城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.143.45.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36963
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.143.45.245. IN A
;; AUTHORITY SECTION:
. 230 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022051902 1800 900 604800 86400
;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 20 10:51:47 CST 2022
;; MSG SIZE rcvd: 107245.45.143.104.in-addr.arpa domain name pointer 104.143.45.245.static.klayer.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
245.45.143.104.in-addr.arpa name = 104.143.45.245.static.klayer.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 160.238.74.205 | attackbots | Sep 10 13:29:20 lnxmail61 postfix/smtps/smtpd[5418]: warning: unknown[160.238.74.205]: SASL PLAIN authentication failed: Sep 10 13:29:26 lnxmail61 postfix/smtps/smtpd[5418]: warning: unknown[160.238.74.205]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 10 13:30:06 lnxmail61 postfix/submission/smtpd[5406]: warning: unknown[160.238.74.205]: SASL PLAIN authentication failed: Sep 10 13:30:12 lnxmail61 postfix/submission/smtpd[5406]: warning: unknown[160.238.74.205]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 10 13:30:12 lnxmail61 postfix/submission/smtpd[5406]: lost connection after AUTH from unknown[160.238.74.205] |
2019-09-10 20:37:42 |
| 168.121.43.214 | attack | May 8 06:13:04 mercury wordpress(lukegirvin.com)[6915]: XML-RPC authentication failure for luke from 168.121.43.214 ... |
2019-09-10 20:48:47 |
| 113.160.132.37 | attackbots | 2019-07-29T11:44:44.310Z CLOSE host=113.160.132.37 port=51574 fd=4 time=20.020 bytes=24 ... |
2019-09-10 20:40:33 |
| 122.141.189.251 | attack | $f2bV_matches |
2019-09-10 20:58:09 |
| 189.59.69.3 | attackbotsspam | Jul 30 00:51:36 mercury auth[770]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=administrator@lukegirvin.com rhost=189.59.69.3 ... |
2019-09-10 21:59:22 |
| 195.209.48.92 | attack | Aug 4 03:33:53 mercury auth[29689]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=admin@lukegirvin.com rhost=195.209.48.92 ... |
2019-09-10 21:03:56 |
| 115.221.66.1 | attackbots | Time: Tue Sep 10 07:42:43 2019 -0400 IP: 115.221.66.1 (CN/China/-) Failures: 15 (ftpd) Interval: 3600 seconds Blocked: Permanent Block |
2019-09-10 20:53:10 |
| 210.182.116.41 | attackbots | Sep 10 14:27:45 legacy sshd[29309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.182.116.41 Sep 10 14:27:47 legacy sshd[29309]: Failed password for invalid user myftp from 210.182.116.41 port 44352 ssh2 Sep 10 14:35:04 legacy sshd[29641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.182.116.41 ... |
2019-09-10 20:48:24 |
| 166.159.90.56 | attackspambots | Jul 9 08:29:51 mercury wordpress(lukegirvin.com)[31169]: XML-RPC authentication failure for luke from 166.159.90.56 ... |
2019-09-10 21:08:53 |
| 112.85.42.187 | attack | Sep 10 14:31:45 markkoudstaal sshd[26550]: Failed password for root from 112.85.42.187 port 23257 ssh2 Sep 10 14:32:45 markkoudstaal sshd[26640]: Failed password for root from 112.85.42.187 port 20117 ssh2 Sep 10 14:32:47 markkoudstaal sshd[26640]: Failed password for root from 112.85.42.187 port 20117 ssh2 |
2019-09-10 20:44:39 |
| 159.203.203.115 | attack | firewall-block, port(s): 992/tcp |
2019-09-10 20:41:36 |
| 51.75.89.73 | attack | CloudCIX Reconnaissance Scan Detected, PTR: ip-51-75-89.eu. |
2019-09-10 20:45:00 |
| 138.197.140.194 | attackspam | Sep 10 01:42:24 auw2 sshd\[10741\]: Invalid user deploydeploy from 138.197.140.194 Sep 10 01:42:24 auw2 sshd\[10741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.140.194 Sep 10 01:42:25 auw2 sshd\[10741\]: Failed password for invalid user deploydeploy from 138.197.140.194 port 58576 ssh2 Sep 10 01:48:41 auw2 sshd\[11298\]: Invalid user bots from 138.197.140.194 Sep 10 01:48:41 auw2 sshd\[11298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.140.194 |
2019-09-10 20:55:00 |
| 195.231.5.56 | attackspam | May 24 00:07:39 mercury smtpd[1000]: 36e5b3c1ea491817 smtp event=failed-command address=195.231.5.56 host=host56-5-231-195.serverdedicati.aruba.it command="AUTH LOGIN" result="503 5.5.1 Invalid command: Command not supported" ... |
2019-09-10 21:33:16 |
| 37.187.4.149 | attackspam | 2019-09-10T13:15:00.361173abusebot-5.cloudsearch.cf sshd\[28938\]: Invalid user redis from 37.187.4.149 port 54752 |
2019-09-10 21:38:45 |