城市(city): unknown
省份(region): unknown
国家(country): Norway
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 194.248.205.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20994
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;194.248.205.66. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012901 1800 900 604800 86400
;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 00:47:07 CST 2025
;; MSG SIZE rcvd: 10766.205.248.194.in-addr.arpa domain name pointer 66.205.248.194.static.cust.telenor.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
66.205.248.194.in-addr.arpa name = 66.205.248.194.static.cust.telenor.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 24.134.154.233 | attack | Dec 1 14:49:29 lamijardin sshd[11038]: Invalid user paginal from 24.134.154.233 Dec 1 14:49:29 lamijardin sshd[11038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.134.154.233 Dec 1 14:49:31 lamijardin sshd[11038]: Failed password for invalid user paginal from 24.134.154.233 port 48022 ssh2 Dec 1 14:49:31 lamijardin sshd[11038]: Received disconnect from 24.134.154.233 port 48022:11: Bye Bye [preauth] Dec 1 14:49:31 lamijardin sshd[11038]: Disconnected from 24.134.154.233 port 48022 [preauth] Dec 1 15:04:14 lamijardin sshd[11065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.134.154.233 user=mysql Dec 1 15:04:16 lamijardin sshd[11065]: Failed password for mysql from 24.134.154.233 port 35640 ssh2 Dec 1 15:04:16 lamijardin sshd[11065]: Received disconnect from 24.134.154.233 port 35640:11: Bye Bye [preauth] Dec 1 15:04:16 lamijardin sshd[11065]: Disconnected from 24.134.1........ ------------------------------- |
2019-12-02 02:29:23 |
| 170.106.81.211 | attackspam | firewall-block, port(s): 4300/tcp |
2019-12-02 02:40:32 |
| 68.183.127.93 | attackspam | Repeated brute force against a port |
2019-12-02 02:52:37 |
| 111.231.237.245 | attack | Dec 1 19:45:24 mout sshd[3090]: Invalid user vimonh from 111.231.237.245 port 49806 |
2019-12-02 02:46:55 |
| 151.248.112.127 | attackbotsspam | Dec 1 19:28:41 cvbnet sshd[19127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.248.112.127 Dec 1 19:28:42 cvbnet sshd[19127]: Failed password for invalid user kitatani from 151.248.112.127 port 49152 ssh2 ... |
2019-12-02 02:34:29 |
| 222.186.169.192 | attackspam | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root Failed password for root from 222.186.169.192 port 29220 ssh2 Failed password for root from 222.186.169.192 port 29220 ssh2 Failed password for root from 222.186.169.192 port 29220 ssh2 Failed password for root from 222.186.169.192 port 29220 ssh2 |
2019-12-02 02:41:03 |
| 81.22.45.95 | attackspambots | Dec 1 19:29:02 mc1 kernel: \[6511155.963749\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.95 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=5477 PROTO=TCP SPT=45155 DPT=3494 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 1 19:29:41 mc1 kernel: \[6511195.107033\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.95 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=11871 PROTO=TCP SPT=45155 DPT=3480 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 1 19:31:57 mc1 kernel: \[6511331.289274\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.95 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=64392 PROTO=TCP SPT=45155 DPT=3397 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-12-02 02:44:42 |
| 202.153.128.24 | attackbots | firewall-block, port(s): 1433/tcp |
2019-12-02 02:33:30 |
| 118.25.43.243 | attack | 404 NOT FOUND |
2019-12-02 03:02:36 |
| 112.35.44.125 | attackbotsspam | Dec 1 19:51:32 server sshd\[22383\]: Invalid user kevin from 112.35.44.125 Dec 1 19:51:32 server sshd\[22383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.44.125 Dec 1 19:51:34 server sshd\[22383\]: Failed password for invalid user kevin from 112.35.44.125 port 54852 ssh2 Dec 1 20:18:46 server sshd\[29407\]: Invalid user flournoy from 112.35.44.125 Dec 1 20:18:46 server sshd\[29407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.44.125 ... |
2019-12-02 02:48:59 |
| 77.42.91.123 | attackspambots | Automatic report - Port Scan Attack |
2019-12-02 03:03:38 |
| 157.33.103.102 | attack | Unauthorised access (Dec 1) SRC=157.33.103.102 LEN=48 TOS=0x0A PREC=0x20 TTL=110 ID=22855 DF TCP DPT=445 WINDOW=8192 SYN |
2019-12-02 02:22:55 |
| 190.217.71.15 | attack | fail2ban |
2019-12-02 02:50:19 |
| 159.89.156.74 | attackbots | 159.89.156.74 - - [30/Nov/2019:23:28:29 -0500] "GET /wordpress/ HTTP/1.1" 403 400 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 0 0 "off:-:-" 210 1563 159.89.156.74 - - [30/Nov/2019:23:28:29 -0500] "GET /wp/ HTTP/1.1" 403 400 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 0 0 "off:-:-" 203 1586 159.89.156.74 - - [30/Nov/2019:23:28:30 -0500] "GET /blog/ HTTP/1.1" 403 400 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 0 0 "off:-:-" 205 1201 159.89.156.74 - - [30/Nov/2019:23:28:33 -0500] "GET /main/ HTTP/1.1" 403 400 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 0 0 "off:-:-" 205 1655 159.89.156.74 - - [30/Nov/2019:23:28:34 -0500] "GET /site/ HTTP/1.1" 403 400 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 0 0 "off:-:-" 205 1240 |
2019-12-02 02:37:06 |
| 93.200.89.232 | attackspambots | Connection by 93.200.89.232 on port: 23 got caught by honeypot at 12/1/2019 1:41:15 PM |
2019-12-02 02:28:01 |