城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 99.144.140.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40472
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;99.144.140.189. IN A
;; AUTHORITY SECTION:
. 576 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022011002 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 06:15:18 CST 2022
;; MSG SIZE rcvd: 107189.140.144.99.in-addr.arpa domain name pointer 99-144-140-189.lightspeed.gstanc.sbcglobal.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
189.140.144.99.in-addr.arpa name = 99-144-140-189.lightspeed.gstanc.sbcglobal.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 51.255.28.53 | attackspam | Invalid user rust from 51.255.28.53 port 55490 |
2020-10-03 20:14:53 |
| 111.62.40.36 | attack | 2020-10-02 UTC: (2x) - tomcat(2x) |
2020-10-03 20:22:26 |
| 166.62.122.244 | attackbotsspam | 166.62.122.244 - - [03/Oct/2020:12:54:18 +0100] "POST /wp-login.php HTTP/1.1" 200 2175 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [03/Oct/2020:12:54:25 +0100] "POST /wp-login.php HTTP/1.1" 200 2207 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [03/Oct/2020:12:54:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2204 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-10-03 20:21:40 |
| 119.93.42.153 | attackspambots | Unauthorised access (Oct 2) SRC=119.93.42.153 LEN=52 PREC=0x20 TTL=119 ID=11395 DF TCP DPT=445 WINDOW=8192 SYN |
2020-10-03 19:54:26 |
| 5.160.243.153 | attackbotsspam | Oct 3 10:24:04 XXX sshd[25449]: Invalid user oracle from 5.160.243.153 port 52194 |
2020-10-03 20:11:45 |
| 122.51.32.248 | attackbotsspam | SSH Invalid Login |
2020-10-03 20:19:02 |
| 103.141.174.130 | attackbotsspam | srvr2: (mod_security) mod_security (id:920350) triggered by 103.141.174.130 (BD/-/-): 1 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/02 22:33:37 [error] 142888#0: *187758 [client 103.141.174.130] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160167081795.491896"] [ref "o0,15v21,15"], client: 103.141.174.130, [redacted] request: "GET / HTTP/1.1" [redacted] |
2020-10-03 19:51:23 |
| 89.87.18.188 | attackbots | Oct 2 22:33:20 vps647732 sshd[1867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.87.18.188 Oct 2 22:33:22 vps647732 sshd[1867]: Failed password for invalid user tit0nich from 89.87.18.188 port 50431 ssh2 ... |
2020-10-03 20:05:06 |
| 185.202.1.99 | attackspam | Fail2Ban Ban Triggered |
2020-10-03 20:27:45 |
| 223.99.203.186 | attackbots | Automatic report - Banned IP Access |
2020-10-03 20:14:29 |
| 207.244.252.113 | attackspambots | (From annabelle@merchantpay.top) I have a quick question about working with your business. Like most business owners you just want to survive through to 2021. In order for that to happen you need to save every dollar possible right? This is an honest question, would you continue with the high credit card processing fees if there was another way? New laws are on your side. Test this newly released card processing model this October - just send a phone number and we'll call. $24.99/mo Flat Fee Credit Card Processing (Unlimited) 1) As a small business owner accepting credit/debit, recently passed State Laws are on your side. - Were you aware? New state regulations now in effect, the law was successfully passed in 46 states - effective since August 2019. Since that date you shouldn't be paying above 0.75% Credit Card Processing Fees. 2) You're legally able to demand this new option. Bottom Line: Your processor isn't telling you everything. Why are they hiding the lower fee options? We repre |
2020-10-03 20:02:21 |
| 120.133.136.75 | attack | Oct 3 02:18:10 ns308116 sshd[25787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.133.136.75 user=root Oct 3 02:18:12 ns308116 sshd[25787]: Failed password for root from 120.133.136.75 port 45220 ssh2 Oct 3 02:25:09 ns308116 sshd[9462]: Invalid user ubuntu from 120.133.136.75 port 45695 Oct 3 02:25:09 ns308116 sshd[9462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.133.136.75 Oct 3 02:25:11 ns308116 sshd[9462]: Failed password for invalid user ubuntu from 120.133.136.75 port 45695 ssh2 ... |
2020-10-03 20:22:55 |
| 49.235.84.250 | attack | sshd: Failed password for invalid user .... from 49.235.84.250 port 42370 ssh2 |
2020-10-03 19:52:59 |
| 111.40.217.92 | attackspambots | Invalid user ted from 111.40.217.92 port 59255 |
2020-10-03 20:20:07 |
| 178.80.54.189 | attackspam | 178.80.54.189 - - [02/Oct/2020:22:37:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 178.80.54.189 - - [02/Oct/2020:22:37:22 +0100] "POST /wp-login.php HTTP/1.1" 200 7644 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 178.80.54.189 - - [02/Oct/2020:22:38:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ... |
2020-10-03 19:47:50 |