城市(city): Hovik verk
省份(region): Viken
国家(country): Norway
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.0.75.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65512
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;141.0.75.166. IN A
;; AUTHORITY SECTION:
. 546 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020021500 1800 900 604800 86400
;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 16 04:06:19 CST 2020
;; MSG SIZE rcvd: 116166.75.0.141.in-addr.arpa domain name pointer 141.0.75.166.static.lyse.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
166.75.0.141.in-addr.arpa name = 141.0.75.166.static.lyse.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 185.143.72.27 | attack | 2020-06-17T14:35:06.008641www postfix/smtpd[15762]: warning: unknown[185.143.72.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-17T14:35:57.048028www postfix/smtpd[15762]: warning: unknown[185.143.72.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-17T14:36:51.393999www postfix/smtpd[15762]: warning: unknown[185.143.72.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-06-17 20:40:46 |
| 202.137.142.97 | attack | Dovecot Invalid User Login Attempt. |
2020-06-17 19:58:26 |
| 189.203.72.138 | attackspambots | 2020-06-17T14:11:30+0200 Failed SSH Authentication/Brute Force Attack. (Server 9) |
2020-06-17 20:12:12 |
| 94.214.133.133 | attackbots | port scan and connect, tcp 443 (https) |
2020-06-17 20:35:20 |
| 51.91.110.51 | attack | Jun 17 05:18:59 dignus sshd[7554]: Failed password for invalid user lou from 51.91.110.51 port 41668 ssh2 Jun 17 05:22:21 dignus sshd[7855]: Invalid user minecraft from 51.91.110.51 port 43114 Jun 17 05:22:21 dignus sshd[7855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.110.51 Jun 17 05:22:23 dignus sshd[7855]: Failed password for invalid user minecraft from 51.91.110.51 port 43114 ssh2 Jun 17 05:25:36 dignus sshd[8131]: Invalid user newftpuser from 51.91.110.51 port 44556 ... |
2020-06-17 20:30:53 |
| 49.233.81.2 | attackbotsspam | 2020-06-17T14:05:02.077446amanda2.illicoweb.com sshd\[34658\]: Invalid user aek from 49.233.81.2 port 42568 2020-06-17T14:05:02.081021amanda2.illicoweb.com sshd\[34658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.81.2 2020-06-17T14:05:03.941157amanda2.illicoweb.com sshd\[34658\]: Failed password for invalid user aek from 49.233.81.2 port 42568 ssh2 2020-06-17T14:08:08.467014amanda2.illicoweb.com sshd\[34722\]: Invalid user pan from 49.233.81.2 port 42410 2020-06-17T14:08:08.469226amanda2.illicoweb.com sshd\[34722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.81.2 ... |
2020-06-17 20:17:55 |
| 54.36.148.42 | attack | Automated report (2020-06-17T14:54:44+08:00). Scraper detected at this address. |
2020-06-17 20:01:46 |
| 139.59.116.115 | attackspambots | TCP ports : 774 / 10271 / 10749 / 14821 / 15994 / 23960 / 24230 / 28311 / 28492 / 30948 |
2020-06-17 20:43:44 |
| 178.216.251.21 | attack | Unauthorized access or intrusion attempt detected from Thor banned IP |
2020-06-17 20:25:38 |
| 218.92.0.247 | attackbots | Lines containing failures of 218.92.0.247 Jun 16 15:30:13 kopano sshd[12906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.247 user=r.r Jun 16 15:30:15 kopano sshd[12906]: Failed password for r.r from 218.92.0.247 port 12543 ssh2 Jun 16 15:30:18 kopano sshd[12906]: Failed password for r.r from 218.92.0.247 port 12543 ssh2 Jun 16 15:30:21 kopano sshd[12906]: Failed password for r.r from 218.92.0.247 port 12543 ssh2 Jun 16 15:30:29 kopano sshd[12906]: message repeated 2 serveres: [ Failed password for r.r from 218.92.0.247 port 12543 ssh2] Jun 16 15:30:29 kopano sshd[12906]: error: maximum authentication attempts exceeded for r.r from 218.92.0.247 port 12543 ssh2 [preauth] Jun 16 15:30:29 kopano sshd[12906]: Disconnecting authenticating user r.r 218.92.0.247 port 12543: Too many authentication failures [preauth] Jun 16 15:30:29 kopano sshd[12906]: PAM 4 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= r........ ------------------------------ |
2020-06-17 20:39:15 |
| 185.171.10.96 | attack | (sshd) Failed SSH login from 185.171.10.96 (ES/Spain/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 17 14:05:24 ubnt-55d23 sshd[5664]: Invalid user trm from 185.171.10.96 port 56263 Jun 17 14:05:26 ubnt-55d23 sshd[5664]: Failed password for invalid user trm from 185.171.10.96 port 56263 ssh2 |
2020-06-17 20:23:33 |
| 106.54.50.236 | attackspam | Jun 17 02:27:01 Host-KEWR-E sshd[13435]: Disconnected from invalid user admin 106.54.50.236 port 60776 [preauth] ... |
2020-06-17 20:01:16 |
| 195.122.25.180 | attackspam | 18 Login Attempts |
2020-06-17 20:35:52 |
| 157.230.125.207 | attackbots | Jun 17 13:33:17 vpn01 sshd[26459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.125.207 Jun 17 13:33:19 vpn01 sshd[26459]: Failed password for invalid user aman from 157.230.125.207 port 59360 ssh2 ... |
2020-06-17 20:07:10 |
| 132.255.116.14 | attackbotsspam | Jun 17 08:18:15 ny01 sshd[18709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.255.116.14 Jun 17 08:18:17 ny01 sshd[18709]: Failed password for invalid user alex from 132.255.116.14 port 36317 ssh2 Jun 17 08:22:41 ny01 sshd[19248]: Failed password for root from 132.255.116.14 port 36697 ssh2 |
2020-06-17 20:28:32 |