城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.146.119.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40565
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;148.146.119.12. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012802 1800 900 604800 86400
;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 08:07:34 CST 2025
;; MSG SIZE rcvd: 107
b'Host 12.119.146.148.in-addr.arpa not found: 2(SERVFAIL)
'
server can't find 148.146.119.12.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 67.216.55.213 | attackbots | TCP Port Scanning |
2019-11-21 17:45:25 |
| 45.82.153.34 | attackbots | ET CINS Active Threat Intelligence Poor Reputation IP group 35 - port: 9302 proto: TCP cat: Misc Attack |
2019-11-21 17:49:53 |
| 108.61.169.80 | attackspam | TCP Port Scanning |
2019-11-21 18:05:08 |
| 77.126.19.202 | attackspambots | Lines containing failures of 77.126.19.202 Nov 19 12:45:02 server01 postfix/smtpd[24091]: connect from unknown[77.126.19.202] Nov x@x Nov x@x Nov 19 12:45:03 server01 postfix/policy-spf[24095]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=b77bba961%40orisline.es;ip=77.126.19.202;r=server01.2800km.de Nov x@x Nov 19 12:45:03 server01 postfix/smtpd[24091]: lost connection after DATA from unknown[77.126.19.202] Nov 19 12:45:03 server01 postfix/smtpd[24091]: disconnect from unknown[77.126.19.202] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=77.126.19.202 |
2019-11-21 17:49:26 |
| 144.76.8.75 | attack | Nov 19 13:42:03 vz239 sshd[10812]: Failed password for backup from 144.76.8.75 port 50370 ssh2 Nov 19 13:42:03 vz239 sshd[10812]: Received disconnect from 144.76.8.75: 11: Bye Bye [preauth] Nov 19 14:03:42 vz239 sshd[11176]: Failed password for news from 144.76.8.75 port 38090 ssh2 Nov 19 14:03:42 vz239 sshd[11176]: Received disconnect from 144.76.8.75: 11: Bye Bye [preauth] Nov 19 14:07:32 vz239 sshd[11225]: Invalid user serverohostnamee from 144.76.8.75 Nov 19 14:07:35 vz239 sshd[11225]: Failed password for invalid user serverohostnamee from 144.76.8.75 port 48042 ssh2 Nov 19 14:07:35 vz239 sshd[11225]: Received disconnect from 144.76.8.75: 11: Bye Bye [preauth] Nov 19 14:11:06 vz239 sshd[11274]: Invalid user sentry from 144.76.8.75 Nov 19 14:11:07 vz239 sshd[11274]: Failed password for invalid user sentry from 144.76.8.75 port 57990 ssh2 Nov 19 14:11:07 vz239 sshd[11274]: Received disconnect from 144.76.8.75: 11: Bye Bye [preauth] Nov 19 14:14:36 vz239 sshd[11339]: I........ ------------------------------- |
2019-11-21 18:14:03 |
| 190.28.82.159 | attackbotsspam | Honeypot attack, port: 23, PTR: adsl190-28-82-159.epm.net.co. |
2019-11-21 17:46:45 |
| 132.232.226.83 | attackbots | Nov 21 07:50:41 microserver sshd[49267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.226.83 Nov 21 07:50:43 microserver sshd[49267]: Failed password for invalid user jazmine from 132.232.226.83 port 35882 ssh2 Nov 21 07:54:55 microserver sshd[49484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.226.83 user=root Nov 21 07:54:56 microserver sshd[49484]: Failed password for root from 132.232.226.83 port 43368 ssh2 Nov 21 08:07:19 microserver sshd[51351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.226.83 user=bin Nov 21 08:07:21 microserver sshd[51351]: Failed password for bin from 132.232.226.83 port 37518 ssh2 Nov 21 08:11:32 microserver sshd[51981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.226.83 user=root Nov 21 08:11:34 microserver sshd[51981]: Failed password for root from 132.232.226.83 port 4498 |
