城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): ChinaNet Ningxia Province Network
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | Unauthorized connection attempt detected from IP address 106.45.0.52 to port 443 [J] |
2020-02-05 09:42:09 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 106.45.0.198 | attack | Detected by ModSecurity. Host header is an IP address, Request URI: / |
2020-08-07 18:17:55 |
| 106.45.0.182 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.182 to port 443 |
2020-07-25 20:37:03 |
| 106.45.0.43 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.43 to port 8081 [J] |
2020-03-02 20:37:01 |
| 106.45.0.168 | attackbots | Unauthorized connection attempt detected from IP address 106.45.0.168 to port 8899 [J] |
2020-03-02 17:15:57 |
| 106.45.0.111 | attackbotsspam | Unauthorized connection attempt detected from IP address 106.45.0.111 to port 22 [J] |
2020-03-02 15:06:55 |
| 106.45.0.255 | attack | Unauthorized connection attempt detected from IP address 106.45.0.255 to port 22 [J] |
2020-03-02 15:06:35 |
| 106.45.0.64 | attackbots | Unauthorized connection attempt detected from IP address 106.45.0.64 to port 8089 [T] |
2020-01-29 17:45:51 |
| 106.45.0.208 | attack | Unauthorized connection attempt detected from IP address 106.45.0.208 to port 8081 [T] |
2020-01-29 17:45:22 |
| 106.45.0.171 | attack | Unauthorized connection attempt detected from IP address 106.45.0.171 to port 8888 [J] |
2020-01-29 10:31:04 |
| 106.45.0.45 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.45 to port 8000 [J] |
2020-01-27 17:38:30 |
| 106.45.0.112 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.112 to port 8000 [J] |
2020-01-27 14:48:50 |
| 106.45.0.56 | attackspam | Unauthorized connection attempt detected from IP address 106.45.0.56 to port 8081 [J] |
2020-01-27 00:51:09 |
| 106.45.0.77 | attackbots | Unauthorized connection attempt detected from IP address 106.45.0.77 to port 8081 [J] |
2020-01-27 00:19:12 |
| 106.45.0.97 | attackbots | Unauthorized connection attempt detected from IP address 106.45.0.97 to port 80 [J] |
2020-01-20 20:37:58 |
| 106.45.0.202 | attack | Unauthorized connection attempt detected from IP address 106.45.0.202 to port 80 [J] |
2020-01-19 14:48:25 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.45.0.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57158
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.45.0.52. IN A
;; AUTHORITY SECTION:
. 434 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020020401 1800 900 604800 86400
;; Query time: 271 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 09:42:06 CST 2020
;; MSG SIZE rcvd: 115
Host 52.0.45.106.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 52.0.45.106.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 220.134.39.187 | attackbots | Port scan |
2019-11-12 22:23:42 |
| 109.87.141.136 | attack | postfix (unknown user, SPF fail or relay access denied) |
2019-11-12 22:37:02 |
| 200.129.207.164 | attack | Nov 12 14:07:09 ns382633 sshd\[20706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.129.207.164 user=root Nov 12 14:07:11 ns382633 sshd\[20706\]: Failed password for root from 200.129.207.164 port 47236 ssh2 Nov 12 14:13:06 ns382633 sshd\[21781\]: Invalid user guest from 200.129.207.164 port 60958 Nov 12 14:13:06 ns382633 sshd\[21781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.129.207.164 Nov 12 14:13:08 ns382633 sshd\[21781\]: Failed password for invalid user guest from 200.129.207.164 port 60958 ssh2 |
2019-11-12 22:08:45 |
