城市(city): unknown
省份(region): unknown
国家(country): None
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.106.87.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30037
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;134.106.87.73. IN A
;; AUTHORITY SECTION:
. 200 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 21:01:41 CST 2022
;; MSG SIZE rcvd: 10673.87.106.134.in-addr.arpa domain name pointer prisenpapiere.de.
73.87.106.134.in-addr.arpa domain name pointer prizepapers.de.
73.87.106.134.in-addr.arpa domain name pointer www.prizepapers.net.
73.87.106.134.in-addr.arpa domain name pointer prizepapers.net.
73.87.106.134.in-addr.arpa domain name pointer uol.de.
73.87.106.134.in-addr.arpa domain name pointer www.materiality.prizepapers.de.
73.87.106.134.in-addr.arpa domain name pointer typo3.uni-oldenburg.de.
73.87.106.134.in-addr.arpa domain name pointer www.prisenpapiere.de.
73.87.106.134.in-addr.arpa domain name pointer www.prizepapers.eu.
73.87.106.134.in-addr.arpa domain name pointer icbm.de.
73.87.106.134.in-addr.arpa domain name pointer www.prizepapers.de.
73.87.106.134.in-addr.arpa domain name pointer materiality.prizepapers.de.
73.87.106.134.in-addr.arpa domain name pointer prizepapers.eu.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
73.87.106.134.in-addr.arpa name = prizepapers.de.
73.87.106.134.in-addr.arpa name = www.prizepapers.net.
73.87.106.134.in-addr.arpa name = prizepapers.net.
73.87.106.134.in-addr.arpa name = uol.de.
73.87.106.134.in-addr.arpa name = www.materiality.prizepapers.de.
73.87.106.134.in-addr.arpa name = typo3.uni-oldenburg.de.
73.87.106.134.in-addr.arpa name = www.prisenpapiere.de.
73.87.106.134.in-addr.arpa name = www.prizepapers.eu.
73.87.106.134.in-addr.arpa name = icbm.de.
73.87.106.134.in-addr.arpa name = www.prizepapers.de.
73.87.106.134.in-addr.arpa name = materiality.prizepapers.de.
73.87.106.134.in-addr.arpa name = prizepapers.eu.
73.87.106.134.in-addr.arpa name = prisenpapiere.de.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 37.49.230.64 | attackspambots | Dec 13 06:08:03 vmd46246 kernel: [125063.386636] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=37.49.230.64 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=14689 PROTO=TCP SPT=53612 DPT=85 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 13 06:08:15 vmd46246 kernel: [125075.559849] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=37.49.230.64 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=16692 PROTO=TCP SPT=53612 DPT=90 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 13 06:08:56 vmd46246 kernel: [125116.482230] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=37.49.230.64 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=8609 PROTO=TCP SPT=53612 DPT=84 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-12-13 14:20:28 |
| 146.88.240.4 | attackspambots | 13.12.2019 07:06:11 Connection to port 27017 blocked by firewall |
2019-12-13 15:09:36 |
| 188.166.105.228 | attack | Dec 13 06:35:49 localhost sshd\[4570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.105.228 user=mysql Dec 13 06:35:51 localhost sshd\[4570\]: Failed password for mysql from 188.166.105.228 port 43716 ssh2 Dec 13 06:40:50 localhost sshd\[4791\]: Invalid user gra from 188.166.105.228 port 52282 Dec 13 06:40:50 localhost sshd\[4791\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.105.228 Dec 13 06:40:52 localhost sshd\[4791\]: Failed password for invalid user gra from 188.166.105.228 port 52282 ssh2 ... |
2019-12-13 14:50:50 |
