城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.7.109.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12415
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;49.7.109.149. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400
;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 19:23:19 CST 2025
;; MSG SIZE rcvd: 105Host 149.109.7.49.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 149.109.7.49.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.244.79.181 | attack | Unauthorized connection attempt detected from IP address 104.244.79.181 to port 22 |
2019-12-30 18:35:31 |
| 51.77.211.94 | attack | --- report --- Dec 30 07:29:35 -0300 sshd: Connection from 51.77.211.94 port 47692 |
2019-12-30 18:49:15 |
| 125.70.244.4 | attack | Dec 30 07:01:40 kmh-wmh-001-nbg01 sshd[12323]: Invalid user tester from 125.70.244.4 port 52878 Dec 30 07:01:40 kmh-wmh-001-nbg01 sshd[12323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.70.244.4 Dec 30 07:01:41 kmh-wmh-001-nbg01 sshd[12323]: Failed password for invalid user tester from 125.70.244.4 port 52878 ssh2 Dec 30 07:01:41 kmh-wmh-001-nbg01 sshd[12323]: Received disconnect from 125.70.244.4 port 52878:11: Bye Bye [preauth] Dec 30 07:01:41 kmh-wmh-001-nbg01 sshd[12323]: Disconnected from 125.70.244.4 port 52878 [preauth] Dec 30 07:13:43 kmh-wmh-001-nbg01 sshd[13535]: Invalid user kellar from 125.70.244.4 port 50934 Dec 30 07:13:43 kmh-wmh-001-nbg01 sshd[13535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.70.244.4 Dec 30 07:13:44 kmh-wmh-001-nbg01 sshd[13535]: Failed password for invalid user kellar from 125.70.244.4 port 50934 ssh2 Dec 30 07:13:44 kmh-wmh-001-nbg01 ssh........ ------------------------------- |
2019-12-30 18:54:20 |
| 119.29.170.170 | attackspambots | Dec 30 11:08:57 localhost sshd[37509]: Failed password for invalid user aldert from 119.29.170.170 port 41680 ssh2 Dec 30 11:18:51 localhost sshd[37996]: Failed password for invalid user maffiaw from 119.29.170.170 port 53234 ssh2 Dec 30 11:26:19 localhost sshd[38325]: Failed password for invalid user mai from 119.29.170.170 port 35688 ssh2 |
2019-12-30 18:57:34 |
| 134.73.51.92 | attackbots | Lines containing failures of 134.73.51.92 Dec 30 07:05:40 shared04 postfix/smtpd[7964]: connect from boring.superacrepair.com[134.73.51.92] Dec 30 07:05:41 shared04 policyd-spf[10671]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=134.73.51.92; helo=boring.abrdindia.co; envelope-from=x@x Dec x@x Dec 30 07:05:41 shared04 postfix/smtpd[7964]: disconnect from boring.superacrepair.com[134.73.51.92] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 30 07:06:54 shared04 postfix/smtpd[7964]: connect from boring.superacrepair.com[134.73.51.92] Dec 30 07:06:54 shared04 policyd-spf[10671]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=134.73.51.92; helo=boring.abrdindia.co; envelope-from=x@x Dec x@x Dec 30 07:06:54 shared04 postfix/smtpd[7964]: disconnect from boring.superacrepair.com[134.73.51.92] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 30 07:09:05 shared04 postfix/smtpd[6184]: connect from bo........ ------------------------------ |
2019-12-30 18:27:01 |
| 189.212.120.213 | attackspam | *Port Scan* detected from 189.212.120.213 (MX/Mexico/189-212-120-213.static.axtel.net). 4 hits in the last 115 seconds |
2019-12-30 18:50:47 |
| 148.70.223.53 | attackspam | Dec 30 10:21:58 lnxweb61 sshd[27130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.223.53 |
2019-12-30 18:31:17 |
| 103.132.171.2 | attackspambots | SSH bruteforce (Triggered fail2ban) |
2019-12-30 18:30:19 |
| 189.240.117.236 | attackspambots | Dec 30 08:26:06 minden010 sshd[6127]: Failed password for root from 189.240.117.236 port 43438 ssh2 Dec 30 08:31:19 minden010 sshd[8132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.117.236 Dec 30 08:31:21 minden010 sshd[8132]: Failed password for invalid user testing from 189.240.117.236 port 43010 ssh2 ... |
2019-12-30 18:58:45 |
| 14.160.94.150 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 30-12-2019 06:25:11. |
2019-12-30 18:47:20 |
| 42.243.30.134 | attackspambots | Scanning |
2019-12-30 18:51:08 |
| 123.206.216.65 | attack | Dec 30 11:34:30 mout sshd[22204]: Invalid user apache from 123.206.216.65 port 48246 |
2019-12-30 19:05:03 |
| 113.0.69.226 | attackbots | Scanning |
2019-12-30 18:58:09 |
| 103.205.68.2 | attack | Dec 30 06:02:04 ldap01vmsma01 sshd[97717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.205.68.2 Dec 30 06:02:06 ldap01vmsma01 sshd[97717]: Failed password for invalid user teen from 103.205.68.2 port 37100 ssh2 ... |
2019-12-30 18:54:52 |
| 218.92.0.156 | attackbotsspam | 2019-12-30T05:17:24.999524xentho-1 sshd[311022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.156 user=root 2019-12-30T05:17:26.709818xentho-1 sshd[311022]: Failed password for root from 218.92.0.156 port 62454 ssh2 2019-12-30T05:17:31.817970xentho-1 sshd[311022]: Failed password for root from 218.92.0.156 port 62454 ssh2 2019-12-30T05:17:24.999524xentho-1 sshd[311022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.156 user=root 2019-12-30T05:17:26.709818xentho-1 sshd[311022]: Failed password for root from 218.92.0.156 port 62454 ssh2 2019-12-30T05:17:31.817970xentho-1 sshd[311022]: Failed password for root from 218.92.0.156 port 62454 ssh2 2019-12-30T05:17:24.999524xentho-1 sshd[311022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.156 user=root 2019-12-30T05:17:26.709818xentho-1 sshd[311022]: Failed password for root from 218.92 ... |
2019-12-30 18:41:21 |