City: unknown
Region: unknown
Country: Philippines
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.93.57.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62476
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;116.93.57.242. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024123001 1800 900 604800 86400
;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 13:11:42 CST 2024
;; MSG SIZE rcvd: 106b'242.57.93.116.in-addr.arpa domain name pointer smtp1-17.aftga.info.
'b'242.57.93.116.in-addr.arpa name = smtp1-17.aftga.info.
Authoritative answers can be found from:
'| IP | Type | Details | Datetime |
|---|---|---|---|
| 142.129.23.119 | bots | 142.129.23.119 - - [15/May/2019:13:52:22 +0800] "GET /check-ip/104.5.86.20 HTTP/1.1" 200 9678 "-" "Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.6) Gecko/20100628 Ubuntu/10.04 (lucid) Firefox/3.6.6 GTB7.0" 142.129.23.119 - - [15/May/2019:13:52:22 +0800] "GET /check-ip/53.2.54.170 HTTP/1.1" 200 11331 "-" "Mozilla/5.0 (Windows NT 5.1; rv:2.0.1) Gecko/20100101 Firefox/5.0" 142.129.23.119 - - [15/May/2019:13:52:22 +0800] "GET /check-ip/14.143.92.250 HTTP/1.1" 200 9825 "-" "Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.6) Gecko/20100628 Ubuntu/10.04 (lucid) Firefox/3.6.6 GTB7.0" 142.129.23.119 - - [15/May/2019:13:52:23 +0800] "GET /check-ip/134.177.82.86 HTTP/1.1" 200 10346 "-" "Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.6) Gecko/20100628 Ubuntu/10.04 (lucid) Firefox/3.6.6 GTB7.0" 142.129.23.119 - - [15/May/2019:13:52:29 +0800] "GET /check-ip/128.199.209.6 HTTP/1.1" 200 10750 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:2.0b8pre) Gecko/20101114 Firefox/4.0b8pre" 142.129.23.119 - - [15/May/2019:13:53:23 +0800] "GET /check-ip/202.98.192.155 HTTP/1.1" 200 9696 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; de; rv:1.9.2.3) Gecko/20121221 Firefox/3.6.8" |
2019-05-15 13:55:15 |
| 212.64.27.235 | attack | May 25 01:28:20 dedicated sshd[28058]: Invalid user osmc from 212.64.27.235 port 56391 |
2019-05-25 07:30:15 |
| 38.100.21.237 | bots | 疑似爬虫但是流量小 |
2019-05-21 14:01:53 |
| 31.184.238.211 | spam | 垃圾评论 |
2019-05-13 09:27:19 |
| 184.164.157.73 | bots | 184.164.157.73 - - [21/May/2019:18:18:59 +0800] "GET /does_not_exist_89057 HTTP/2.0" 404 277 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 UBrowser/7.0.185.1002 Safari/537.36" |
2019-05-21 18:21:29 |
| 31.220.40.54 | attack | May 24 19:10:21 TORMINT sshd\\[25453\\]: pam_unix\\(sshd:auth\\): authentication failure\\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.220.40.54 user=root May 24 19:10:24 TORMINT sshd\\[25453\\]: Failed password for root from 31.220.40.54 port 31238 ssh2 May 24 19:10:27 TORMINT sshd\\[25457\\]: pam_unix\\(sshd:auth\\): authentication failure\\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.220.40.54 user=root |
2019-05-25 07:38:04 |
| 95.105.40.162 | normal | yandex的一个转换服务 95.105.40.162 - - [17/May/2019:17:16:42 +0800] "GET /check-ip/2804:14d:5a83:449f:5ab:f26:15e4:e7ce HTTP/1.1" 200 7986 "https://iframe-toloka.com/" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 YaBrowser/19.3.2.176 Yowser/2.5 Safari/537.36" |
2019-05-17 17:21:58 |
| 195.206.105.32 | attack | 未知参数,有攻击嫌疑 195.206.105.32 - - [21/May/2019:09:29:34 +0800] "GET /check-ip/36.255.87.233&sa=U&ved=0ahUKEwi24qy6vKviAhVKYVAKHX3LDZEQFghvMBM&usg=AOvVaw0pw4L36GM4AN7ztE-QYEby HTTP/1.1" 200 9880 "-" "-" |
