城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.85.139.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4352
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;106.85.139.101. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400
;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 14:44:38 CST 2022
;; MSG SIZE rcvd: 107Host 101.139.85.106.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 101.139.85.106.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.142.195.15 | attackbots | May 14 15:33:47 nlmail01.srvfarm.net postfix/smtpd[816642]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 14 15:34:29 nlmail01.srvfarm.net postfix/smtpd[816642]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 14 15:35:10 nlmail01.srvfarm.net postfix/smtpd[816642]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 14 15:35:53 nlmail01.srvfarm.net postfix/smtpd[816743]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 14 15:36:37 nlmail01.srvfarm.net postfix/smtpd[816642]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-05-14 21:59:08 |
| 77.65.79.150 | attackspambots | 2020-05-14T12:24:29.817994abusebot-8.cloudsearch.cf sshd[30636]: Invalid user jaka from 77.65.79.150 port 54288 2020-05-14T12:24:29.828397abusebot-8.cloudsearch.cf sshd[30636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=d79-150.icpnet.pl 2020-05-14T12:24:29.817994abusebot-8.cloudsearch.cf sshd[30636]: Invalid user jaka from 77.65.79.150 port 54288 2020-05-14T12:24:32.254019abusebot-8.cloudsearch.cf sshd[30636]: Failed password for invalid user jaka from 77.65.79.150 port 54288 ssh2 2020-05-14T12:28:05.992905abusebot-8.cloudsearch.cf sshd[30812]: Invalid user amar from 77.65.79.150 port 35246 2020-05-14T12:28:06.005848abusebot-8.cloudsearch.cf sshd[30812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=d79-150.icpnet.pl 2020-05-14T12:28:05.992905abusebot-8.cloudsearch.cf sshd[30812]: Invalid user amar from 77.65.79.150 port 35246 2020-05-14T12:28:08.223645abusebot-8.cloudsearch.cf sshd[30812]: Failed p ... |
2020-05-14 21:31:19 |
| 162.241.65.175 | attackspambots | May 14 12:32:02 vlre-nyc-1 sshd\[13162\]: Invalid user teamspeak from 162.241.65.175 May 14 12:32:02 vlre-nyc-1 sshd\[13162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.65.175 May 14 12:32:04 vlre-nyc-1 sshd\[13162\]: Failed password for invalid user teamspeak from 162.241.65.175 port 38706 ssh2 May 14 12:40:09 vlre-nyc-1 sshd\[13401\]: Invalid user cacti from 162.241.65.175 May 14 12:40:09 vlre-nyc-1 sshd\[13401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.65.175 ... |
2020-05-14 21:57:06 |
| 130.162.69.143 | attackbotsspam | 2020-05-14T03:59:22.576230finland sshd[94877]: Unable to negotiate with 130.162.69.143 port 21512: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] 2020-05-14T05:01:01.987900finland sshd[94985]: Connection from 130.162.69.143 port 21512 on 95.217.116.180 port 22 rdomain "" 2020-05-14T05:01:02.021472finland sshd[94985]: Unable to negotiate with 130.162.69.143 port 21512: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] 2020-05-14T06:01:40.172479finland sshd[95052]: Connection from 130.162.69.143 port 21512 on 95.217.116.180 port 22 rdomain "" 2020-05-14T06:01:40.205819finland sshd[95052]: Unable to negotiate with 130.162.69.143 port 21512: no matching key exchange method found. Their offer: diffie-hellman-group- ... |
2020-05-14 21:30:57 |
| 168.61.176.121 | attackspam | Found by fail2ban |
2020-05-14 21:54:57 |
| 49.234.121.213 | attackspambots | May 14 14:27:35 santamaria sshd\[10508\]: Invalid user django from 49.234.121.213 May 14 14:27:35 santamaria sshd\[10508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.121.213 May 14 14:27:37 santamaria sshd\[10508\]: Failed password for invalid user django from 49.234.121.213 port 48738 ssh2 ... |
2020-05-14 21:56:19 |
| 104.248.209.204 | attack | May 14 15:22:47 eventyay sshd[18151]: Failed password for root from 104.248.209.204 port 55496 ssh2 May 14 15:26:31 eventyay sshd[18266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.209.204 May 14 15:26:32 eventyay sshd[18266]: Failed password for invalid user deploy from 104.248.209.204 port 35152 ssh2 ... |
2020-05-14 21:35:21 |
| 132.232.29.131 | attackspambots | May 14 15:13:53 sip sshd[257353]: Invalid user oracle from 132.232.29.131 port 47764 May 14 15:13:54 sip sshd[257353]: Failed password for invalid user oracle from 132.232.29.131 port 47764 ssh2 May 14 15:18:58 sip sshd[257459]: Invalid user jenkins from 132.232.29.131 port 46544 ... |
2020-05-14 21:41:06 |
| 61.141.64.90 | attackbotsspam | May 12 04:10:49 nxxxxxxx sshd[11196]: Invalid user pajaro from 61.141.64.90 May 12 04:10:50 nxxxxxxx sshd[11196]: Failed password for invalid user pajaro from 61.141.64.90 port 33422 ssh2 May 12 04:57:44 nxxxxxxx sshd[16629]: Invalid user jose from 61.141.64.90 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=61.141.64.90 |
2020-05-14 22:05:17 |
| 78.187.6.193 | attack | port scan and connect, tcp 80 (http) |
2020-05-14 21:36:14 |
| 111.231.54.28 | attackbots | May 14 15:24:28 vps687878 sshd\[1573\]: Invalid user postgres from 111.231.54.28 port 56086 May 14 15:24:28 vps687878 sshd\[1573\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.28 May 14 15:24:30 vps687878 sshd\[1573\]: Failed password for invalid user postgres from 111.231.54.28 port 56086 ssh2 May 14 15:29:06 vps687878 sshd\[2050\]: Invalid user postgres from 111.231.54.28 port 51214 May 14 15:29:06 vps687878 sshd\[2050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.28 ... |
2020-05-14 21:35:37 |
| 38.143.18.224 | attackbots | May 14 15:02:23 xeon sshd[6798]: Failed password for invalid user jenkins from 38.143.18.224 port 40940 ssh2 |
2020-05-14 21:39:55 |
| 112.85.42.172 | attackbotsspam | May 14 15:31:56 minden010 sshd[1284]: Failed password for root from 112.85.42.172 port 5632 ssh2 May 14 15:32:09 minden010 sshd[1284]: Failed password for root from 112.85.42.172 port 5632 ssh2 May 14 15:32:09 minden010 sshd[1284]: error: maximum authentication attempts exceeded for root from 112.85.42.172 port 5632 ssh2 [preauth] ... |
2020-05-14 21:47:15 |
| 79.180.54.48 | attack | Automatic report - Port Scan Attack |
2020-05-14 21:55:55 |
| 94.23.101.187 | attackspambots | 2020-05-14T13:45:38.755648shield sshd\[27470\]: Invalid user deborah from 94.23.101.187 port 50242 2020-05-14T13:45:38.759917shield sshd\[27470\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip187.ip-94-23-101.eu 2020-05-14T13:45:40.951207shield sshd\[27470\]: Failed password for invalid user deborah from 94.23.101.187 port 50242 ssh2 2020-05-14T13:52:55.574000shield sshd\[29548\]: Invalid user znc from 94.23.101.187 port 37614 2020-05-14T13:52:55.583061shield sshd\[29548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip187.ip-94-23-101.eu |
2020-05-14 22:04:44 |