城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.150.252.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34578
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;161.150.252.164. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012300 1800 900 604800 86400
;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 22:58:11 CST 2025
;; MSG SIZE rcvd: 108
Host 164.252.150.161.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 164.252.150.161.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.248.122.143 | attack | Jul 8 13:50:54 debian-2gb-nbg1-2 kernel: \[16467653.043738\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.122.143 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=65465 PROTO=TCP SPT=41418 DPT=15165 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-07-08 20:21:48 |
| 218.92.0.216 | attackspam | Jul 8 13:43:41 host sshd[9162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.216 user=root Jul 8 13:43:44 host sshd[9162]: Failed password for root from 218.92.0.216 port 50655 ssh2 ... |
2020-07-08 19:45:06 |
| 120.133.1.16 | attack | 11173/tcp 27424/tcp 13350/tcp... [2020-06-22/07-08]53pkt,19pt.(tcp) |
2020-07-08 20:02:36 |
| 165.227.45.249 | attack | Brute-force attempt banned |
2020-07-08 19:52:19 |
| 163.172.154.178 | attackspambots | Jul 8 12:04:24 plex-server sshd[744216]: Invalid user rox from 163.172.154.178 port 60588 Jul 8 12:04:24 plex-server sshd[744216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.154.178 Jul 8 12:04:24 plex-server sshd[744216]: Invalid user rox from 163.172.154.178 port 60588 Jul 8 12:04:26 plex-server sshd[744216]: Failed password for invalid user rox from 163.172.154.178 port 60588 ssh2 Jul 8 12:07:26 plex-server sshd[745284]: Invalid user trash from 163.172.154.178 port 57570 ... |
2020-07-08 20:11:49 |
| 120.50.182.186 | attack | 1594208923 - 07/08/2020 13:48:43 Host: 120.50.182.186/120.50.182.186 Port: 445 TCP Blocked |
2020-07-08 20:08:59 |
| 51.254.38.106 | attackbotsspam | Jul 8 06:01:32 server1 sshd\[4666\]: Invalid user rustserver from 51.254.38.106 Jul 8 06:01:32 server1 sshd\[4666\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.38.106 Jul 8 06:01:35 server1 sshd\[4666\]: Failed password for invalid user rustserver from 51.254.38.106 port 57447 ssh2 Jul 8 06:04:42 server1 sshd\[5664\]: Invalid user fukuyama from 51.254.38.106 Jul 8 06:04:42 server1 sshd\[5664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.38.106 ... |
2020-07-08 20:19:15 |
| 162.214.97.24 | attack | 15754/tcp 494/tcp 21582/tcp... [2020-06-21/07-08]53pkt,19pt.(tcp) |
2020-07-08 19:58:49 |
| 195.116.24.182 | attack | 195.116.24.182 - - [08/Jul/2020:11:24:41 +1000] "POST /wp-login.php HTTP/1.1" 200 1925 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 195.116.24.182 - - [08/Jul/2020:11:24:45 +1000] "POST /wp-login.php HTTP/1.1" 200 1880 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 195.116.24.182 - - [08/Jul/2020:11:50:37 +1000] "POST /wp-login.php HTTP/1.1" 200 1925 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 195.116.24.182 - - [08/Jul/2020:11:50:40 +1000] "POST /wp-login.php HTTP/1.1" 200 1880 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 195.116.24.182 - - [08/Jul/2020:13:39:33 +1000] "POST /wp-login.php HTTP/1.0" 200 5818 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-07-08 19:46:12 |
| 158.69.226.175 | attack | 15013/tcp 27567/tcp 27275/tcp... [2020-06-21/07-07]53pkt,19pt.(tcp) |
2020-07-08 20:07:22 |
| 192.254.125.54 | spam | SPAM! |
2020-07-08 20:07:31 |
| 37.59.50.84 | attackspambots | DATE:2020-07-08 13:48:48, IP:37.59.50.84, PORT:ssh SSH brute force auth (docker-dc) |
2020-07-08 20:06:33 |
| 162.214.94.152 | attackspambots | 11934/tcp 4746/tcp 12583/tcp... [2020-06-22/07-07]54pkt,19pt.(tcp) |
2020-07-08 20:22:38 |
| 156.96.128.156 | attack | [2020-07-08 06:53:54] NOTICE[1150][C-00000925] chan_sip.c: Call from '' (156.96.128.156:53356) to extension '7987011441224928055' rejected because extension not found in context 'public'. [2020-07-08 06:53:54] SECURITY[1167] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-08T06:53:54.459-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="7987011441224928055",SessionID="0x7fcb4c07a778",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.128.156/53356",ACLName="no_extension_match" [2020-07-08 06:54:30] NOTICE[1150][C-00000929] chan_sip.c: Call from '' (156.96.128.156:50305) to extension '7988011441224928055' rejected because extension not found in context 'public'. [2020-07-08 06:54:30] SECURITY[1167] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-08T06:54:30.625-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="7988011441224928055",SessionID="0x7fcb4c07a778",LocalAddress="IPV4/UDP/192.168.244.6/5060",Remot ... |
2020-07-08 19:46:43 |
| 20.48.145.249 | attack | [Sat Jul 04 00:59:29 2020] - DDoS Attack From IP: 20.48.145.249 Port: 5062 |
2020-07-08 20:09:57 |