城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.30.15.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65370
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;137.30.15.245. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025030101 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 02 04:28:53 CST 2025
;; MSG SIZE rcvd: 106245.15.30.137.in-addr.arpa domain name pointer acad-6-2-245.dhcp.uno.edu.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
245.15.30.137.in-addr.arpa name = acad-6-2-245.dhcp.uno.edu.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 92.119.160.107 | attack | Nov 9 07:20:48 mc1 kernel: \[4566738.193116\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=24403 PROTO=TCP SPT=50091 DPT=57967 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 07:22:56 mc1 kernel: \[4566866.542077\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54138 PROTO=TCP SPT=50091 DPT=58184 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 07:23:03 mc1 kernel: \[4566872.894851\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=11492 PROTO=TCP SPT=50091 DPT=57610 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-11-09 14:25:22 |
| 54.39.151.22 | attackspambots | 2019-11-09T05:56:17.428323abusebot-8.cloudsearch.cf sshd\[11103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=22.ip-54-39-151.net user=root |
2019-11-09 14:26:25 |
| 130.61.93.5 | attackspambots | Nov 9 07:03:09 vps691689 sshd[26986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.93.5 Nov 9 07:03:12 vps691689 sshd[26986]: Failed password for invalid user melina from 130.61.93.5 port 44748 ssh2 Nov 9 07:06:39 vps691689 sshd[27025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.93.5 ... |
2019-11-09 14:18:42 |
| 49.147.158.125 | attackbotsspam | Unauthorised access (Nov 9) SRC=49.147.158.125 LEN=52 TOS=0x08 PREC=0x20 TTL=105 ID=6088 DF TCP DPT=445 WINDOW=8192 SYN |
2019-11-09 15:01:17 |
| 93.74.162.49 | attack | Nov 9 07:29:36 MK-Soft-VM3 sshd[2525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.74.162.49 Nov 9 07:29:38 MK-Soft-VM3 sshd[2525]: Failed password for invalid user music from 93.74.162.49 port 39922 ssh2 ... |
2019-11-09 14:57:33 |
| 193.70.43.220 | attack | Nov 9 07:57:14 server sshd\[9991\]: Invalid user temp from 193.70.43.220 port 43162 Nov 9 07:57:14 server sshd\[9991\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.43.220 Nov 9 07:57:16 server sshd\[9991\]: Failed password for invalid user temp from 193.70.43.220 port 43162 ssh2 Nov 9 08:01:02 server sshd\[26521\]: Invalid user joana from 193.70.43.220 port 33814 Nov 9 08:01:02 server sshd\[26521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.43.220 |
2019-11-09 14:14:02 |
| 197.225.166.204 | attack | Nov 9 07:29:44 vps01 sshd[24460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.225.166.204 Nov 9 07:29:46 vps01 sshd[24460]: Failed password for invalid user 1234@asdf from 197.225.166.204 port 42594 ssh2 |
2019-11-09 14:51:47 |
| 185.176.27.254 | attackspam | 11/09/2019-02:02:03.305009 185.176.27.254 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-11-09 15:02:31 |
| 2.55.113.52 | attackbots | DATE:2019-11-09 07:29:39, IP:2.55.113.52, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis) |
2019-11-09 14:48:06 |
| 222.186.180.8 | attack | Nov 9 03:21:30 firewall sshd[21863]: Failed password for root from 222.186.180.8 port 12216 ssh2 Nov 9 03:21:30 firewall sshd[21863]: error: maximum authentication attempts exceeded for root from 222.186.180.8 port 12216 ssh2 [preauth] Nov 9 03:21:30 firewall sshd[21863]: Disconnecting: Too many authentication failures [preauth] ... |
2019-11-09 14:27:11 |
| 188.250.14.147 | attackbots | Automatic report - Port Scan Attack |
2019-11-09 14:20:30 |
| 34.69.170.82 | attackspambots | 2019-11-09T06:25:48.452476shield sshd\[13075\]: Invalid user nanda from 34.69.170.82 port 55762 2019-11-09T06:25:48.457080shield sshd\[13075\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.170.69.34.bc.googleusercontent.com 2019-11-09T06:25:50.521136shield sshd\[13075\]: Failed password for invalid user nanda from 34.69.170.82 port 55762 ssh2 2019-11-09T06:29:38.247309shield sshd\[13315\]: Invalid user qhdsme123 from 34.69.170.82 port 37378 2019-11-09T06:29:38.253959shield sshd\[13315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.170.69.34.bc.googleusercontent.com |
2019-11-09 14:58:09 |
| 1.64.103.196 | attack | firewall-block, port(s): 5555/tcp |
2019-11-09 14:44:57 |
| 106.0.6.33 | attackspambots | Port Scan 1433 |
2019-11-09 14:56:10 |
| 46.245.100.192 | attackbots | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/46.245.100.192/ IR - 1H : (64) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IR NAME ASN : ASN43754 IP : 46.245.100.192 CIDR : 46.245.100.0/22 PREFIX COUNT : 183 UNIQUE IP COUNT : 163072 ATTACKS DETECTED ASN43754 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-09 07:30:00 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery |
2019-11-09 14:43:30 |