城市(city): unknown
省份(region): unknown
国家(country): Germany
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.206.14.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40687
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;149.206.14.95. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400
;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 12:45:13 CST 2025
;; MSG SIZE rcvd: 106
Host 95.14.206.149.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 95.14.206.149.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 217.64.147.54 | attackspambots | Unauthorised access (Sep 18) SRC=217.64.147.54 LEN=52 TTL=118 ID=18034 DF TCP DPT=445 WINDOW=8192 SYN |
2020-09-19 22:28:36 |
| 150.109.104.153 | attackbotsspam | 150.109.104.153 (SG/Singapore/-), 3 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 19 09:49:32 honeypot sshd[172629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.149.231 user=root Sep 19 09:48:48 honeypot sshd[172618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.104.153 user=root Sep 19 09:48:50 honeypot sshd[172618]: Failed password for root from 150.109.104.153 port 19648 ssh2 IP Addresses Blocked: 120.92.149.231 (CN/China/-) |
2020-09-19 22:11:29 |
| 139.59.10.186 | attackbots | Sep 19 06:25:58 Tower sshd[35371]: Connection from 139.59.10.186 port 59460 on 192.168.10.220 port 22 rdomain "" Sep 19 06:26:00 Tower sshd[35371]: Invalid user www-data from 139.59.10.186 port 59460 Sep 19 06:26:00 Tower sshd[35371]: error: Could not get shadow information for NOUSER Sep 19 06:26:00 Tower sshd[35371]: Failed password for invalid user www-data from 139.59.10.186 port 59460 ssh2 Sep 19 06:26:00 Tower sshd[35371]: Received disconnect from 139.59.10.186 port 59460:11: Bye Bye [preauth] Sep 19 06:26:00 Tower sshd[35371]: Disconnected from invalid user www-data 139.59.10.186 port 59460 [preauth] |
2020-09-19 22:15:09 |
| 46.32.252.149 | attackspambots | $f2bV_matches |
2020-09-19 22:34:03 |
| 200.223.251.206 | attackspam | Unauthorized connection attempt from IP address 200.223.251.206 on Port 445(SMB) |
2020-09-19 22:06:44 |
| 51.15.204.27 | attack | Sep 19 16:31:21 buvik sshd[7755]: Failed password for invalid user user from 51.15.204.27 port 34318 ssh2 Sep 19 16:35:11 buvik sshd[8303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.204.27 user=root Sep 19 16:35:12 buvik sshd[8303]: Failed password for root from 51.15.204.27 port 43292 ssh2 ... |
2020-09-19 22:41:57 |
| 152.32.229.54 | attackbots | $f2bV_matches |
2020-09-19 22:04:50 |
| 189.81.38.250 | attackspambots | SSH brutforce |
2020-09-19 22:08:07 |
| 159.89.49.183 | attackspam | Sep 19 10:12:23 ny01 sshd[31129]: Failed password for root from 159.89.49.183 port 59752 ssh2 Sep 19 10:15:57 ny01 sshd[31522]: Failed password for root from 159.89.49.183 port 59480 ssh2 |
2020-09-19 22:21:36 |
| 62.152.31.248 | attack | Sep 18 17:01:07 ssh2 sshd[28628]: Failed password for invalid user support from 62.152.31.248 port 48114 ssh2 Sep 18 17:00:49 ssh2 sshd[28624]: Connection from 62.152.31.248 port 48066 on 192.240.101.3 port 22 Sep 18 17:01:07 ssh2 sshd[28624]: User root from cpe-645877.ip.primehome.com not allowed because not listed in AllowUsers ... |
2020-09-19 22:33:06 |
| 193.35.51.23 | attackspambots | Sep 19 15:45:16 relay postfix/smtpd\[26967\]: warning: unknown\[193.35.51.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 19 15:45:33 relay postfix/smtpd\[26966\]: warning: unknown\[193.35.51.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 19 15:54:30 relay postfix/smtpd\[26967\]: warning: unknown\[193.35.51.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 19 15:54:47 relay postfix/smtpd\[29181\]: warning: unknown\[193.35.51.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 19 16:04:08 relay postfix/smtpd\[2673\]: warning: unknown\[193.35.51.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-09-19 22:07:49 |
| 51.77.220.127 | attack | 51.77.220.127 - - [19/Sep/2020:17:46:51 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ... |
2020-09-19 22:13:32 |
| 118.171.53.170 | attack | Unauthorized connection attempt from IP address 118.171.53.170 on Port 445(SMB) |
2020-09-19 22:33:37 |
| 201.72.190.98 | attack | " " |
2020-09-19 22:20:18 |
| 197.210.70.114 | attackbots | Unauthorized connection attempt from IP address 197.210.70.114 on Port 445(SMB) |
2020-09-19 22:32:15 |