| 123.31.31.68 | attackspam | Nov 12 08:50:02 meumeu sshd[3291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.31.68 Nov 12 08:50:04 meumeu sshd[3291]: Failed password for invalid user 33333333 from 123.31.31.68 port 46288 ssh2 Nov 12 08:54:04 meumeu sshd[3820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.31.68 ... |
2019-11-12 22:39:50 |
| 77.91.82.105 | attackspambots | postfix |
2019-11-12 22:40:30 |
| 49.249.235.122 | attackspam | Honeypot attack, port: 445, PTR: static-122.235.249.49-tataidc.co.in. |
2019-11-12 22:15:26 |
| 222.140.116.26 | attack | Honeypot attack, port: 23, PTR: hn.kd.ny.adsl. |
2019-11-12 22:36:08 |
| 202.191.200.227 | attackbots | Nov 11 21:15:30 sachi sshd\[1974\]: Invalid user alisha.bishop from 202.191.200.227 Nov 11 21:15:30 sachi sshd\[1974\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.200.227 Nov 11 21:15:32 sachi sshd\[1974\]: Failed password for invalid user alisha.bishop from 202.191.200.227 port 46336 ssh2 Nov 11 21:20:15 sachi sshd\[2376\]: Invalid user bishop from 202.191.200.227 Nov 11 21:20:15 sachi sshd\[2376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.200.227 |
2019-11-12 22:11:00 |
| 80.82.70.239 | attackspambots | 11/12/2019-08:26:24.736817 80.82.70.239 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-11-12 22:25:48 |
| 178.128.205.72 | attackspam | Nov 12 09:20:56 server sshd\[6439\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.205.72 user=root Nov 12 09:20:58 server sshd\[6439\]: Failed password for root from 178.128.205.72 port 55506 ssh2 Nov 12 09:20:58 server sshd\[6448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.205.72 user=root Nov 12 09:21:00 server sshd\[6448\]: Failed password for root from 178.128.205.72 port 56006 ssh2 Nov 12 09:21:00 server sshd\[6454\]: Invalid user slaw from 178.128.205.72 ... |
2019-11-12 22:13:49 |
| 178.150.132.45 | attack | Nov 12 04:11:54 php1 sshd\[2117\]: Invalid user bevill from 178.150.132.45 Nov 12 04:11:54 php1 sshd\[2117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.150.132.45 Nov 12 04:11:56 php1 sshd\[2117\]: Failed password for invalid user bevill from 178.150.132.45 port 49198 ssh2 Nov 12 04:21:25 php1 sshd\[2908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.150.132.45 user=root Nov 12 04:21:26 php1 sshd\[2908\]: Failed password for root from 178.150.132.45 port 59374 ssh2 |
2019-11-12 22:28:19 |
| 173.212.197.48 | attackspambots | Nov 12 14:32:53 vps666546 sshd\[7390\]: Invalid user oracle from 173.212.197.48 port 37540 Nov 12 14:32:53 vps666546 sshd\[7390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.212.197.48 Nov 12 14:32:55 vps666546 sshd\[7390\]: Failed password for invalid user oracle from 173.212.197.48 port 37540 ssh2 Nov 12 14:38:49 vps666546 sshd\[7604\]: Invalid user ubuntu from 173.212.197.48 port 43434 Nov 12 14:38:49 vps666546 sshd\[7604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.212.197.48 ... |
2019-11-12 22:00:41 |
| 134.209.216.249 | attackbots | miraniessen.de 134.209.216.249 \[12/Nov/2019:08:02:34 +0100\] "POST /wp-login.php HTTP/1.1" 200 5974 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" miraniessen.de 134.209.216.249 \[12/Nov/2019:08:02:37 +0100\] "POST /wp-login.php HTTP/1.1" 200 5975 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-11-12 22:28:04 |
| 103.221.222.231 | attackspam | Automatically reported by fail2ban report script (mx1) |
2019-11-12 22:03:31 |
| 91.83.10.51 | attackbots | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/91.83.10.51/ HU - 1H : (19) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HU NAME ASN : ASN20845 IP : 91.83.10.51 CIDR : 91.83.0.0/19 PREFIX COUNT : 108 UNIQUE IP COUNT : 586496 ATTACKS DETECTED ASN20845 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 7 DateTime : 2019-11-12 07:21:08 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-12 22:07:48 |