城市(city): Livonia
省份(region): Michigan
国家(country): United States
运营商(isp): AT&T
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 99.159.90.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3836
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;99.159.90.245. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022802 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 08:36:48 CST 2025
;; MSG SIZE rcvd: 106245.90.159.99.in-addr.arpa domain name pointer adsl-99-159-90-245.dsl.sfldmi.sbcglobal.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
245.90.159.99.in-addr.arpa name = adsl-99-159-90-245.dsl.sfldmi.sbcglobal.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.248.115.231 | attackspam | Oct 8 19:42:53 arianus sshd\[15019\]: Unable to negotiate with 104.248.115.231 port 44406: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 \[preauth\] ... |
2019-10-09 02:19:18 |
| 66.249.69.216 | attack | Automatic report - Banned IP Access |
2019-10-09 02:27:26 |
| 84.193.199.205 | attackspambots | port scan and connect, tcp 23 (telnet) |
2019-10-09 02:53:57 |
| 217.67.21.68 | attackspam | Oct 8 14:00:44 meumeu sshd[18458]: Failed password for root from 217.67.21.68 port 50866 ssh2 Oct 8 14:04:38 meumeu sshd[19044]: Failed password for root from 217.67.21.68 port 34352 ssh2 ... |
2019-10-09 02:29:05 |
| 221.4.146.171 | attackspam | The IP address [221.4.146.171] experienced 5 failed attempts when attempting to log into SSH |
2019-10-09 02:29:44 |
| 58.56.198.222 | attackspam | Unauthorised access (Oct 8) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=50363 TCP DPT=8080 WINDOW=44951 SYN Unauthorised access (Oct 8) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=3198 TCP DPT=8080 WINDOW=21631 SYN Unauthorised access (Oct 7) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=62260 TCP DPT=8080 WINDOW=21631 SYN Unauthorised access (Oct 7) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=45997 TCP DPT=8080 WINDOW=47091 SYN Unauthorised access (Oct 7) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=4549 TCP DPT=8080 WINDOW=47091 SYN Unauthorised access (Oct 6) SRC=58.56.198.222 LEN=40 TOS=0x10 PREC=0x40 TTL=47 ID=27696 TCP DPT=8080 WINDOW=21631 SYN |
2019-10-09 02:19:50 |
| 138.97.2.32 | attackbotsspam | Oct 8 21:58:03 our-server-hostname postfix/smtpd[30836]: connect from unknown[138.97.2.32] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.97.2.32 |
2019-10-09 02:27:45 |
| 196.52.43.88 | attackspam | Unauthorized SSH login attempts |
2019-10-09 02:50:22 |
| 113.125.25.73 | attack | 2019-10-08T18:21:17.445874abusebot-3.cloudsearch.cf sshd\[15571\]: Invalid user Viper@123 from 113.125.25.73 port 55480 |
2019-10-09 02:48:27 |
| 219.149.225.154 | attackspam | Sep 9 00:56:27 dallas01 sshd[3896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.149.225.154 Sep 9 00:56:29 dallas01 sshd[3896]: Failed password for invalid user alison from 219.149.225.154 port 57492 ssh2 Sep 9 01:02:46 dallas01 sshd[4867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.149.225.154 |
2019-10-09 02:30:03 |
| 175.107.198.23 | attackspambots | Oct 8 18:01:26 vps sshd[13106]: Failed password for root from 175.107.198.23 port 38297 ssh2 Oct 8 18:15:48 vps sshd[14035]: Failed password for root from 175.107.198.23 port 49413 ssh2 ... |
2019-10-09 02:26:13 |
| 176.58.124.134 | attackbotsspam | [Tue Oct 08 14:46:19.320998 2019] [:error] [pid 223273] [client 176.58.124.134:46704] [client 176.58.124.134] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "200.132.59.212"] [uri "/default"] [unique_id "XZzLawsDafO7W8IVbtVkpQAAAAQ"] ... |
2019-10-09 02:16:07 |
| 216.244.66.236 | attack | Automated report (2019-10-08T11:48:48+00:00). Misbehaving bot detected at this address. |
2019-10-09 02:20:04 |
| 219.157.132.185 | attackspambots | Aug 18 13:09:33 dallas01 sshd[5642]: Failed password for root from 219.157.132.185 port 60478 ssh2 Aug 18 13:09:40 dallas01 sshd[5642]: Failed password for root from 219.157.132.185 port 60478 ssh2 Aug 18 13:09:42 dallas01 sshd[5642]: Failed password for root from 219.157.132.185 port 60478 ssh2 Aug 18 13:09:45 dallas01 sshd[5642]: Failed password for root from 219.157.132.185 port 60478 ssh2 Aug 18 13:09:45 dallas01 sshd[5642]: error: maximum authentication attempts exceeded for root from 219.157.132.185 port 60478 ssh2 [preauth] |
2019-10-09 02:18:58 |
| 116.196.109.197 | attackbots | 2019-10-08T18:07:17.698098abusebot-5.cloudsearch.cf sshd\[7259\]: Invalid user rakesh from 116.196.109.197 port 33898 |
2019-10-09 02:27:09 |