城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.248.49.155 | attack | 'Fail2Ban' |
2020-05-09 07:09:53 |
| 104.248.49.171 | attackspambots | SSH Brute Force |
2020-04-29 13:27:14 |
| 104.248.49.55 | attackbotsspam | Invalid user ftpuser1 from 104.248.49.55 port 33502 |
2020-04-21 15:46:13 |
| 104.248.49.55 | attackbots | $f2bV_matches |
2020-04-14 18:03:05 |
| 104.248.49.55 | attackspambots | Apr 11 15:05:59 legacy sshd[16269]: Failed password for root from 104.248.49.55 port 49220 ssh2 Apr 11 15:09:57 legacy sshd[16388]: Failed password for root from 104.248.49.55 port 59046 ssh2 Apr 11 15:13:58 legacy sshd[16603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.55 ... |
2020-04-11 22:34:09 |
| 104.248.49.171 | attackspambots | SSH Brute Force |
2019-11-01 12:01:28 |
| 104.248.49.171 | attackbotsspam | Sep 1 05:40:21 meumeu sshd[12185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Sep 1 05:40:24 meumeu sshd[12185]: Failed password for invalid user darian from 104.248.49.171 port 53712 ssh2 Sep 1 05:44:20 meumeu sshd[12609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 ... |
2019-09-01 11:55:27 |
| 104.248.49.171 | attack | Invalid user bank from 104.248.49.171 port 37986 |
2019-08-28 16:55:03 |
| 104.248.49.171 | attackspam | Aug 26 02:39:25 lcprod sshd\[20704\]: Invalid user user from 104.248.49.171 Aug 26 02:39:25 lcprod sshd\[20704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 26 02:39:26 lcprod sshd\[20704\]: Failed password for invalid user user from 104.248.49.171 port 41734 ssh2 Aug 26 02:43:28 lcprod sshd\[21029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 user=man Aug 26 02:43:30 lcprod sshd\[21029\]: Failed password for man from 104.248.49.171 port 49748 ssh2 |
2019-08-26 20:50:20 |
| 104.248.49.171 | attack | Aug 22 12:46:34 yabzik sshd[9861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 22 12:46:36 yabzik sshd[9861]: Failed password for invalid user amstest from 104.248.49.171 port 45852 ssh2 Aug 22 12:50:35 yabzik sshd[11312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 |
2019-08-22 18:02:43 |
| 104.248.49.171 | attack | $f2bV_matches |
2019-08-22 08:55:00 |
| 104.248.49.171 | attackspambots | Aug 21 01:51:28 srv-4 sshd\[7509\]: Invalid user test from 104.248.49.171 Aug 21 01:51:28 srv-4 sshd\[7509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 21 01:51:29 srv-4 sshd\[7509\]: Failed password for invalid user test from 104.248.49.171 port 37412 ssh2 ... |
2019-08-21 07:52:23 |
| 104.248.49.171 | attackbotsspam | Invalid user gemma from 104.248.49.171 port 57412 |
2019-08-18 13:00:27 |
| 104.248.49.171 | attack | Invalid user yd from 104.248.49.171 port 44470 |
2019-08-16 12:09:51 |
| 104.248.49.171 | attack | Invalid user yd from 104.248.49.171 port 44470 |
2019-08-15 17:17:42 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.49.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29649
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.248.49.66. IN A
;; AUTHORITY SECTION:
. 494 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400
;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:12:25 CST 2022
;; MSG SIZE rcvd: 106
66.49.248.104.in-addr.arpa domain name pointer staging.geowellex.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
66.49.248.104.in-addr.arpa name = staging.geowellex.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.237.241.29 | attackspam | port scan and connect, tcp 1433 (ms-sql-s) |
2020-09-24 23:09:07 |
| 94.34.177.60 | attackbots | Sep 23 18:59:10 ns382633 sshd\[18632\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.34.177.60 user=root Sep 23 18:59:12 ns382633 sshd\[18632\]: Failed password for root from 94.34.177.60 port 37880 ssh2 Sep 23 19:03:12 ns382633 sshd\[19403\]: Invalid user wiki from 94.34.177.60 port 38074 Sep 23 19:03:12 ns382633 sshd\[19403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.34.177.60 Sep 23 19:03:14 ns382633 sshd\[19403\]: Failed password for invalid user wiki from 94.34.177.60 port 38074 ssh2 |
2020-09-24 23:14:54 |
| 58.208.244.252 | attack | Brute forcing email accounts |
2020-09-24 23:17:07 |
| 114.67.239.47 | attackspambots | Invalid user leon from 114.67.239.47 port 40726 |
2020-09-24 23:14:26 |
| 13.82.147.151 | attack | <6 unauthorized SSH connections |
2020-09-24 22:41:19 |
| 58.57.4.199 | attackbotsspam | Listed on abuseat.org plus zen-spamhaus / proto=6 . srcport=63562 . dstport=445 . (2891) |
2020-09-24 22:38:51 |
| 192.241.238.220 | attack | SSH brute-force attempt |
2020-09-24 23:05:57 |
| 45.15.139.111 | attackbotsspam | (eximsyntax) Exim syntax errors from 45.15.139.111 (ES/Spain/45.15.139.111-ip.goufone.cat): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-23 20:33:56 SMTP call from [45.15.139.111] dropped: too many syntax or protocol errors (last command was "?\034?\032?\027?\031?\034?\033?\030?\032?\026?\016?\r?\v?\f? ?") |
2020-09-24 22:38:08 |
| 45.129.33.120 | attackspam |
|
2020-09-24 23:13:24 |
| 86.107.110.24 | attackbotsspam | Invalid user joao from 86.107.110.24 port 41792 |
2020-09-24 22:49:23 |
| 115.53.229.2 | attackspambots | Port Scan: UDP/4000 |
2020-09-24 22:44:49 |
| 165.22.113.209 | attack | Invalid user oracle from 165.22.113.209 port 50598 |
2020-09-24 22:58:33 |
| 218.92.0.248 | attack | Sep 24 16:36:02 vm0 sshd[2967]: Failed password for root from 218.92.0.248 port 21076 ssh2 Sep 24 16:36:15 vm0 sshd[2967]: error: maximum authentication attempts exceeded for root from 218.92.0.248 port 21076 ssh2 [preauth] ... |
2020-09-24 22:43:59 |
| 192.241.235.181 | attackspambots | [-]:80 192.241.235.181 - - [24/Sep/2020:11:15:00 +0200] "GET /portal/redlion HTTP/1.1" 301 441 "-" "Mozilla/5.0 zgrab/0.x" |
2020-09-24 23:19:09 |
| 216.80.102.155 | attack | Repeated brute force against a port |
2020-09-24 22:54:41 |