城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 6.255.254.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62375
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;6.255.254.95. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 23:55:41 CST 2025
;; MSG SIZE rcvd: 105Host 95.254.255.6.in-addr.arpa not found: 2(SERVFAIL)
server can't find 6.255.254.95.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 81.193.147.116 | attack | 2019-07-03 15:12:56 unexpected disconnection while reading SMTP command from bl4-147-116.dsl.telepac.pt [81.193.147.116]:13909 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-07-03 15:13:13 unexpected disconnection while reading SMTP command from bl4-147-116.dsl.telepac.pt [81.193.147.116]:24338 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-07-03 15:13:19 unexpected disconnection while reading SMTP command from bl4-147-116.dsl.telepac.pt [81.193.147.116]:24139 I=[10.100.18.21]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=81.193.147.116 |
2019-07-04 01:17:36 |
| 138.68.28.46 | attackspambots | proto=tcp . spt=37268 . dpt=25 . (listed on Blocklist de Jul 02) (726) |
2019-07-04 00:58:23 |
| 91.134.231.96 | attack | C1,DEF GET /wp-login.php |
2019-07-04 01:09:17 |
| 14.169.99.106 | attackspambots | Jul 3 15:14:49 iago sshd[17448]: Address 14.169.99.106 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 3 15:14:49 iago sshd[17448]: Invalid user admin from 14.169.99.106 Jul 3 15:14:49 iago sshd[17448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.169.99.106 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.169.99.106 |
2019-07-04 01:31:49 |
| 203.83.183.123 | attack | proto=tcp . spt=42146 . dpt=25 . (listed on Blocklist de Jul 02) (728) |
2019-07-04 00:54:46 |
| 211.24.155.116 | attack | SSH invalid-user multiple login attempts |
2019-07-04 01:44:08 |
| 98.196.40.40 | attack | RDP Scan |
2019-07-04 01:35:41 |
| 47.254.135.232 | attackspambots | Jul 3 15:21:33 www sshd\[21775\]: Invalid user serveur from 47.254.135.232 port 48454 ... |
2019-07-04 01:34:47 |
| 220.197.219.214 | attackbots | Port 1433 Scan |
2019-07-04 01:38:17 |
| 157.230.230.181 | attack | Brute force attempt |
2019-07-04 01:36:35 |
| 153.36.242.114 | attackbotsspam | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=root Failed password for root from 153.36.242.114 port 35790 ssh2 Failed password for root from 153.36.242.114 port 35790 ssh2 Failed password for root from 153.36.242.114 port 35790 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=root |
2019-07-04 01:13:46 |
| 154.0.168.125 | attackbotsspam | " " |
2019-07-04 00:57:53 |
| 45.82.153.2 | attackbotsspam | Averaging 30 ports an hour |
2019-07-04 01:42:17 |
| 153.36.232.49 | attackbots | Jul 3 18:58:33 mail sshd\[13545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.49 user=root Jul 3 18:58:35 mail sshd\[13545\]: Failed password for root from 153.36.232.49 port 51004 ssh2 Jul 3 18:58:38 mail sshd\[13545\]: Failed password for root from 153.36.232.49 port 51004 ssh2 Jul 3 18:58:41 mail sshd\[13545\]: Failed password for root from 153.36.232.49 port 51004 ssh2 Jul 3 18:58:45 mail sshd\[13561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.49 user=root |
2019-07-04 01:08:20 |
| 77.240.90.49 | attack | Jul 3 09:22:10 localhost kernel: [13404324.155114] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=77.240.90.49 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=15852 DF PROTO=TCP SPT=15125 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 3 09:22:10 localhost kernel: [13404324.155143] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=77.240.90.49 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=15852 DF PROTO=TCP SPT=15125 DPT=445 SEQ=1181214701 ACK=0 WINDOW=65535 RES=0x00 SYN URGP=0 OPT (020405B40103030201010402) Jul 3 09:22:13 localhost kernel: [13404327.019113] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=77.240.90.49 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=15975 DF PROTO=TCP SPT=15125 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 3 09:22:13 localhost kernel: [13404327.019138] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=77.240.90 |
2019-07-04 01:11:55 |