城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.182.17.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52367
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;66.182.17.148. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400
;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 00:23:17 CST 2025
;; MSG SIZE rcvd: 106148.17.182.66.in-addr.arpa domain name pointer jd.divix.biz.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
148.17.182.66.in-addr.arpa name = jd.divix.biz.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 190.246.205.208 | attackspam | Dec 25 04:08:53 srv1 sshd[11811]: Address 190.246.205.208 maps to 208-205-246-190.fibertel.com.ar, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 25 04:08:53 srv1 sshd[11811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.246.205.208 user=r.r Dec 25 04:08:55 srv1 sshd[11811]: Failed password for r.r from 190.246.205.208 port 56270 ssh2 Dec 25 04:08:55 srv1 sshd[11812]: Received disconnect from 190.246.205.208: 11: Bye Bye Dec 25 04:39:49 srv1 sshd[12137]: Address 190.246.205.208 maps to 208-205-246-190.fibertel.com.ar, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 25 04:39:49 srv1 sshd[12137]: Invalid user home from 190.246.205.208 Dec 25 04:39:49 srv1 sshd[12137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.246.205.208 Dec 25 04:39:51 srv1 sshd[12137]: Failed password for invalid user home from 190.246.205.208 port 547........ ------------------------------- |
2019-12-25 16:44:38 |
| 138.197.189.136 | attack | Brute-force attempt banned |
2019-12-25 16:33:05 |
| 94.11.253.92 | attackspam | spam |
2019-12-25 16:26:17 |
| 73.198.99.245 | attack | Lines containing failures of 73.198.99.245 Dec 25 06:26:30 shared06 sshd[25663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.198.99.245 user=r.r Dec 25 06:26:31 shared06 sshd[25663]: Failed password for r.r from 73.198.99.245 port 55548 ssh2 Dec 25 06:26:31 shared06 sshd[25663]: Received disconnect from 73.198.99.245 port 55548:11: Bye Bye [preauth] Dec 25 06:26:31 shared06 sshd[25663]: Disconnected from authenticating user r.r 73.198.99.245 port 55548 [preauth] Dec 25 06:39:38 shared06 sshd[29263]: Invalid user dbus from 73.198.99.245 port 37930 Dec 25 06:39:38 shared06 sshd[29263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.198.99.245 Dec 25 06:39:40 shared06 sshd[29263]: Failed password for invalid user dbus from 73.198.99.245 port 37930 ssh2 Dec 25 06:39:40 shared06 sshd[29263]: Received disconnect from 73.198.99.245 port 37930:11: Bye Bye [preauth] Dec 25 06:39:40 shared0........ ------------------------------ |
2019-12-25 16:38:51 |
| 49.88.112.59 | attack | Dec 25 09:35:05 ns3042688 sshd\[26137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.59 user=root Dec 25 09:35:07 ns3042688 sshd\[26137\]: Failed password for root from 49.88.112.59 port 40238 ssh2 Dec 25 09:35:18 ns3042688 sshd\[26137\]: Failed password for root from 49.88.112.59 port 40238 ssh2 Dec 25 09:35:21 ns3042688 sshd\[26137\]: Failed password for root from 49.88.112.59 port 40238 ssh2 Dec 25 09:35:26 ns3042688 sshd\[26279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.59 user=root ... |
2019-12-25 16:40:53 |
| 62.197.214.199 | attackspambots | Dec 25 13:39:37 vibhu-HP-Z238-Microtower-Workstation sshd\[23282\]: Invalid user shika from 62.197.214.199 Dec 25 13:39:37 vibhu-HP-Z238-Microtower-Workstation sshd\[23282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.197.214.199 Dec 25 13:39:39 vibhu-HP-Z238-Microtower-Workstation sshd\[23282\]: Failed password for invalid user shika from 62.197.214.199 port 51004 ssh2 Dec 25 13:43:37 vibhu-HP-Z238-Microtower-Workstation sshd\[23437\]: Invalid user rhena from 62.197.214.199 Dec 25 13:43:37 vibhu-HP-Z238-Microtower-Workstation sshd\[23437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.197.214.199 ... |
2019-12-25 16:14:37 |
