城市(city): unknown
省份(region): unknown
国家(country): None
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 56.242.42.43
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9278
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;56.242.42.43. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400
;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 15:47:27 CST 2025
;; MSG SIZE rcvd: 105Host 43.42.242.56.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 43.42.242.56.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 162.247.74.27 | attack | This IP address was blacklisted for the following reason: /de//config. @ 2019-07-02T09:31:56+02:00. |
2019-07-07 03:52:09 |
| 183.82.121.34 | attackspam | Jul 2 12:55:08 *** sshd[301]: Failed password for invalid user noc from 183.82.121.34 port 47151 ssh2 Jul 2 12:57:56 *** sshd[321]: Failed password for invalid user golf from 183.82.121.34 port 60709 ssh2 Jul 2 13:00:24 *** sshd[355]: Failed password for invalid user nagios from 183.82.121.34 port 45360 ssh2 Jul 2 13:02:58 *** sshd[424]: Failed password for invalid user proxyuser from 183.82.121.34 port 58253 ssh2 Jul 2 13:05:25 *** sshd[541]: Failed password for invalid user mailer from 183.82.121.34 port 42906 ssh2 Jul 2 13:08:05 *** sshd[561]: Failed password for invalid user pr from 183.82.121.34 port 55812 ssh2 Jul 2 13:10:43 *** sshd[634]: Failed password for invalid user flink from 183.82.121.34 port 40485 ssh2 Jul 2 13:13:13 *** sshd[655]: Failed password for invalid user veronica from 183.82.121.34 port 53363 ssh2 Jul 2 13:15:48 *** sshd[677]: Failed password for invalid user prova from 183.82.121.34 port 38026 ssh2 Jul 2 13:18:18 *** sshd[698]: Failed password for invalid user student from |
2019-07-07 04:18:17 |
| 216.244.66.196 | attackspam | login attempts |
2019-07-07 03:45:28 |
| 36.26.200.71 | attackspambots | Jul 6 07:08:38 eola postfix/smtpd[17183]: connect from unknown[36.26.200.71] Jul 6 07:08:39 eola postfix/smtpd[17653]: connect from unknown[36.26.200.71] Jul 6 07:08:40 eola postfix/anvil[16077]: statistics: max connection count 2 for (smtp:36.26.200.71) at Jul 6 07:08:39 Jul 6 07:08:45 eola postfix/smtpd[17653]: lost connection after AUTH from unknown[36.26.200.71] Jul 6 07:08:45 eola postfix/smtpd[17653]: disconnect from unknown[36.26.200.71] ehlo=1 auth=0/1 commands=1/2 Jul 6 07:08:47 eola postfix/smtpd[17653]: connect from unknown[36.26.200.71] Jul 6 07:08:49 eola postfix/smtpd[17653]: lost connection after AUTH from unknown[36.26.200.71] Jul 6 07:08:49 eola postfix/smtpd[17653]: disconnect from unknown[36.26.200.71] ehlo=1 auth=0/1 commands=1/2 Jul 6 07:08:50 eola postfix/smtpd[17653]: connect from unknown[36.26.200.71] Jul 6 07:08:53 eola postfix/smtpd[17653]: lost connection after AUTH from unknown[36.26.200.71] Jul 6 07:08:53 eola postfix/smtpd[17653........ ------------------------------- |
2019-07-07 03:52:31 |
| 120.34.239.217 | attackbots | Jul 6 20:22:49 lcl-usvr-01 sshd[9210]: Invalid user admin from 120.34.239.217 Jul 6 20:22:49 lcl-usvr-01 sshd[9210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.34.239.217 Jul 6 20:22:49 lcl-usvr-01 sshd[9210]: Invalid user admin from 120.34.239.217 Jul 6 20:22:51 lcl-usvr-01 sshd[9210]: Failed password for invalid user admin from 120.34.239.217 port 11360 ssh2 Jul 6 20:22:49 lcl-usvr-01 sshd[9210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.34.239.217 Jul 6 20:22:49 lcl-usvr-01 sshd[9210]: Invalid user admin from 120.34.239.217 Jul 6 20:22:51 lcl-usvr-01 sshd[9210]: Failed password for invalid user admin from 120.34.239.217 port 11360 ssh2 Jul 6 20:22:52 lcl-usvr-01 sshd[9210]: Failed password for invalid user admin from 120.34.239.217 port 11360 ssh2 |
