城市(city): unknown
省份(region): unknown
国家(country): Switzerland
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.245.239.227
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61667
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;145.245.239.227. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022700 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 19:37:30 CST 2025
;; MSG SIZE rcvd: 108Host 227.239.245.145.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 227.239.245.145.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 220.135.202.117 | attackbots | Jun 2 14:08:33 debian-2gb-nbg1-2 kernel: \[13358480.667189\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=220.135.202.117 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=15164 PROTO=TCP SPT=59346 DPT=23 WINDOW=19285 RES=0x00 SYN URGP=0 |
2020-06-02 20:51:16 |
| 201.219.50.217 | attackbots | Lines containing failures of 201.219.50.217 Jun 1 20:00:35 g sshd[7731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.219.50.217 user=r.r Jun 1 20:00:37 g sshd[7731]: Failed password for r.r from 201.219.50.217 port 57752 ssh2 Jun 1 20:00:37 g sshd[7731]: Received disconnect from 201.219.50.217 port 57752:11: Bye Bye [preauth] Jun 1 20:00:37 g sshd[7731]: Disconnected from authenticating user r.r 201.219.50.217 port 57752 [preauth] Jun 1 20:05:16 g sshd[7785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.219.50.217 user=r.r Jun 1 20:05:18 g sshd[7785]: Failed password for r.r from 201.219.50.217 port 44962 ssh2 Jun 1 20:05:18 g sshd[7785]: Received disconnect from 201.219.50.217 port 44962:11: Bye Bye [preauth] Jun 1 20:05:18 g sshd[7785]: Disconnected from authenticating user r.r 201.219.50.217 port 44962 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view. |
2020-06-02 20:55:35 |
| 122.160.45.4 | attackspambots | Jun 2 12:35:28 db01 sshd[10243]: reveeclipse mapping checking getaddrinfo for abts-north-static-004.45.160.122.airtelbroadband.in [122.160.45.4] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 2 12:35:28 db01 sshd[10243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.160.45.4 user=r.r Jun 2 12:35:30 db01 sshd[10243]: Failed password for r.r from 122.160.45.4 port 46198 ssh2 Jun 2 12:35:30 db01 sshd[10243]: Received disconnect from 122.160.45.4: 11: Bye Bye [preauth] Jun 2 12:37:30 db01 sshd[10352]: reveeclipse mapping checking getaddrinfo for abts-north-static-004.45.160.122.airtelbroadband.in [122.160.45.4] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 2 12:37:30 db01 sshd[10352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.160.45.4 user=r.r Jun 2 12:37:32 db01 sshd[10352]: Failed password for r.r from 122.160.45.4 port 39878 ssh2 Jun 2 12:37:32 db01 sshd[10352]: Received disconne........ ------------------------------- |
2020-06-02 20:40:01 |
| 47.42.95.124 | attack | Jun 2 14:08:21 fhem-rasp sshd[7865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.42.95.124 Jun 2 14:08:23 fhem-rasp sshd[7865]: Failed password for invalid user admin from 47.42.95.124 port 60148 ssh2 ... |
2020-06-02 21:06:41 |
| 187.94.221.230 | attackspambots | Jun 2 14:08:29 fhem-rasp sshd[7895]: Failed password for root from 187.94.221.230 port 45439 ssh2 Jun 2 14:08:30 fhem-rasp sshd[7895]: Connection closed by authenticating user root 187.94.221.230 port 45439 [preauth] ... |
2020-06-02 20:57:08 |
| 58.153.41.66 | attackspambots | Jun 2 14:08:37 fhem-rasp sshd[8018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.153.41.66 Jun 2 14:08:39 fhem-rasp sshd[8018]: Failed password for invalid user cablecom from 58.153.41.66 port 56750 ssh2 ... |
2020-06-02 20:46:26 |
| 113.125.118.93 | attackspambots | Jun 2 12:51:44 game-panel sshd[11846]: Failed password for root from 113.125.118.93 port 35522 ssh2 Jun 2 12:54:27 game-panel sshd[11928]: Failed password for root from 113.125.118.93 port 55708 ssh2 |
2020-06-02 21:14:24 |
| 222.186.30.218 | attackbots | Jun 2 02:30:18 web9 sshd\[25830\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root Jun 2 02:30:20 web9 sshd\[25830\]: Failed password for root from 222.186.30.218 port 26333 ssh2 Jun 2 02:30:30 web9 sshd\[25844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root Jun 2 02:30:31 web9 sshd\[25844\]: Failed password for root from 222.186.30.218 port 50524 ssh2 Jun 2 02:30:37 web9 sshd\[25859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root |
2020-06-02 20:32:40 |
| 112.134.19.74 | attackbots | Attempts against non-existent wp-login |
2020-06-02 20:51:44 |
| 114.108.167.109 | attackspambots | Jun 2 17:04:04 gw1 sshd[29153]: Failed password for root from 114.108.167.109 port 42433 ssh2 ... |
2020-06-02 21:08:35 |
| 27.22.48.61 | attackbots | Jun 2 08:08:31 esmtp postfix/smtpd[6002]: lost connection after AUTH from unknown[27.22.48.61] Jun 2 08:08:32 esmtp postfix/smtpd[6002]: lost connection after AUTH from unknown[27.22.48.61] Jun 2 08:08:35 esmtp postfix/smtpd[6002]: lost connection after AUTH from unknown[27.22.48.61] Jun 2 08:08:40 esmtp postfix/smtpd[6002]: lost connection after AUTH from unknown[27.22.48.61] Jun 2 08:08:42 esmtp postfix/smtpd[6002]: lost connection after AUTH from unknown[27.22.48.61] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.22.48.61 |
2020-06-02 20:41:52 |
| 199.119.144.20 | attackspambots | SSH brutforce |
2020-06-02 20:35:07 |
| 174.138.34.155 | attack | 2020-06-02T14:02:00.393647struts4.enskede.local sshd\[3479\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.34.155 user=root 2020-06-02T14:02:03.368903struts4.enskede.local sshd\[3479\]: Failed password for root from 174.138.34.155 port 38402 ssh2 2020-06-02T14:05:19.730180struts4.enskede.local sshd\[3522\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.34.155 user=root 2020-06-02T14:05:22.682961struts4.enskede.local sshd\[3522\]: Failed password for root from 174.138.34.155 port 42426 ssh2 2020-06-02T14:08:35.486681struts4.enskede.local sshd\[3548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.34.155 user=root ... |
2020-06-02 20:50:20 |
| 103.144.21.189 | attackspambots | Jun 2 14:51:11 inter-technics sshd[20684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root Jun 2 14:51:13 inter-technics sshd[20684]: Failed password for root from 103.144.21.189 port 43072 ssh2 Jun 2 14:52:56 inter-technics sshd[20799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root Jun 2 14:52:59 inter-technics sshd[20799]: Failed password for root from 103.144.21.189 port 53556 ssh2 Jun 2 14:55:04 inter-technics sshd[20879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root Jun 2 14:55:06 inter-technics sshd[20879]: Failed password for root from 103.144.21.189 port 35812 ssh2 ... |
2020-06-02 21:10:23 |
| 110.8.6.225 | attack | Jun 2 14:08:31 fhem-rasp sshd[7905]: Failed password for root from 110.8.6.225 port 53163 ssh2 Jun 2 14:08:31 fhem-rasp sshd[7905]: Connection closed by authenticating user root 110.8.6.225 port 53163 [preauth] ... |
2020-06-02 20:56:04 |