城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.166.21.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46132
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;149.166.21.91. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025010602 1800 900 604800 86400
;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 12:10:59 CST 2025
;; MSG SIZE rcvd: 106Host 91.21.166.149.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 91.21.166.149.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 41.238.174.63 | attack | DATE:2019-07-12 01:49:43, IP:41.238.174.63, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis) |
2019-07-12 16:48:33 |
| 58.240.52.75 | attack | 2019-07-12T09:56:54.061863 sshd[25283]: Invalid user postgres from 58.240.52.75 port 47896 2019-07-12T09:56:54.078430 sshd[25283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.240.52.75 2019-07-12T09:56:54.061863 sshd[25283]: Invalid user postgres from 58.240.52.75 port 47896 2019-07-12T09:56:56.360158 sshd[25283]: Failed password for invalid user postgres from 58.240.52.75 port 47896 ssh2 2019-07-12T10:08:12.664126 sshd[25452]: Invalid user bot from 58.240.52.75 port 36498 ... |
2019-07-12 16:56:05 |
| 202.83.17.223 | attack | Jul 12 08:09:51 ip-172-31-1-72 sshd\[15389\]: Invalid user wx from 202.83.17.223 Jul 12 08:09:51 ip-172-31-1-72 sshd\[15389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.83.17.223 Jul 12 08:09:54 ip-172-31-1-72 sshd\[15389\]: Failed password for invalid user wx from 202.83.17.223 port 57158 ssh2 Jul 12 08:16:36 ip-172-31-1-72 sshd\[15542\]: Invalid user carter from 202.83.17.223 Jul 12 08:16:36 ip-172-31-1-72 sshd\[15542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.83.17.223 |
2019-07-12 16:21:52 |
| 218.92.0.197 | attackspam | Jul 12 09:10:54 srv-4 sshd\[17415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.197 user=root Jul 12 09:10:56 srv-4 sshd\[17415\]: Failed password for root from 218.92.0.197 port 22531 ssh2 Jul 12 09:13:09 srv-4 sshd\[17649\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.197 user=root ... |
2019-07-12 16:26:00 |
| 62.133.58.66 | attackbots | SMTP AUTH LOGIN |
2019-07-12 16:31:34 |
| 180.76.15.29 | attackbots | Automatic report - Web App Attack |
2019-07-12 16:29:10 |
| 140.143.53.145 | attackbots | Jul 12 13:42:23 vibhu-HP-Z238-Microtower-Workstation sshd\[22779\]: Invalid user support from 140.143.53.145 Jul 12 13:42:23 vibhu-HP-Z238-Microtower-Workstation sshd\[22779\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.53.145 Jul 12 13:42:25 vibhu-HP-Z238-Microtower-Workstation sshd\[22779\]: Failed password for invalid user support from 140.143.53.145 port 18304 ssh2 Jul 12 13:48:44 vibhu-HP-Z238-Microtower-Workstation sshd\[24021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.53.145 user=root Jul 12 13:48:46 vibhu-HP-Z238-Microtower-Workstation sshd\[24021\]: Failed password for root from 140.143.53.145 port 11211 ssh2 ... |
2019-07-12 16:35:06 |
| 222.252.16.140 | attackspambots | Jul 12 10:48:08 meumeu sshd[21128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.16.140 Jul 12 10:48:10 meumeu sshd[21128]: Failed password for invalid user alex from 222.252.16.140 port 42354 ssh2 Jul 12 10:54:16 meumeu sshd[22145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.16.140 ... |
2019-07-12 17:08:34 |
| 197.50.29.80 | attackbots | Brute force attempt |
2019-07-12 17:04:37 |
| 41.90.122.21 | attackbots | Unauthorized connection attempt from IP address 41.90.122.21 on Port 445(SMB) |
2019-07-12 16:23:31 |
| 175.163.96.40 | attackspam | [portscan] tcp/22 [SSH] *(RWIN=52484)(07121009) |
2019-07-12 16:47:50 |
| 159.89.194.149 | attackspambots | Jul 12 10:49:39 eventyay sshd[13652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.194.149 Jul 12 10:49:41 eventyay sshd[13652]: Failed password for invalid user common from 159.89.194.149 port 36724 ssh2 Jul 12 10:55:32 eventyay sshd[15191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.194.149 ... |
2019-07-12 17:10:14 |
| 13.94.43.10 | attack | Invalid user kodi from 13.94.43.10 port 32868 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.43.10 Failed password for invalid user kodi from 13.94.43.10 port 32868 ssh2 Invalid user faber from 13.94.43.10 port 36330 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.43.10 |
2019-07-12 16:58:00 |
| 45.55.42.17 | attackbotsspam | Jul 10 12:26:26 tuxlinux sshd[39603]: Invalid user jenh from 45.55.42.17 port 53803 Jul 10 12:26:26 tuxlinux sshd[39603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.42.17 Jul 10 12:26:26 tuxlinux sshd[39603]: Invalid user jenh from 45.55.42.17 port 53803 Jul 10 12:26:26 tuxlinux sshd[39603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.42.17 ... |
2019-07-12 16:44:49 |
| 186.4.224.171 | attack | Jul 12 10:25:11 apollo sshd\[4954\]: Invalid user mysql from 186.4.224.171Jul 12 10:25:12 apollo sshd\[4954\]: Failed password for invalid user mysql from 186.4.224.171 port 48436 ssh2Jul 12 10:30:55 apollo sshd\[5116\]: Invalid user webuser from 186.4.224.171 ... |
2019-07-12 16:57:07 |