| 188.106.66.125 | attackspam | Dec 24 18:42:41 newdogma sshd[32321]: Invalid user garris from 188.106.66.125 port 51232 Dec 24 18:42:41 newdogma sshd[32321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.106.66.125 Dec 24 18:42:42 newdogma sshd[32321]: Failed password for invalid user garris from 188.106.66.125 port 51232 ssh2 Dec 24 18:42:43 newdogma sshd[32321]: Received disconnect from 188.106.66.125 port 51232:11: Bye Bye [preauth] Dec 24 18:42:43 newdogma sshd[32321]: Disconnected from 188.106.66.125 port 51232 [preauth] Dec 24 18:49:01 newdogma sshd[32402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.106.66.125 user=r.r Dec 24 18:49:03 newdogma sshd[32402]: Failed password for r.r from 188.106.66.125 port 43642 ssh2 Dec 24 18:49:03 newdogma sshd[32402]: Received disconnect from 188.106.66.125 port 43642:11: Bye Bye [preauth] Dec 24 18:49:03 newdogma sshd[32402]: Disconnected from 188.106.66.125 port 4........ ------------------------------- |
2019-12-25 16:41:23 |
| 103.79.154.104 | attack | Dec 25 09:28:10 lukav-desktop sshd\[30694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.79.154.104 user=root Dec 25 09:28:12 lukav-desktop sshd\[30694\]: Failed password for root from 103.79.154.104 port 54946 ssh2 Dec 25 09:34:47 lukav-desktop sshd\[30882\]: Invalid user 18607 from 103.79.154.104 Dec 25 09:34:47 lukav-desktop sshd\[30882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.79.154.104 Dec 25 09:34:49 lukav-desktop sshd\[30882\]: Failed password for invalid user 18607 from 103.79.154.104 port 38908 ssh2 |
2019-12-25 16:36:46 |
| 46.38.144.57 | attackspam | Dec 25 09:28:25 relay postfix/smtpd\[18649\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 25 09:29:34 relay postfix/smtpd\[28262\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 25 09:29:52 relay postfix/smtpd\[27778\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 25 09:31:03 relay postfix/smtpd\[20202\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 25 09:31:22 relay postfix/smtpd\[27779\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-12-25 16:34:17 |
| 42.117.120.198 | attack | Unauthorized connection attempt detected from IP address 42.117.120.198 to port 445 |
2019-12-25 16:40:04 |
| 45.224.105.143 | attackspam | [munged]::80 45.224.105.143 - - [25/Dec/2019:07:26:47 +0100] "POST /[munged]: HTTP/1.1" 200 7111 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 45.224.105.143 - - [25/Dec/2019:07:26:48 +0100] "POST /[munged]: HTTP/1.1" 200 7106 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 45.224.105.143 - - [25/Dec/2019:07:26:50 +0100] "POST /[munged]: HTTP/1.1" 200 7114 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 45.224.105.143 - - [25/Dec/2019:07:26:51 +0100] "POST /[munged]: HTTP/1.1" 200 7110 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 45.224.105.143 - - [25/Dec/2019:07:26:52 +0100] "POST /[munged]: HTTP/1.1" 200 7110 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 45.224.105.143 - - [25/Dec/2019:07:26:53 |
2019-12-25 16:47:41 |
| 222.186.180.41 | attackspam | Dec 25 09:35:58 herz-der-gamer sshd[11334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root Dec 25 09:36:00 herz-der-gamer sshd[11334]: Failed password for root from 222.186.180.41 port 46708 ssh2 ... |
2019-12-25 16:44:06 |
| 37.187.16.30 | attack | Dec 25 06:49:55 XXXXXX sshd[47631]: Invalid user flonory from 37.187.16.30 port 38740 |
2019-12-25 16:48:20 |
| 218.92.0.164 | attackbotsspam | SSH Brute Force, server-1 sshd[4493]: Failed password for root from 218.92.0.164 port 43184 ssh2 |
2019-12-25 16:40:18 |
| 113.125.26.101 | attackbotsspam | Dec 25 07:23:49 dev0-dcde-rnet sshd[22150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.26.101 Dec 25 07:23:51 dev0-dcde-rnet sshd[22150]: Failed password for invalid user kasutaja from 113.125.26.101 port 49460 ssh2 Dec 25 07:27:30 dev0-dcde-rnet sshd[22173]: Failed password for root from 113.125.26.101 port 48630 ssh2 |
2019-12-25 16:29:15 |