2019-07-07 03:58:28 |
| 122.232.221.59 | attackbots | Banned for posting to wp-login.php without referer {"redirect_to":"http:\/\/ritadickinsonrealtor.com\/wp-admin\/","log":"ritadickinsonrealtor","testcookie":"1","pwd":"ritadickinsonrealtor1","wp-submit":"Log In"} |
2019-07-07 04:28:05 |
| 186.223.229.247 | attack | 06.07.2019 17:46:59 SSH access blocked by firewall |
2019-07-07 04:28:37 |
| 206.189.65.11 | attackspambots | Jul 6 21:57:44 * sshd[16413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.65.11 Jul 6 21:57:46 * sshd[16413]: Failed password for invalid user greg from 206.189.65.11 port 41462 ssh2 |
2019-07-07 04:07:42 |
| 117.2.19.224 | attackbots | Jul 6 18:40:52 * sshd[13073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.2.19.224 Jul 6 18:40:54 * sshd[13073]: Failed password for invalid user zipcode from 117.2.19.224 port 45822 ssh2 |
2019-07-07 04:21:57 |
| 41.205.53.253 | attackspam | Jul 6 15:12:30 mxgate1 postfix/postscreen[15388]: CONNECT from [41.205.53.253]:41164 to [176.31.12.44]:25 Jul 6 15:12:30 mxgate1 postfix/dnsblog[15389]: addr 41.205.53.253 listed by domain zen.spamhaus.org as 127.0.0.11 Jul 6 15:12:30 mxgate1 postfix/dnsblog[15389]: addr 41.205.53.253 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 6 15:12:30 mxgate1 postfix/dnsblog[15390]: addr 41.205.53.253 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 6 15:12:30 mxgate1 postfix/dnsblog[15391]: addr 41.205.53.253 listed by domain bl.spamcop.net as 127.0.0.2 Jul 6 15:12:30 mxgate1 postfix/dnsblog[15392]: addr 41.205.53.253 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 6 15:12:36 mxgate1 postfix/postscreen[15388]: DNSBL rank 5 for [41.205.53.253]:41164 Jul x@x Jul 6 15:12:37 mxgate1 postfix/postscreen[15388]: HANGUP after 0.67 from [41.205.53.253]:41164 in tests after SMTP handshake Jul 6 15:12:37 mxgate1 postfix/postscreen[15388]: DISCONNECT [41.205.53.253]:4........ ------------------------------- |
2019-07-07 04:16:15 |
| 58.152.124.224 | attack | Unauthorised access (Jul 6) SRC=58.152.124.224 LEN=44 TTL=47 ID=30859 TCP DPT=8080 WINDOW=33341 SYN |
2019-07-07 04:16:52 |
| 191.53.250.240 | attackspambots | Currently 7 failed/unauthorized logins attempts via SMTP/IMAP whostnameh 6 different usernames and wrong password: 2019-07-06T15:08:29+02:00 x@x 2019-07-01T11:34:20+02:00 x@x 2019-06-26T01:23:41+02:00 x@x 2019-06-22T19:34:12+02:00 x@x 2019-06-19T01:31:25+02:00 x@x 2019-06-19T01:28:53+02:00 x@x 2018-03-17T21:49:51+01:00 Access from 191.53.250.240 whostnameh username "fips" (Unknown account) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=191.53.250.240 |
2019-07-07 04:10:37 |
| 46.101.1.198 | attackspambots | Jul 6 20:22:36 sshgateway sshd\[4783\]: Invalid user denied from 46.101.1.198 Jul 6 20:22:36 sshgateway sshd\[4783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.1.198 Jul 6 20:22:38 sshgateway sshd\[4783\]: Failed password for invalid user denied from 46.101.1.198 port 34959 ssh2 |
2019-07-07 04:32:13 |
| 5.142.71.127 | attackbotsspam | Jul 6 15:10:48 m3061 sshd[4510]: Invalid user admin from 5.142.71.127 Jul 6 15:10:50 m3061 sshd[4510]: Failed password for invalid user admin from 5.142.71.127 port 35495 ssh2 Jul 6 15:10:50 m3061 sshd[4510]: Connection closed by 5.142.71.127 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.142.71.127 |
2019-07-07 04:12:28 |
| 220.164.2.88 | attackbots | IMAP brute force ... |
2019-07-07 04:05:19 |