2019-11-21 17:58:54 |
| 123.234.219.226 | attackspam | 2019-11-21T09:39:20.711830abusebot-5.cloudsearch.cf sshd\[19052\]: Invalid user waggoner from 123.234.219.226 port 40458 |
2019-11-21 17:40:25 |
| 27.128.229.22 | attackbotsspam | Nov 21 15:45:22 itv-usvr-01 sshd[12715]: Invalid user kalisvaart from 27.128.229.22 Nov 21 15:45:22 itv-usvr-01 sshd[12715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.229.22 Nov 21 15:45:22 itv-usvr-01 sshd[12715]: Invalid user kalisvaart from 27.128.229.22 Nov 21 15:45:24 itv-usvr-01 sshd[12715]: Failed password for invalid user kalisvaart from 27.128.229.22 port 59358 ssh2 |
2019-11-21 18:10:34 |
| 222.186.180.6 | attackbots | Nov 21 10:44:43 dcd-gentoo sshd[32509]: User root from 222.186.180.6 not allowed because none of user's groups are listed in AllowGroups Nov 21 10:44:46 dcd-gentoo sshd[32509]: error: PAM: Authentication failure for illegal user root from 222.186.180.6 Nov 21 10:44:43 dcd-gentoo sshd[32509]: User root from 222.186.180.6 not allowed because none of user's groups are listed in AllowGroups Nov 21 10:44:46 dcd-gentoo sshd[32509]: error: PAM: Authentication failure for illegal user root from 222.186.180.6 Nov 21 10:44:43 dcd-gentoo sshd[32509]: User root from 222.186.180.6 not allowed because none of user's groups are listed in AllowGroups Nov 21 10:44:46 dcd-gentoo sshd[32509]: error: PAM: Authentication failure for illegal user root from 222.186.180.6 Nov 21 10:44:46 dcd-gentoo sshd[32509]: Failed keyboard-interactive/pam for invalid user root from 222.186.180.6 port 47542 ssh2 ... |
2019-11-21 17:54:55 |
| 150.129.232.195 | attackbots | Nov 19 12:02:12 mxgate1 postfix/postscreen[659]: CONNECT from [150.129.232.195]:43133 to [176.31.12.44]:25 Nov 19 12:02:18 mxgate1 postfix/postscreen[659]: PASS NEW [150.129.232.195]:43133 Nov 19 12:02:21 mxgate1 postfix/smtpd[944]: connect from email195.ncdelivery01.com[150.129.232.195] Nov x@x Nov 19 12:02:22 mxgate1 postfix/smtpd[944]: disconnect from email195.ncdelivery01.com[150.129.232.195] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Nov 19 12:07:21 mxgate1 postfix/postscreen[2415]: CONNECT from [150.129.232.195]:47346 to [176.31.12.44]:25 Nov 19 12:07:21 mxgate1 postfix/postscreen[2415]: PASS OLD [150.129.232.195]:47346 Nov 19 12:07:21 mxgate1 postfix/smtpd[2421]: connect from email195.ncdelivery01.com[150.129.232.195] Nov x@x Nov 19 12:07:22 mxgate1 postfix/smtpd[2421]: disconnect from email195.ncdelivery01.com[150.129.232.195] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Nov 19 12:12:32 mxgate1 postfix/postscreen[2415]: CONNECT from [........ ------------------------------- |
2019-11-21 17:42:54 |
| 185.168.227.251 | attackspam | 19/11/21@01:25:59: FAIL: Alarm-Intrusion address from=185.168.227.251 ... |
2019-11-21 18:08:42 |
| 103.30.151.17 | attackbots | SSH auth scanning - multiple failed logins |
2019-11-21 17:54:31 |
| 129.146.147.62 | attackbotsspam | Nov 21 10:36:34 legacy sshd[24629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.147.62 Nov 21 10:36:36 legacy sshd[24629]: Failed password for invalid user webmaster from 129.146.147.62 port 43936 ssh2 Nov 21 10:41:23 legacy sshd[24777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.147.62 ... |
2019-11-21 17:45:45 |
| 88.244.187.66 | attack | Fail2Ban Ban Triggered |
2019-11-21 17:55:48 |