[3124]: Failed password for invalid user kz from 211.159.154.136 port 42522 ssh2 Apr 16 12:55:07 viking sshd[3124]: Received disconnect from 211.159.154.136 port 42522:11: Bye Bye [preauth] Apr 16 12:55:07 viking sshd[3124]: Disconnected from invalid user kz 211.159.154.136 port 42522 [preauth] Apr 16 13:06:40 viking sshd[10794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.154.136 user=r.r Apr 16 13:06:42 viking sshd[10794]: Failed password for r.r from 211.159.154.136 port 38464 ssh2 Apr 16 13:06:42 viking sshd[10794]: Received disconnect from 211.159.154.136 port 38464:11: Bye Bye [preauth] Apr 16 13:06:42 viking sshd[10794]: D........ ------------------------------ |
2020-04-17 00:27:32 |
| 37.120.145.192 | spam | Spaming domain emails to phishing attacks. "Authentication-Results: spf=none (sender IP is 37.120.145.221)" |
2020-04-17 00:39:45 |
| 49.235.244.115 | attackspam | (sshd) Failed SSH login from 49.235.244.115 (US/United States/-): 5 in the last 3600 secs |
2020-04-17 00:51:40 |
| 88.209.217.106 | attackspam | port scan and connect, tcp 1433 (ms-sql-s) |
2020-04-17 00:43:02 |
| 159.89.169.125 | attackspambots | Apr 16 14:59:55 meumeu sshd[4981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.125 Apr 16 14:59:57 meumeu sshd[4981]: Failed password for invalid user oracle from 159.89.169.125 port 46568 ssh2 Apr 16 15:04:03 meumeu sshd[5707]: Failed password for root from 159.89.169.125 port 52944 ssh2 ... |
2020-04-17 00:39:26 |
| 51.89.68.142 | attack | Apr 16 17:50:35 ncomp sshd[31881]: Invalid user test from 51.89.68.142 Apr 16 17:50:35 ncomp sshd[31881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.68.142 Apr 16 17:50:35 ncomp sshd[31881]: Invalid user test from 51.89.68.142 Apr 16 17:50:36 ncomp sshd[31881]: Failed password for invalid user test from 51.89.68.142 port 48758 ssh2 |
2020-04-17 00:30:06 |
| 41.79.196.244 | attack | Automatic report BANNED IP |
2020-04-17 01:00:57 |
| 37.59.52.44 | attackspambots | 37.59.52.44 - - \[16/Apr/2020:08:22:19 -0400\] "GET /wp-login.php HTTP/1.1" 200 1814 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 37.59.52.44 - - \[16/Apr/2020:08:22:20 -0400\] "POST /wp-login.php HTTP/1.1" 200 2248 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ... |
2020-04-17 00:40:37 |
| 181.171.181.50 | attackbotsspam | Apr 16 06:40:53 web1 sshd\[32311\]: Invalid user bw from 181.171.181.50 Apr 16 06:40:53 web1 sshd\[32311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.171.181.50 Apr 16 06:40:55 web1 sshd\[32311\]: Failed password for invalid user bw from 181.171.181.50 port 47612 ssh2 Apr 16 06:45:34 web1 sshd\[336\]: Invalid user ubuntu from 181.171.181.50 Apr 16 06:45:34 web1 sshd\[336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.171.181.50 |
2020-04-17 00:49:12 |
| 180.76.54.234 | attackspambots | Apr 16 19:43:28 hosting sshd[22807]: Invalid user oo from 180.76.54.234 port 44570 ... |
2020-04-17 01:02:21 |
| 45.125.46.231 | attack | Apr 16 11:50:43 master sshd[21846]: Failed password for root from 45.125.46.231 port 32777 ssh2 Apr 16 13:07:14 master sshd[26165]: Failed password for root from 45.125.46.231 port 32777 ssh2 |
2020-04-17 00:40:07 |
| 41.139.172.117 | attackspambots | Dovecot Invalid User Login Attempt. |
2020-04-17 01:07:20 |
| 37.187.225.67 | attack | 2020-04-16T18:40:52.389917v22018076590370373 sshd[14456]: Invalid user lm from 37.187.225.67 port 37262 2020-04-16T18:40:52.395193v22018076590370373 sshd[14456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.225.67 2020-04-16T18:40:52.389917v22018076590370373 sshd[14456]: Invalid user lm from 37.187.225.67 port 37262 2020-04-16T18:40:54.277833v22018076590370373 sshd[14456]: Failed password for invalid user lm from 37.187.225.67 port 37262 ssh2 2020-04-16T18:44:20.526895v22018076590370373 sshd[4314]: Invalid user mb from 37.187.225.67 port 44752 ... |
2020-04-17 00:55:14 |
| 119.29.121.229 | attack | SSH bruteforce (Triggered fail2ban) |
2020-04-17 00:58:47 |