城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 38.252.6.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44130
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;38.252.6.142. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022700 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 19:56:17 CST 2025
;; MSG SIZE rcvd: 105
Host 142.6.252.38.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 142.6.252.38.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 51.77.220.127 | attack | 51.77.220.127 - - [07/Aug/2020:18:20:06 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ... |
2020-08-07 23:27:57 |
| 212.70.149.3 | attack | 2020-08-07 17:16:45 dovecot_login authenticator failed for \(User\) \[212.70.149.3\]: 535 Incorrect authentication data \(set_id=gaetan@no-server.de\) 2020-08-07 17:16:55 dovecot_login authenticator failed for \(User\) \[212.70.149.3\]: 535 Incorrect authentication data \(set_id=gaetan@no-server.de\) 2020-08-07 17:16:55 dovecot_login authenticator failed for \(User\) \[212.70.149.3\]: 535 Incorrect authentication data \(set_id=gaetan@no-server.de\) 2020-08-07 17:16:57 dovecot_login authenticator failed for \(User\) \[212.70.149.3\]: 535 Incorrect authentication data \(set_id=gaetan@no-server.de\) 2020-08-07 17:17:04 dovecot_login authenticator failed for \(User\) \[212.70.149.3\]: 535 Incorrect authentication data \(set_id=gaffney@no-server.de\) ... |
2020-08-07 23:20:28 |
| 106.12.83.146 | attack | 2020-08-07T14:07:04.084847amanda2.illicoweb.com sshd\[44103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.83.146 user=root 2020-08-07T14:07:05.670563amanda2.illicoweb.com sshd\[44103\]: Failed password for root from 106.12.83.146 port 50730 ssh2 2020-08-07T14:09:23.296787amanda2.illicoweb.com sshd\[44438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.83.146 user=root 2020-08-07T14:09:25.298893amanda2.illicoweb.com sshd\[44438\]: Failed password for root from 106.12.83.146 port 57198 ssh2 2020-08-07T14:14:10.665586amanda2.illicoweb.com sshd\[45274\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.83.146 user=root ... |
2020-08-07 23:36:06 |
| 103.85.17.131 | attackbotsspam | 1596801916 - 08/07/2020 14:05:16 Host: 103.85.17.131/103.85.17.131 Port: 445 TCP Blocked ... |
2020-08-07 23:38:18 |
| 87.173.199.95 | attack | Lines containing failures of 87.173.199.95 Aug 7 13:42:59 commu-intern sshd[22119]: Invalid user pi from 87.173.199.95 port 50802 Aug 7 13:42:59 commu-intern sshd[22121]: Invalid user pi from 87.173.199.95 port 50806 Aug 7 13:43:02 commu-intern sshd[22119]: Failed password for invalid user pi from 87.173.199.95 port 50802 ssh2 Aug 7 13:43:02 commu-intern sshd[22121]: Failed password for invalid user pi from 87.173.199.95 port 50806 ssh2 Aug 7 13:43:02 commu-intern sshd[22119]: Connection closed by invalid user pi 87.173.199.95 port 50802 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=87.173.199.95 |
2020-08-07 23:45:53 |
| 222.186.180.130 | attackbotsspam | 08/07/2020-11:16:27.322282 222.186.180.130 Protocol: 6 ET SCAN Potential SSH Scan |
2020-08-07 23:17:49 |
| 87.103.120.250 | attack | 2020-08-07T13:59:19.927955shield sshd\[9741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=250.120.103.87.rev.vodafone.pt user=root 2020-08-07T13:59:22.451024shield sshd\[9741\]: Failed password for root from 87.103.120.250 port 46382 ssh2 2020-08-07T14:03:27.511076shield sshd\[10065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=250.120.103.87.rev.vodafone.pt user=root 2020-08-07T14:03:29.080690shield sshd\[10065\]: Failed password for root from 87.103.120.250 port 56812 ssh2 2020-08-07T14:07:42.938688shield sshd\[10483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=250.120.103.87.rev.vodafone.pt user=root |
2020-08-07 23:32:17 |
| 209.141.40.237 | attackbotsspam | Aug 7 16:07:38 fhem-rasp sshd[11019]: Invalid user !@12Qwaszx from 209.141.40.237 port 34680 ... |
2020-08-07 23:30:42 |
| 119.236.73.27 | attackspam | Aug 7 08:00:40 master sshd[15346]: Failed password for invalid user admin from 119.236.73.27 port 50228 ssh2 Aug 7 08:31:26 master sshd[16286]: Failed password for root from 119.236.73.27 port 63048 ssh2 Aug 7 09:25:51 master sshd[17624]: Failed password for invalid user admin from 119.236.73.27 port 58916 ssh2 Aug 7 09:25:57 master sshd[17626]: Failed password for root from 119.236.73.27 port 58954 ssh2 |
2020-08-07 23:27:17 |
| 128.199.160.225 | attackbots | Aug 7 17:08:11 lnxmysql61 sshd[26906]: Failed password for root from 128.199.160.225 port 56340 ssh2 Aug 7 17:08:11 lnxmysql61 sshd[26906]: Failed password for root from 128.199.160.225 port 56340 ssh2 |
2020-08-07 23:24:32 |
| 114.67.166.50 | attackbotsspam | Lines containing failures of 114.67.166.50 Aug 3 22:02:27 shared06 sshd[18000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.166.50 user=r.r Aug 3 22:02:29 shared06 sshd[18000]: Failed password for r.r from 114.67.166.50 port 55802 ssh2 Aug 3 22:02:30 shared06 sshd[18000]: Received disconnect from 114.67.166.50 port 55802:11: Bye Bye [preauth] Aug 3 22:02:30 shared06 sshd[18000]: Disconnected from authenticating user r.r 114.67.166.50 port 55802 [preauth] Aug 3 22:12:26 shared06 sshd[21480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.166.50 user=r.r Aug 3 22:12:28 shared06 sshd[21480]: Failed password for r.r from 114.67.166.50 port 41314 ssh2 Aug 3 22:12:28 shared06 sshd[21480]: Received disconnect from 114.67.166.50 port 41314:11: Bye Bye [preauth] Aug 3 22:12:28 shared06 sshd[21480]: Disconnected from authenticating user r.r 114.67.166.50 port 41314 [preauth........ ------------------------------ |
2020-08-07 23:09:18 |
| 103.86.180.10 | attackspambots | Aug 7 16:49:28 xeon sshd[6799]: Failed password for root from 103.86.180.10 port 39197 ssh2 |
2020-08-07 23:34:39 |
| 208.113.153.216 | attackbots | 208.113.153.216 - - [07/Aug/2020:15:33:16 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 208.113.153.216 - - [07/Aug/2020:15:33:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 208.113.153.216 - - [07/Aug/2020:15:33:18 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-07 23:50:33 |
| 54.37.159.12 | attackbots | Aug 7 15:56:34 abendstille sshd\[27443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.159.12 user=root Aug 7 15:56:36 abendstille sshd\[27443\]: Failed password for root from 54.37.159.12 port 54588 ssh2 Aug 7 16:00:39 abendstille sshd\[31649\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.159.12 user=root Aug 7 16:00:41 abendstille sshd\[31649\]: Failed password for root from 54.37.159.12 port 36498 ssh2 Aug 7 16:04:29 abendstille sshd\[3395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.159.12 user=root ... |
2020-08-07 23:30:12 |
| 71.162.7.202 | attack | 400 BAD REQUEST |
2020-08-07 23:40:03 |