| 167.114.210.86 | attackbots | Dec 12 23:54:45 Tower sshd[6973]: Connection from 167.114.210.86 port 57834 on 192.168.10.220 port 22 Dec 12 23:54:45 Tower sshd[6973]: Invalid user dan1 from 167.114.210.86 port 57834 Dec 12 23:54:45 Tower sshd[6973]: error: Could not get shadow information for NOUSER Dec 12 23:54:45 Tower sshd[6973]: Failed password for invalid user dan1 from 167.114.210.86 port 57834 ssh2 Dec 12 23:54:45 Tower sshd[6973]: Received disconnect from 167.114.210.86 port 57834:11: Bye Bye [preauth] Dec 12 23:54:45 Tower sshd[6973]: Disconnected from invalid user dan1 167.114.210.86 port 57834 [preauth] |
2019-12-13 14:26:38 |
| 222.186.175.155 | attack | Dec 13 07:37:53 mail sshd[29292]: Failed password for root from 222.186.175.155 port 46076 ssh2 Dec 13 07:37:56 mail sshd[29292]: Failed password for root from 222.186.175.155 port 46076 ssh2 Dec 13 07:38:00 mail sshd[29292]: Failed password for root from 222.186.175.155 port 46076 ssh2 Dec 13 07:38:03 mail sshd[29292]: Failed password for root from 222.186.175.155 port 46076 ssh2 |
2019-12-13 14:41:33 |
| 61.177.172.128 | attackbotsspam | Dec 13 07:32:52 mail sshd[28471]: Failed password for root from 61.177.172.128 port 17193 ssh2 Dec 13 07:32:56 mail sshd[28471]: Failed password for root from 61.177.172.128 port 17193 ssh2 Dec 13 07:33:00 mail sshd[28471]: Failed password for root from 61.177.172.128 port 17193 ssh2 Dec 13 07:33:03 mail sshd[28471]: Failed password for root from 61.177.172.128 port 17193 ssh2 |
2019-12-13 14:44:33 |
| 123.16.160.114 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 13-12-2019 04:55:09. |
2019-12-13 14:21:41 |
| 14.29.116.147 | attackspam | ssh failed login |
2019-12-13 15:01:51 |
| 156.204.1.78 | attackspam | SSH brutforce |
2019-12-13 15:03:02 |
| 165.227.13.226 | attackbots | fail2ban honeypot |
2019-12-13 15:08:40 |
| 106.12.28.10 | attackbots | Dec 13 07:10:46 meumeu sshd[2424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.28.10 Dec 13 07:10:48 meumeu sshd[2424]: Failed password for invalid user ae from 106.12.28.10 port 43440 ssh2 Dec 13 07:16:42 meumeu sshd[3262]: Failed password for daemon from 106.12.28.10 port 38748 ssh2 ... |
2019-12-13 14:29:28 |
| 222.221.248.242 | attackspambots | [Aegis] @ 2019-12-13 07:40:42 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack |
2019-12-13 14:41:06 |
| 160.16.148.109 | attackbots | 2019-12-13T06:32:25.830559shield sshd\[8739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-410-46105.vs.sakura.ne.jp user=root 2019-12-13T06:32:27.377073shield sshd\[8739\]: Failed password for root from 160.16.148.109 port 52176 ssh2 2019-12-13T06:38:30.994003shield sshd\[9023\]: Invalid user wwwadmin from 160.16.148.109 port 33128 2019-12-13T06:38:30.999313shield sshd\[9023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-410-46105.vs.sakura.ne.jp 2019-12-13T06:38:32.319703shield sshd\[9023\]: Failed password for invalid user wwwadmin from 160.16.148.109 port 33128 ssh2 |
2019-12-13 15:03:46 |
| 180.108.46.237 | attack | Dec 13 07:14:07 mail sshd[25857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.108.46.237 Dec 13 07:14:09 mail sshd[25857]: Failed password for invalid user eeeeeee from 180.108.46.237 port 51016 ssh2 Dec 13 07:21:57 mail sshd[26935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.108.46.237 |
2019-12-13 14:52:04 |
| 218.92.0.168 | attack | Dec 13 07:23:09 mail sshd[27167]: Failed password for root from 218.92.0.168 port 38381 ssh2 Dec 13 07:23:12 mail sshd[27167]: Failed password for root from 218.92.0.168 port 38381 ssh2 Dec 13 07:23:17 mail sshd[27167]: Failed password for root from 218.92.0.168 port 38381 ssh2 Dec 13 07:23:20 mail sshd[27167]: Failed password for root from 218.92.0.168 port 38381 ssh2 |
2019-12-13 14:47:07 |