城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.253.48.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33911
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;192.253.48.85. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022700 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 23:36:51 CST 2025
;; MSG SIZE rcvd: 106
Host 85.48.253.192.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 85.48.253.192.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 49.156.41.177 | attackbots | Automatic report - Port Scan Attack |
2020-07-06 13:06:15 |
| 129.204.80.188 | attack | 2020-07-06T06:47:25.092975galaxy.wi.uni-potsdam.de sshd[13469]: Invalid user test from 129.204.80.188 port 46878 2020-07-06T06:47:25.094767galaxy.wi.uni-potsdam.de sshd[13469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.80.188 2020-07-06T06:47:25.092975galaxy.wi.uni-potsdam.de sshd[13469]: Invalid user test from 129.204.80.188 port 46878 2020-07-06T06:47:26.751394galaxy.wi.uni-potsdam.de sshd[13469]: Failed password for invalid user test from 129.204.80.188 port 46878 ssh2 2020-07-06T06:50:28.143095galaxy.wi.uni-potsdam.de sshd[13828]: Invalid user q2 from 129.204.80.188 port 53870 2020-07-06T06:50:28.145463galaxy.wi.uni-potsdam.de sshd[13828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.80.188 2020-07-06T06:50:28.143095galaxy.wi.uni-potsdam.de sshd[13828]: Invalid user q2 from 129.204.80.188 port 53870 2020-07-06T06:50:30.258653galaxy.wi.uni-potsdam.de sshd[13828]: Failed password ... |
2020-07-06 13:07:17 |
| 123.58.5.243 | attackbots | Jul 6 06:37:30 lnxmysql61 sshd[22765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.58.5.243 |
2020-07-06 12:44:58 |
| 221.156.126.1 | attack | Jul 6 05:03:46 rush sshd[3420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.156.126.1 Jul 6 05:03:48 rush sshd[3420]: Failed password for invalid user git from 221.156.126.1 port 42444 ssh2 Jul 6 05:06:58 rush sshd[3489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.156.126.1 ... |
2020-07-06 13:08:51 |
| 46.38.150.47 | attack | Jul 6 06:42:24 relay postfix/smtpd\[1139\]: warning: unknown\[46.38.150.47\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 06:42:39 relay postfix/smtpd\[1138\]: warning: unknown\[46.38.150.47\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 06:42:59 relay postfix/smtpd\[29613\]: warning: unknown\[46.38.150.47\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 06:43:24 relay postfix/smtpd\[2875\]: warning: unknown\[46.38.150.47\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 06:43:49 relay postfix/smtpd\[541\]: warning: unknown\[46.38.150.47\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-07-06 12:50:05 |
| 103.130.173.110 | attackspam | VNC brute force attack detected by fail2ban |
2020-07-06 12:54:50 |
| 99.120.229.5 | attackspam | $f2bV_matches |
2020-07-06 13:00:55 |
| 149.129.242.144 | attackbots | Jul 6 06:02:26 xxxxxxx4 sshd[3585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.242.144 user=r.r Jul 6 06:02:28 xxxxxxx4 sshd[3585]: Failed password for r.r from 149.129.242.144 port 55796 ssh2 Jul 6 06:20:03 xxxxxxx4 sshd[5162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.242.144 user=r.r Jul 6 06:20:04 xxxxxxx4 sshd[5162]: Failed password for r.r from 149.129.242.144 port 57514 ssh2 Jul 6 06:21:08 xxxxxxx4 sshd[5471]: Invalid user noemi from 149.129.242.144 port 52164 Jul 6 06:21:08 xxxxxxx4 sshd[5471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.242.144 Jul 6 06:21:11 xxxxxxx4 sshd[5471]: Failed password for invalid user noemi from 149.129.242.144 port 52164 ssh2 Jul 6 06:22:18 xxxxxxx4 sshd[5504]: Invalid user minecraft from 149.129.242.144 port 51290 Jul 6 06:22:18 xxxxxxx4 sshd[5504]: pam_unix(sshd:au........ ------------------------------ |
2020-07-06 12:59:59 |
| 111.72.198.74 | attack | Jul 6 07:03:06 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 07:03:18 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 07:03:35 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 07:03:55 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 07:04:08 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-07-06 13:09:17 |
| 137.74.119.50 | attackspam | (sshd) Failed SSH login from 137.74.119.50 (FR/France/50.ip-137-74-119.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 6 05:45:16 elude sshd[6403]: Invalid user engineer from 137.74.119.50 port 41552 Jul 6 05:45:18 elude sshd[6403]: Failed password for invalid user engineer from 137.74.119.50 port 41552 ssh2 Jul 6 05:51:36 elude sshd[7378]: Invalid user user from 137.74.119.50 port 37456 Jul 6 05:51:38 elude sshd[7378]: Failed password for invalid user user from 137.74.119.50 port 37456 ssh2 Jul 6 05:54:54 elude sshd[7868]: Invalid user keith from 137.74.119.50 port 33456 |
2020-07-06 12:30:40 |
| 47.100.173.152 | attackspam | 20 attempts against mh-ssh on storm |
2020-07-06 12:51:53 |
| 181.112.40.114 | attackbots | *Port Scan* detected from 181.112.40.114 (EC/Ecuador/-). 4 hits in the last 265 seconds |
2020-07-06 12:48:51 |
| 45.143.220.55 | attack | Unauthorized connection attempt detected from IP address 45.143.220.55 to port 23 [T] |
2020-07-06 12:30:09 |
| 194.187.249.38 | attack | Jul 6 13:54:26 localhost sshd[2709503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.187.249.38 user=root Jul 6 13:54:28 localhost sshd[2709503]: Failed password for root from 194.187.249.38 port 35205 ssh2 ... |
2020-07-06 12:53:09 |
| 124.238.113.126 | attack | Jul 6 05:47:15 nextcloud sshd\[3544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.238.113.126 user=root Jul 6 05:47:17 nextcloud sshd\[3544\]: Failed password for root from 124.238.113.126 port 39572 ssh2 Jul 6 05:54:42 nextcloud sshd\[10378\]: Invalid user juliano from 124.238.113.126 Jul 6 05:54:42 nextcloud sshd\[10378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.238.113.126 |
2020-07-06 12:44:33 |