城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 6.93.66.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20802
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;6.93.66.56. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 03:44:50 CST 2025
;; MSG SIZE rcvd: 103b'Host 56.66.93.6.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 6.93.66.56.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 14.185.60.166 | attackbots | [MK-Root1] Blocked by UFW |
2020-05-20 15:20:28 |
| 213.217.0.132 | attack | May 20 08:54:36 debian-2gb-nbg1-2 kernel: \[12216503.375657\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=213.217.0.132 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=921 PROTO=TCP SPT=53608 DPT=57314 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-05-20 15:22:14 |
| 51.158.65.150 | attack | May 20 09:02:14 minden010 sshd[31909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.65.150 May 20 09:02:16 minden010 sshd[31909]: Failed password for invalid user vzb from 51.158.65.150 port 55470 ssh2 May 20 09:06:06 minden010 sshd[666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.65.150 ... |
2020-05-20 15:15:09 |
| 49.232.43.151 | attackspam | Invalid user kjy from 49.232.43.151 port 33444 |
2020-05-20 15:35:21 |
| 101.251.219.227 | attackspam | May 20 09:43:02 h2779839 sshd[24200]: Invalid user ambari-qa from 101.251.219.227 port 47488 May 20 09:43:02 h2779839 sshd[24200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.251.219.227 May 20 09:43:02 h2779839 sshd[24200]: Invalid user ambari-qa from 101.251.219.227 port 47488 May 20 09:43:05 h2779839 sshd[24200]: Failed password for invalid user ambari-qa from 101.251.219.227 port 47488 ssh2 May 20 09:46:23 h2779839 sshd[24257]: Invalid user uhg from 101.251.219.227 port 37646 May 20 09:46:23 h2779839 sshd[24257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.251.219.227 May 20 09:46:23 h2779839 sshd[24257]: Invalid user uhg from 101.251.219.227 port 37646 May 20 09:46:25 h2779839 sshd[24257]: Failed password for invalid user uhg from 101.251.219.227 port 37646 ssh2 May 20 09:50:01 h2779839 sshd[24277]: Invalid user pbx from 101.251.219.227 port 56034 ... |
2020-05-20 15:55:46 |
| 41.42.125.123 | attackspam | Lines containing failures of 41.42.125.123 May 20 01:34:21 mx-in-02 sshd[27020]: Did not receive identification string from 41.42.125.123 port 61523 May 20 01:34:24 mx-in-02 sshd[27021]: Invalid user system from 41.42.125.123 port 61866 May 20 01:34:24 mx-in-02 sshd[27021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.42.125.123 May 20 01:34:27 mx-in-02 sshd[27021]: Failed password for invalid user system from 41.42.125.123 port 61866 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=41.42.125.123 |
2020-05-20 15:18:47 |
| 138.68.4.8 | attack | May 20 09:13:41 meumeu sshd[311965]: Invalid user ujb from 138.68.4.8 port 46092 May 20 09:13:41 meumeu sshd[311965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.8 May 20 09:13:41 meumeu sshd[311965]: Invalid user ujb from 138.68.4.8 port 46092 May 20 09:13:42 meumeu sshd[311965]: Failed password for invalid user ujb from 138.68.4.8 port 46092 ssh2 May 20 09:17:10 meumeu sshd[312382]: Invalid user jsr from 138.68.4.8 port 52756 May 20 09:17:10 meumeu sshd[312382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.8 May 20 09:17:10 meumeu sshd[312382]: Invalid user jsr from 138.68.4.8 port 52756 May 20 09:17:12 meumeu sshd[312382]: Failed password for invalid user jsr from 138.68.4.8 port 52756 ssh2 May 20 09:20:47 meumeu sshd[312790]: Invalid user aur from 138.68.4.8 port 59408 ... |
2020-05-20 15:25:11 |
| 113.116.152.158 | attackspam | Email rejected due to spam filtering |
2020-05-20 15:33:59 |
| 51.91.247.125 | attackbotsspam | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-05-20 15:38:08 |
| 106.53.87.188 | attackspambots | RDP Brute-Force (Grieskirchen RZ1) |
2020-05-20 15:32:55 |
| 64.227.120.63 | attackspambots | firewall-block, port(s): 2251/tcp |
2020-05-20 15:53:48 |
| 68.183.236.92 | attackbots | Invalid user hpm from 68.183.236.92 port 58418 |
2020-05-20 15:40:09 |
| 51.38.127.227 | attackbots | detected by Fail2Ban |
2020-05-20 15:49:09 |
| 46.39.20.4 | attack | GET /phpMyAdmin/scripts/setup.php HTTP/1.1 |
2020-05-20 15:43:01 |
| 51.178.85.190 | attackbotsspam | Invalid user ytd from 51.178.85.190 port 50882 |
2020-05-20 15:40:35 |