城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.249.68.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55843
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;116.249.68.242. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012901 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 03:01:47 CST 2025
;; MSG SIZE rcvd: 107242.68.249.116.in-addr.arpa domain name pointer 242.68.249.116.broad.km.yn.dynamic.163data.com.cn.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
242.68.249.116.in-addr.arpa name = 242.68.249.116.broad.km.yn.dynamic.163data.com.cn.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 46.38.150.142 | attack | 2020-07-16T02:30:16.148336linuxbox-skyline auth[16582]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=ymjing520 rhost=46.38.150.142 ... |
2020-07-16 16:31:00 |
| 171.80.186.84 | attackbots | Failed password for invalid user pc01 from 171.80.186.84 port 46852 ssh2 |
2020-07-16 16:22:50 |
| 51.68.140.104 | attack | unknown 23.94.92.51 vps-2758f11b.vps.ovh.net 51.68.140.104 spf:workablebeam.tech:51.68.140.104 Mary White |
2020-07-16 16:24:01 |
| 176.107.133.228 | attackbotsspam | Jul 16 09:59:39 ncomp sshd[16112]: Invalid user it2 from 176.107.133.228 Jul 16 09:59:39 ncomp sshd[16112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.107.133.228 Jul 16 09:59:39 ncomp sshd[16112]: Invalid user it2 from 176.107.133.228 Jul 16 09:59:42 ncomp sshd[16112]: Failed password for invalid user it2 from 176.107.133.228 port 59074 ssh2 |
2020-07-16 16:18:42 |
| 124.204.65.82 | attack | 20 attempts against mh-ssh on echoip |
2020-07-16 16:25:37 |
| 200.203.144.46 | attackspambots | Jul 16 05:01:51 mail.srvfarm.net postfix/smtpd[671856]: warning: unknown[200.203.144.46]: SASL PLAIN authentication failed: Jul 16 05:01:52 mail.srvfarm.net postfix/smtpd[671856]: lost connection after AUTH from unknown[200.203.144.46] Jul 16 05:02:45 mail.srvfarm.net postfix/smtps/smtpd[685341]: warning: unknown[200.203.144.46]: SASL PLAIN authentication failed: Jul 16 05:02:45 mail.srvfarm.net postfix/smtps/smtpd[685341]: lost connection after AUTH from unknown[200.203.144.46] Jul 16 05:08:36 mail.srvfarm.net postfix/smtpd[688009]: warning: unknown[200.203.144.46]: SASL PLAIN authentication failed: |
2020-07-16 16:08:09 |
| 45.55.197.229 | attack | Invalid user network from 45.55.197.229 port 44565 |
2020-07-16 16:30:38 |
| 96.44.162.82 | attack | 2020-07-16 dovecot_login authenticator failed for \(1UbDFc\) \[96.44.162.82\]: 535 Incorrect authentication data \(set_id=**REMOVED****REMOVED****REMOVED**_perl\) 2020-07-16 dovecot_login authenticator failed for \(ZlIkQr8FcE\) \[96.44.162.82\]: 535 Incorrect authentication data \(set_id=**REMOVED****REMOVED****REMOVED**_perl\) 2020-07-16 dovecot_login authenticator failed for \(CkD3sGs6BW\) \[96.44.162.82\]: 535 Incorrect authentication data \(set_id=**REMOVED****REMOVED****REMOVED**_perl\) |
2020-07-16 16:02:45 |
| 176.113.204.147 | attackspambots | Jul 16 05:30:59 mail.srvfarm.net postfix/smtps/smtpd[702669]: warning: unknown[176.113.204.147]: SASL PLAIN authentication failed: Jul 16 05:30:59 mail.srvfarm.net postfix/smtps/smtpd[702669]: lost connection after AUTH from unknown[176.113.204.147] Jul 16 05:35:35 mail.srvfarm.net postfix/smtps/smtpd[700541]: warning: unknown[176.113.204.147]: SASL PLAIN authentication failed: Jul 16 05:35:35 mail.srvfarm.net postfix/smtps/smtpd[700541]: lost connection after AUTH from unknown[176.113.204.147] Jul 16 05:37:03 mail.srvfarm.net postfix/smtps/smtpd[702671]: warning: unknown[176.113.204.147]: SASL PLAIN authentication failed: |
2020-07-16 15:59:20 |
| 78.128.113.114 | attackbotsspam | Jul 16 09:42:04 mail.srvfarm.net postfix/smtpd[805418]: warning: unknown[78.128.113.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 16 09:42:04 mail.srvfarm.net postfix/smtpd[805418]: lost connection after AUTH from unknown[78.128.113.114] Jul 16 09:42:09 mail.srvfarm.net postfix/smtpd[806440]: lost connection after AUTH from unknown[78.128.113.114] Jul 16 09:42:14 mail.srvfarm.net postfix/smtpd[805418]: lost connection after AUTH from unknown[78.128.113.114] Jul 16 09:42:19 mail.srvfarm.net postfix/smtpd[806440]: lost connection after AUTH from unknown[78.128.113.114] |
2020-07-16 16:03:24 |
| 122.114.109.220 | attackbots | Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-07-16 16:21:40 |
| 103.16.14.84 | attackbotsspam | Jul 16 05:33:48 mail.srvfarm.net postfix/smtpd[700173]: warning: unknown[103.16.14.84]: SASL PLAIN authentication failed: Jul 16 05:33:48 mail.srvfarm.net postfix/smtpd[700173]: lost connection after AUTH from unknown[103.16.14.84] Jul 16 05:39:36 mail.srvfarm.net postfix/smtpd[706165]: warning: unknown[103.16.14.84]: SASL PLAIN authentication failed: Jul 16 05:39:36 mail.srvfarm.net postfix/smtpd[706165]: lost connection after AUTH from unknown[103.16.14.84] Jul 16 05:43:27 mail.srvfarm.net postfix/smtps/smtpd[708452]: warning: unknown[103.16.14.84]: SASL PLAIN authentication failed: |
2020-07-16 16:02:23 |
| 167.99.224.160 | attackspam | Invalid user castle from 167.99.224.160 port 46024 |
2020-07-16 16:13:29 |
| 104.248.209.204 | attackspam | Jul 16 08:28:51 web8 sshd\[29307\]: Invalid user kafka from 104.248.209.204 Jul 16 08:28:51 web8 sshd\[29307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.209.204 Jul 16 08:28:54 web8 sshd\[29307\]: Failed password for invalid user kafka from 104.248.209.204 port 53628 ssh2 Jul 16 08:32:57 web8 sshd\[31363\]: Invalid user rc from 104.248.209.204 Jul 16 08:32:57 web8 sshd\[31363\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.209.204 |
2020-07-16 16:35:25 |
| 178.33.212.220 | attackspam | $f2bV_matches |
2020-07-16 16:12:05 |