城市(city): unknown
省份(region): unknown
国家(country): None
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 48.109.52.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56753
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;48.109.52.44. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 06:19:41 CST 2025
;; MSG SIZE rcvd: 105
Host 44.52.109.48.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 44.52.109.48.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 77.81.191.142 | attack | ET SCAN Sipvicious User-Agent Detected (friendly-scanner) - port: 5060 proto: UDP cat: Attempted Information Leak |
2020-04-01 14:12:09 |
| 195.54.167.58 | attackbots | Apr 1 08:23:03 debian-2gb-nbg1-2 kernel: \[7981232.849177\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.58 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=35935 PROTO=TCP SPT=56666 DPT=6051 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-01 14:48:15 |
| 89.248.168.217 | attack | 89.248.168.217 was recorded 7 times by 7 hosts attempting to connect to the following ports: 1053,1046. Incident counter (4h, 24h, all-time): 7, 25, 19178 |
2020-04-01 14:21:07 |
| 148.72.206.225 | attackspambots | Invalid user user from 148.72.206.225 port 44862 |
2020-04-01 14:24:05 |
| 123.1.174.156 | attackbotsspam | Apr 1 05:25:14 *** sshd[10651]: User root from 123.1.174.156 not allowed because not listed in AllowUsers |
2020-04-01 14:47:52 |
| 182.86.227.240 | attackspambots | Apr 1 06:24:07 host proftpd[31133]: 0.0.0.0 (182.86.227.240[182.86.227.240]) - USER anonymous: no such user found from 182.86.227.240 [182.86.227.240] to 163.172.107.87:21 ... |
2020-04-01 14:55:30 |
| 206.214.2.12 | attackbots | (eximsyntax) Exim syntax errors from 206.214.2.12 (AG/Antigua and Barbuda/206-214-2-12.candw.ag): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-04-01 08:23:05 SMTP call from [206.214.2.12] dropped: too many syntax or protocol errors (last command was "?\034?\032?\027?\031?\034?\033?\030?\032?\026?\016?\r?\v?\f? ?") |
2020-04-01 14:53:01 |
| 35.199.82.233 | attackbots | Invalid user jis from 35.199.82.233 port 59322 |
2020-04-01 14:49:22 |
| 142.11.210.209 | attackbots | SpamScore above: 10.0 |
2020-04-01 14:47:28 |
| 182.53.96.206 | attackbotsspam | 20/3/31@23:53:49: FAIL: Alarm-Intrusion address from=182.53.96.206 ... |
2020-04-01 14:25:35 |
| 45.133.99.7 | attackspambots | 2020-04-01 08:19:26 dovecot_login authenticator failed for \(\[45.133.99.7\]\) \[45.133.99.7\]: 535 Incorrect authentication data \(set_id=webmaster@orogest.it\) 2020-04-01 08:19:34 dovecot_login authenticator failed for \(\[45.133.99.7\]\) \[45.133.99.7\]: 535 Incorrect authentication data 2020-04-01 08:19:44 dovecot_login authenticator failed for \(\[45.133.99.7\]\) \[45.133.99.7\]: 535 Incorrect authentication data 2020-04-01 08:19:50 dovecot_login authenticator failed for \(\[45.133.99.7\]\) \[45.133.99.7\]: 535 Incorrect authentication data 2020-04-01 08:20:03 dovecot_login authenticator failed for \(\[45.133.99.7\]\) \[45.133.99.7\]: 535 Incorrect authentication data |
2020-04-01 14:29:10 |
| 192.144.166.95 | attackspam | Invalid user hnn from 192.144.166.95 port 52796 |
2020-04-01 14:51:43 |
| 58.19.0.203 | attack | (pop3d) Failed POP3 login from 58.19.0.203 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 1 08:23:39 ir1 dovecot[566034]: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user= |
2020-04-01 14:24:42 |
| 5.89.112.6 | attackbots | Port probing on unauthorized port 23 |
2020-04-01 14:33:16 |
| 222.252.30.117 | attack | ssh brute force |
2020-04-01 14:39:19 |