2019-05-21 09:32:54 |
| 118.163.196.1 | attack | phpmyadmin db攻击 |
2019-05-09 20:13:46 |
| 54.174.24.226 | bots | 54.174.24.226 - - [08/May/2019:12:55:57 +0800] "GET /robots.txt HTTP/1.1" 301 194 "-" "Mozilla/5.0 (compatible; proximic; +http://www.proximic.com/info/spider.php)" 54.174.24.226 - - [08/May/2019:12:56:29 +0800] "GET /robots.txt HTTP/1.1" 200 472 "-" "Mozilla/5.0 (compatible; proximic; +http://www.proximic.com/info/spider.php)" 54.174.24.226 - - [08/May/2019:12:56:54 +0800] "GET /ads.txt HTTP/1.1" 301 194 "-" "Mozilla/5.0 (compatible; proximic; +http://www.proximic.com/info/spider.php)" 54.174.24.226 - - [08/May/2019:12:57:00 +0800] "GET /ads.txt HTTP/1.1" 404 209 "-" "Mozilla/5.0 (compatible; proximic; +http://www.proximic.com/info/spider.php)" |
2019-05-08 13:03:18 |
| 24.201.166.21 | bots | 24.201.166.21 - - [07/May/2019:07:15:41 +0800] "GET /check-ip/173.177.76.171 HTTP/1.1" 200 10814 "-" "Mozilla/5.0 (X11; NetBSD amd64; rv:16.0) Gecko/20121102 Firefox/16.0" 24.201.166.21 - - [07/May/2019:07:15:48 +0800] "GET /check-ip/173.177.76.171 HTTP/1.1" 200 10171 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2b5) Gecko/20091204 Firefox/3.6b5" 24.201.166.21 - - [07/May/2019:07:15:55 +0800] "GET /check-ip/173.177.76.171 HTTP/1.1" 200 10537 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X; de-AT; rv:1.9.1.8) Gecko/20100625 Firefox/3.6.6" |
2019-05-07 07:17:00 |
| 104.144.128.229 | spam | 垃圾推广 |
2019-05-13 09:29:20 |
| 182.254.197.152 | attack | 182.254.197.152 - - [14/May/2019:06:42:16 +0800] "POST /%75%73%65%72/%72%65%67%69%73%74%65%72?%65%6c%65%6d%65%6e%74%5f%70%61%72%65%6e%74%73=%74%69%6d%65%7a%6f%6e%65%2f%74%69%6d%65%7a%6f%6e%65%2f%23%76%61%6c%75%65&%61%6a%61%78%5f%66%6f%72%6d=1&%5f%77%72%61%70%70%65%72%5f%66%6f%72%6d%61%74=%64%72%75%70%61%6c%5f%61%6http://118.25.52.138/ HTTP/1.1" 301 194 "-" "Mozilla/5.0 (W |
2019-05-14 07:15:21 |
| 84.38.132.58 | bots | bing/yahoo爬虫 84.38.132.58 - - [09/May/2019:12:24:01 +0800] "GET /check-ip/52.91.66.205 HTTP/1.1" 200 10869 "https://ipinfo.asytech.cn" "Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp)" 84.38.132.58 - - [09/May/2019:12:24:07 +0800] "GET /check-ip/170.79.91.46 HTTP/1.1" 200 11582 "https://ipinfo.asytech.cn" "Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp)" 84.38.132.58 - - [09/May/2019:12:24:12 +0800] "GET /check-ip/13.68.231.137 HTTP/1.1" 200 10854 "https://ipinfo.asytech.cn" "Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp)" 84.38.132.58 - - [09/May/2019:12:24:16 +0800] "GET /check-ip/104.194.24.222 HTTP/1.1" 200 10862 "https://ipinfo.asytech.cn" "Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp)" |
2019-05-09 12:24:54 |
| 104.152.52.68 | bots | 104.152.52.68 - - [07/May/2019:14:54:59 +0800] "\\x00\\x00\\x00\\xA4\\xFFSMBr\\x00\\x00\\x00\\x00\\x08\\x01@\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00@\\x06\\x00\\x00\\x01\\x00\\x00\\x81\\x00\\x02PC NETWORK PROGRAM 1.0\\x00\\x02MICROSOFT NETWORKS 1.03\\x00\\x02MICROSOFT NETWORKS 3.0\\x00\\x02LANMAN1.0\\x00\\x02LM1.2X002\\x00\\x02Samba\\x00\\x02NT LANMAN 1.0\\x00\\x02NT LM 0.12\\x00" 400 182 "-" "-" 104.152.52.68 - - [07/May/2019:14:54:59 +0800] "OPTIONS / RTSP/1.0" 400 182 "-" "-" |
2019-05-07 14:57:08 |