城市(city): unknown
省份(region): unknown
国家(country): Canada
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.141.249.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48498
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;161.141.249.125. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025011801 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 19 02:39:00 CST 2025
;; MSG SIZE rcvd: 108Host 125.249.141.161.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 125.249.141.161.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.44.243.161 | attackspambots | Nov 8 19:09:16 h2177944 kernel: \[6112155.288070\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=64571 PROTO=TCP SPT=23990 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:09:34 h2177944 kernel: \[6112173.258398\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=60261 PROTO=TCP SPT=57166 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:12:10 h2177944 kernel: \[6112329.221696\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=19014 PROTO=TCP SPT=40139 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:13:54 h2177944 kernel: \[6112433.916701\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=55872 PROTO=TCP SPT=6946 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:15:10 h2177944 kernel: \[6112509.834276\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 |
2019-11-09 04:30:24 |
| 183.89.126.163 | attackspam | Unauthorized connection attempt from IP address 183.89.126.163 on Port 445(SMB) |
2019-11-09 04:27:04 |
| 51.77.194.241 | attackspambots | Nov 8 21:11:33 SilenceServices sshd[3046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.194.241 Nov 8 21:11:35 SilenceServices sshd[3046]: Failed password for invalid user 1zxc3qwe from 51.77.194.241 port 49698 ssh2 Nov 8 21:14:48 SilenceServices sshd[5547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.194.241 |
2019-11-09 04:17:57 |
| 58.65.197.155 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2019-11-09 04:35:48 |
| 195.231.1.76 | attackspambots | 5x Failed Password |
2019-11-09 04:21:32 |
| 104.236.142.89 | attackbotsspam | $f2bV_matches |
2019-11-09 04:11:16 |
| 89.164.176.200 | attackbotsspam | Unauthorized connection attempt from IP address 89.164.176.200 on Port 445(SMB) |
2019-11-09 04:33:46 |
| 91.195.254.205 | attack | port scan and connect, tcp 23 (telnet) |
2019-11-09 03:59:33 |
| 212.101.224.199 | attack | Brute force attempt |
2019-11-09 04:13:07 |
| 108.62.5.84 | attack | Multiple attempts: Microsoft Windows win.ini Access Attempt Detected, OpenVAS Vulnerability Scanner Detection, HTTP Directory Traversal Request Attempt, Apache Tomcat URIencoding Directory Traversal Vulnerability, Advantech Studio NTWebServer Arbitrary File Access Vulnerability, Generic HTTP Cross Site Scripting Attempt |
2019-11-09 04:23:47 |
| 46.0.203.166 | attackbots | Nov 8 19:52:45 localhost sshd\[8878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.0.203.166 user=root Nov 8 19:52:47 localhost sshd\[8878\]: Failed password for root from 46.0.203.166 port 36810 ssh2 Nov 8 19:56:28 localhost sshd\[8972\]: Invalid user support from 46.0.203.166 port 47304 Nov 8 19:56:28 localhost sshd\[8972\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.0.203.166 Nov 8 19:56:30 localhost sshd\[8972\]: Failed password for invalid user support from 46.0.203.166 port 47304 ssh2 ... |
2019-11-09 04:08:12 |
| 188.165.255.8 | attack | Nov 8 19:59:32 web8 sshd\[22579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.255.8 user=root Nov 8 19:59:34 web8 sshd\[22579\]: Failed password for root from 188.165.255.8 port 46176 ssh2 Nov 8 20:02:56 web8 sshd\[24150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.255.8 user=root Nov 8 20:02:58 web8 sshd\[24150\]: Failed password for root from 188.165.255.8 port 55532 ssh2 Nov 8 20:06:21 web8 sshd\[25677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.255.8 user=root |
2019-11-09 04:08:33 |
| 185.200.118.76 | attack | proto=tcp . spt=33646 . dpt=3389 . src=185.200.118.76 . dst=xx.xx.4.1 . (Listed on rbldns-ru) (493) |
2019-11-09 04:30:02 |
| 134.175.80.27 | attackspam | Nov 8 20:32:22 cavern sshd[25694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.80.27 |
2019-11-09 03:59:14 |
| 128.199.118.27 | attack | Nov 8 15:33:27 mout sshd[14292]: Invalid user oms from 128.199.118.27 port 59244 |
2019-11-09 04:07:19 |