城市(city): unknown
省份(region): unknown
国家(country): United States of America
运营商(isp): Verizon Communications Inc.
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | Draytek Vigor Remote Command Execution Vulnerability, PTR: static-100-1-53-14.nwrknj.fios.verizon.net. |
2020-04-23 19:15:48 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 100.1.53.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;100.1.53.14. IN A
;; AUTHORITY SECTION:
. 242 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020042300 1800 900 604800 86400
;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 23 19:15:45 CST 2020
;; MSG SIZE rcvd: 115
14.53.1.100.in-addr.arpa domain name pointer static-100-1-53-14.nwrknj.fios.verizon.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
14.53.1.100.in-addr.arpa name = static-100-1-53-14.nwrknj.fios.verizon.net.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 162.243.128.220 | attack | scans once in preceeding hours on the ports (in chronological order) 44818 resulting in total of 50 scans from 162.243.0.0/16 block. |
2020-04-25 23:43:33 |
| 162.243.129.242 | attackspambots | scans once in preceeding hours on the ports (in chronological order) 2375 resulting in total of 50 scans from 162.243.0.0/16 block. |
2020-04-25 23:39:39 |
| 104.248.92.124 | attack | Apr 25 13:08:02 XXX sshd[24809]: Invalid user electrum from 104.248.92.124 port 33982 |
2020-04-25 23:46:24 |
| 104.248.135.111 | attack | 5038/tcp [2020-04-25]1pkt |
2020-04-25 23:45:28 |
| 162.243.129.7 | attack | scans once in preceeding hours on the ports (in chronological order) 1583 resulting in total of 50 scans from 162.243.0.0/16 block. |
2020-04-25 23:43:01 |
| 185.176.27.94 | attack | scans 5 times in preceeding hours on the ports (in chronological order) 1999 11999 4999 7999 13999 resulting in total of 94 scans from 185.176.27.0/24 block. |
2020-04-25 23:20:14 |
| 104.248.1.92 | attackspam | $f2bV_matches |
2020-04-25 23:49:24 |
| 192.241.239.202 | attackspambots | scans once in preceeding hours on the ports (in chronological order) 3050 resulting in total of 25 scans from 192.241.128.0/17 block. |
2020-04-25 23:10:23 |
| 162.243.133.185 | attackbots | scans once in preceeding hours on the ports (in chronological order) 1911 resulting in total of 50 scans from 162.243.0.0/16 block. |
2020-04-25 23:30:20 |
| 104.248.187.165 | attackbotsspam | Apr 25 16:37:50 vmd26974 sshd[5657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.187.165 Apr 25 16:37:52 vmd26974 sshd[5657]: Failed password for invalid user nexus from 104.248.187.165 port 38934 ssh2 ... |
2020-04-25 23:44:46 |
| 162.243.130.34 | attackspam | scans once in preceeding hours on the ports (in chronological order) 9160 resulting in total of 50 scans from 162.243.0.0/16 block. |
2020-04-25 23:39:10 |
| 192.241.238.18 | attackspam | ET SCAN Suspicious inbound to mySQL port 3306 - port: 3306 proto: TCP cat: Potentially Bad Traffic |
2020-04-25 23:14:08 |
| 162.243.129.94 | attackspam | scans once in preceeding hours on the ports (in chronological order) 7210 resulting in total of 50 scans from 162.243.0.0/16 block. |
2020-04-25 23:41:13 |
| 104.248.127.251 | attackbotsspam | scans once in preceeding hours on the ports (in chronological order) 15395 resulting in total of 13 scans from 104.248.0.0/16 block. |
2020-04-25 23:45:59 |
| 167.172.49.247 | attack | scans once in preceeding hours on the ports (in chronological order) 21895 resulting in total of 13 scans from 167.172.0.0/16 block. |
2020-04-25 23:27:56 |