城市(city): unknown
省份(region): unknown
国家(country): Poland
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.50.100.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55394
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;149.50.100.243. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021400 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 16:01:36 CST 2025
;; MSG SIZE rcvd: 107
Host 243.100.50.149.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 243.100.50.149.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 47.103.36.53 | attackbotsspam | (Oct 19) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=10204 TCP DPT=8080 WINDOW=59605 SYN (Oct 18) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=46505 TCP DPT=8080 WINDOW=3381 SYN (Oct 18) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=19751 TCP DPT=8080 WINDOW=3381 SYN (Oct 17) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=38470 TCP DPT=8080 WINDOW=3381 SYN (Oct 16) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=61111 TCP DPT=8080 WINDOW=3381 SYN (Oct 16) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=11741 TCP DPT=8080 WINDOW=31033 SYN (Oct 16) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=4906 TCP DPT=8080 WINDOW=3381 SYN (Oct 16) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=20622 TCP DPT=8080 WINDOW=59605 SYN (Oct 15) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=1335 TCP DPT=8080 WINDOW=3381 SYN (Oct 15) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=23158 TCP DPT=8080 WINDOW=31033 SYN (Oct 14) LEN=40 TOS=0x10 PREC=0x40 TTL=44 ID=26294 TCP DPT=8080 WINDOW=15371 SYN |
2019-10-19 13:49:23 |
| 185.66.141.20 | attackbotsspam | SQL Injection attack |
2019-10-19 13:07:10 |
| 173.230.155.26 | attackbots | Oct 19 14:40:47 apex-mail sshd[28024]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:40:48 apex-mail sshd[28025]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:40:50 apex-mail sshd[28026]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:40:51 apex-mail sshd[28027]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:40:54 apex-mail sshd[28028]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:40:55 apex-mail sshd[28031]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:40:57 apex-mail sshd[28046]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:40:59 apex-mail sshd[28049]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:41:01 apex-mail sshd[28050]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:41:02 apex-mail sshd[28071]: refused connect from 173.230.155.26 (173.230.155.26) Oct 19 14:41:04 apex-mail sshd[28074]: refused connect from 173......... ------------------------------- |
2019-10-19 13:03:38 |
| 106.12.13.138 | attack | Oct 19 06:57:12 www sshd\[32378\]: Invalid user ible from 106.12.13.138 Oct 19 06:57:12 www sshd\[32378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.138 Oct 19 06:57:14 www sshd\[32378\]: Failed password for invalid user ible from 106.12.13.138 port 41092 ssh2 ... |
2019-10-19 12:59:50 |
| 121.142.111.242 | attack | Invalid user cliente1 from 121.142.111.242 port 47672 |
2019-10-19 13:14:49 |
| 221.237.152.171 | attack | Oct 19 06:46:21 nextcloud sshd\[4706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.237.152.171 user=root Oct 19 06:46:23 nextcloud sshd\[4706\]: Failed password for root from 221.237.152.171 port 37622 ssh2 Oct 19 07:07:54 nextcloud sshd\[6826\]: Invalid user from 221.237.152.171 Oct 19 07:07:54 nextcloud sshd\[6826\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.237.152.171 ... |
2019-10-19 13:16:39 |
| 144.255.6.150 | attack | Oct 19 05:09:34 www_kotimaassa_fi sshd[2318]: Failed password for root from 144.255.6.150 port 11033 ssh2 Oct 19 05:14:31 www_kotimaassa_fi sshd[2326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.255.6.150 ... |
2019-10-19 13:49:49 |
| 59.72.122.148 | attack | Invalid user zanghongrun from 59.72.122.148 port 46076 |
2019-10-19 13:12:32 |
| 145.131.25.241 | attackspam | Automatic report - XMLRPC Attack |
2019-10-19 13:53:08 |
| 54.37.154.254 | attackbotsspam | Fail2Ban - SSH Bruteforce Attempt |
2019-10-19 13:20:09 |
| 206.189.30.229 | attackbots | Oct 19 01:02:35 xtremcommunity sshd\[667936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.30.229 user=root Oct 19 01:02:37 xtremcommunity sshd\[667936\]: Failed password for root from 206.189.30.229 port 59152 ssh2 Oct 19 01:06:04 xtremcommunity sshd\[668014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.30.229 user=root Oct 19 01:06:06 xtremcommunity sshd\[668014\]: Failed password for root from 206.189.30.229 port 40808 ssh2 Oct 19 01:09:29 xtremcommunity sshd\[668166\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.30.229 user=root ... |
2019-10-19 13:13:22 |
| 106.12.33.57 | attackbots | 2019-10-19T04:58:04.505972shield sshd\[32741\]: Invalid user terisocks from 106.12.33.57 port 54436 2019-10-19T04:58:04.510254shield sshd\[32741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.57 2019-10-19T04:58:06.722798shield sshd\[32741\]: Failed password for invalid user terisocks from 106.12.33.57 port 54436 ssh2 2019-10-19T05:03:00.611060shield sshd\[1450\]: Invalid user Robson456 from 106.12.33.57 port 34336 2019-10-19T05:03:00.615015shield sshd\[1450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.57 |
2019-10-19 13:08:00 |
| 185.153.196.191 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-10-19 13:29:00 |
| 218.31.33.34 | attackbotsspam | Oct 19 04:58:53 hcbbdb sshd\[2232\]: Invalid user sushmita from 218.31.33.34 Oct 19 04:58:53 hcbbdb sshd\[2232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.31.33.34 Oct 19 04:58:56 hcbbdb sshd\[2232\]: Failed password for invalid user sushmita from 218.31.33.34 port 43806 ssh2 Oct 19 05:04:46 hcbbdb sshd\[2820\]: Invalid user P@SS2017 from 218.31.33.34 Oct 19 05:04:46 hcbbdb sshd\[2820\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.31.33.34 |
2019-10-19 13:45:56 |
| 223.99.126.67 | attackbots | Oct 19 06:53:28 www sshd\[41958\]: Failed password for root from 223.99.126.67 port 45422 ssh2Oct 19 06:56:42 www sshd\[42012\]: Invalid user e from 223.99.126.67Oct 19 06:56:43 www sshd\[42012\]: Failed password for invalid user e from 223.99.126.67 port 34268 ssh2 ... |
2019-10-19 13:18:43 |