城市(city): unknown
省份(region): unknown
国家(country): Japan
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.102.124.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;49.102.124.29. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022800 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 13:52:12 CST 2025
;; MSG SIZE rcvd: 106
Host 29.124.102.49.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 29.124.102.49.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 192.144.132.172 | attackbots | Unauthorized connection attempt detected from IP address 192.144.132.172 to port 2220 [J] |
2020-01-14 05:22:41 |
| 71.240.165.92 | attackbotsspam | Honeypot attack, port: 445, PTR: static-71-240-165-92.dllstx.fios.frontiernet.net. |
2020-01-14 05:18:12 |
| 80.82.77.33 | attackbotsspam | Unauthorized connection attempt detected from IP address 80.82.77.33 to port 8112 |
2020-01-14 05:30:06 |
| 117.2.208.232 | attackspam | Honeypot attack, port: 445, PTR: localhost. |
2020-01-14 05:14:06 |
| 186.214.79.40 | attackspambots | Automatic report - Port Scan Attack |
2020-01-14 05:16:38 |
| 162.243.41.112 | attackbotsspam | Jan 13 18:58:33 ip-172-31-62-245 sshd\[8918\]: Failed password for root from 162.243.41.112 port 35335 ssh2\ Jan 13 18:58:35 ip-172-31-62-245 sshd\[8920\]: Failed password for root from 162.243.41.112 port 36756 ssh2\ Jan 13 18:58:36 ip-172-31-62-245 sshd\[8922\]: Failed password for root from 162.243.41.112 port 37737 ssh2\ Jan 13 18:58:37 ip-172-31-62-245 sshd\[8924\]: Invalid user zxin from 162.243.41.112\ Jan 13 18:58:39 ip-172-31-62-245 sshd\[8924\]: Failed password for invalid user zxin from 162.243.41.112 port 38397 ssh2\ |
2020-01-14 05:16:05 |
| 80.66.81.143 | attack | Jan 13 22:33:17 vmanager6029 postfix/smtpd\[12113\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 22:33:32 vmanager6029 postfix/smtpd\[12124\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-01-14 05:35:38 |
| 189.72.246.51 | attack | ENG,WP GET /wp-login.php GET /wp-login.php |
2020-01-14 05:13:14 |
| 107.175.33.240 | attack | 2020-01-13T21:48:55.961553shield sshd\[17517\]: Invalid user lucky from 107.175.33.240 port 42232 2020-01-13T21:48:55.966519shield sshd\[17517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.33.240 2020-01-13T21:48:58.344869shield sshd\[17517\]: Failed password for invalid user lucky from 107.175.33.240 port 42232 ssh2 2020-01-13T21:50:31.045867shield sshd\[18082\]: Invalid user db2inst1 from 107.175.33.240 port 33194 2020-01-13T21:50:31.052989shield sshd\[18082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.33.240 |
2020-01-14 05:51:40 |
| 172.245.155.243 | attack | Jan 13 13:02:22 reporting2 sshd[14425]: reveeclipse mapping checking getaddrinfo for 172-245-155-243-host.colocrossing.com [172.245.155.243] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 13 13:02:22 reporting2 sshd[14425]: User r.r from 172.245.155.243 not allowed because not listed in AllowUsers Jan 13 13:02:22 reporting2 sshd[14425]: Failed password for invalid user r.r from 172.245.155.243 port 53102 ssh2 Jan 13 13:14:47 reporting2 sshd[21946]: reveeclipse mapping checking getaddrinfo for 172-245-155-243-host.colocrossing.com [172.245.155.243] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 13 13:14:47 reporting2 sshd[21946]: Invalid user cuenca from 172.245.155.243 Jan 13 13:14:47 reporting2 sshd[21946]: Failed password for invalid user cuenca from 172.245.155.243 port 52595 ssh2 Jan 13 13:18:20 reporting2 sshd[24150]: reveeclipse mapping checking getaddrinfo for 172-245-155-243-host.colocrossing.com [172.245.155.243] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 13 13:18:20 reporting2........ ------------------------------- |
2020-01-14 05:37:34 |
| 103.136.185.129 | attackspambots | 01/13/2020-16:25:54.958644 103.136.185.129 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-01-14 05:35:09 |
| 192.200.206.81 | attackbots | Jan 13 22:25:43 grey postfix/smtpd\[22750\]: NOQUEUE: reject: RCPT from unknown\[192.200.206.81\]: 554 5.7.1 Service unavailable\; Client host \[192.200.206.81\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[192.200.206.81\]\; from=\ |
2020-01-14 05:39:57 |
| 86.206.166.214 | attack | firewall-block, port(s): 37215/tcp |
2020-01-14 05:22:24 |
| 148.76.108.146 | attackspambots | Unauthorized connection attempt detected from IP address 148.76.108.146 to port 2220 [J] |
2020-01-14 05:42:42 |
| 148.72.111.136 | attackspambots | xmlrpc attack |
2020-01-14 05:49:00 |