城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.1.194.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45223
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;149.1.194.148. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 23:47:31 CST 2025
;; MSG SIZE rcvd: 106
Host 148.194.1.149.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 148.194.1.149.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 128.201.59.93 | attack | port scan and connect, tcp 23 (telnet) |
2019-12-25 08:03:59 |
| 14.37.202.211 | attack | Fail2Ban Ban Triggered |
2019-12-25 07:50:07 |
| 185.176.27.54 | attackspambots | 12/24/2019-18:27:45.819213 185.176.27.54 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-12-25 07:58:35 |
| 101.91.200.186 | attack | Dec 24 03:13:06 fwweb01 sshd[24446]: Invalid user test from 101.91.200.186 Dec 24 03:13:06 fwweb01 sshd[24446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.200.186 Dec 24 03:13:08 fwweb01 sshd[24446]: Failed password for invalid user test from 101.91.200.186 port 49392 ssh2 Dec 24 03:13:08 fwweb01 sshd[24446]: Received disconnect from 101.91.200.186: 11: Bye Bye [preauth] Dec 24 03:39:01 fwweb01 sshd[25541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.200.186 user=backup Dec 24 03:39:03 fwweb01 sshd[25541]: Failed password for backup from 101.91.200.186 port 34674 ssh2 Dec 24 03:39:03 fwweb01 sshd[25541]: Received disconnect from 101.91.200.186: 11: Bye Bye [preauth] Dec 24 03:42:24 fwweb01 sshd[25712]: Invalid user info from 101.91.200.186 Dec 24 03:42:24 fwweb01 sshd[25712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101......... ------------------------------- |
2019-12-25 07:56:21 |
| 106.12.93.25 | attackbots | SSH auth scanning - multiple failed logins |
2019-12-25 08:14:00 |
| 161.0.72.11 | attackspambots | SPAM Delivery Attempt |
2019-12-25 08:12:42 |
| 188.165.215.138 | attack | \[2019-12-24 18:23:55\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-24T18:23:55.174-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441902933947",SessionID="0x7f0fb44f9ce8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/188.165.215.138/54472",ACLName="no_extension_match" \[2019-12-24 18:25:53\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-24T18:25:53.982-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441902933947",SessionID="0x7f0fb4a9c488",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/188.165.215.138/58990",ACLName="no_extension_match" \[2019-12-24 18:27:51\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-24T18:27:51.736-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="001441902933947",SessionID="0x7f0fb499d728",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/188.165.215.138/61651",ACLName= |
2019-12-25 07:52:53 |
| 222.186.169.192 | attack | Dec 23 20:16:26 debian sshd[6957]: Unable to negotiate with 222.186.169.192 port 41024: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Dec 24 18:45:27 debian sshd[6351]: Unable to negotiate with 222.186.169.192 port 59808: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ... |
2019-12-25 07:59:48 |
| 88.88.112.98 | attackspambots | Dec 25 02:12:38 server sshd\[14958\]: Invalid user servance from 88.88.112.98 Dec 25 02:12:38 server sshd\[14958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ti0003a400-3666.bb.online.no Dec 25 02:12:40 server sshd\[14958\]: Failed password for invalid user servance from 88.88.112.98 port 47974 ssh2 Dec 25 02:27:06 server sshd\[18120\]: Invalid user shipman from 88.88.112.98 Dec 25 02:27:06 server sshd\[18120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ti0003a400-3666.bb.online.no ... |
2019-12-25 08:23:40 |
| 27.128.230.190 | attackbotsspam | Dec 25 00:55:56 srv-ubuntu-dev3 sshd[31537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.230.190 user=mysql Dec 25 00:55:58 srv-ubuntu-dev3 sshd[31537]: Failed password for mysql from 27.128.230.190 port 44866 ssh2 Dec 25 01:01:33 srv-ubuntu-dev3 sshd[31980]: Invalid user sornson from 27.128.230.190 Dec 25 01:01:33 srv-ubuntu-dev3 sshd[31980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.230.190 Dec 25 01:01:33 srv-ubuntu-dev3 sshd[31980]: Invalid user sornson from 27.128.230.190 Dec 25 01:01:35 srv-ubuntu-dev3 sshd[31980]: Failed password for invalid user sornson from 27.128.230.190 port 54694 ssh2 Dec 25 01:03:46 srv-ubuntu-dev3 sshd[32146]: Invalid user vcsa from 27.128.230.190 ... |
2019-12-25 08:14:27 |
| 200.54.170.198 | attackspam | Dec 25 00:36:01 DAAP sshd[13124]: Invalid user gressmann from 200.54.170.198 port 55230 Dec 25 00:36:01 DAAP sshd[13124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.170.198 Dec 25 00:36:01 DAAP sshd[13124]: Invalid user gressmann from 200.54.170.198 port 55230 Dec 25 00:36:03 DAAP sshd[13124]: Failed password for invalid user gressmann from 200.54.170.198 port 55230 ssh2 Dec 25 00:44:16 DAAP sshd[13283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.170.198 user=root Dec 25 00:44:17 DAAP sshd[13283]: Failed password for root from 200.54.170.198 port 56298 ssh2 ... |
2019-12-25 07:52:18 |
| 46.152.120.38 | attackbots | 1577230083 - 12/25/2019 00:28:03 Host: 46.152.120.38/46.152.120.38 Port: 445 TCP Blocked |
2019-12-25 07:48:11 |
| 222.186.175.217 | attackbotsspam | Dec 25 01:20:41 51-15-180-239 sshd[1982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Dec 25 01:20:43 51-15-180-239 sshd[1982]: Failed password for root from 222.186.175.217 port 36108 ssh2 Dec 25 01:20:46 51-15-180-239 sshd[1982]: Failed password for root from 222.186.175.217 port 36108 ssh2 Dec 25 01:20:41 51-15-180-239 sshd[1982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Dec 25 01:20:43 51-15-180-239 sshd[1982]: Failed password for root from 222.186.175.217 port 36108 ssh2 Dec 25 01:20:46 51-15-180-239 sshd[1982]: Failed password for root from 222.186.175.217 port 36108 ssh2 ... |
2019-12-25 08:21:34 |
| 54.38.241.162 | attackbotsspam | Automatic report - Banned IP Access |
2019-12-25 07:49:48 |
| 121.132.142.244 | attackspam | Dec 25 00:27:58 herz-der-gamer sshd[2274]: Invalid user hales from 121.132.142.244 port 52694 ... |
2019-12-25 07:50:26 |