城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.193.214.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40752
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;66.193.214.81. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 19:27:09 CST 2025
;; MSG SIZE rcvd: 106
81.214.193.66.in-addr.arpa domain name pointer 66-193-214-81.static.ctl.one.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
81.214.193.66.in-addr.arpa name = 66-193-214-81.static.ctl.one.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 64.227.22.214 | attackspam | DATE:2020-09-07 04:44:13, IP:64.227.22.214, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2020-09-07 14:12:53 |
| 210.55.3.250 | attack | Sep 6 21:47:31 abendstille sshd\[6417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.55.3.250 user=root Sep 6 21:47:33 abendstille sshd\[6417\]: Failed password for root from 210.55.3.250 port 37610 ssh2 Sep 6 21:49:27 abendstille sshd\[8152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.55.3.250 user=root Sep 6 21:49:29 abendstille sshd\[8152\]: Failed password for root from 210.55.3.250 port 36152 ssh2 Sep 6 21:51:25 abendstille sshd\[10030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.55.3.250 user=root ... |
2020-09-07 14:40:32 |
| 142.93.127.173 | attackspam | Sep 7 08:22:43 serwer sshd\[17677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.127.173 user=root Sep 7 08:22:45 serwer sshd\[17677\]: Failed password for root from 142.93.127.173 port 42980 ssh2 Sep 7 08:29:39 serwer sshd\[18364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.127.173 user=root ... |
2020-09-07 14:30:09 |
| 43.251.97.99 | attack | Unauthorized connection attempt from IP address 43.251.97.99 on Port 445(SMB) |
2020-09-07 14:36:05 |
| 180.249.183.191 | attackbotsspam | 1599411138 - 09/06/2020 18:52:18 Host: 180.249.183.191/180.249.183.191 Port: 445 TCP Blocked |
2020-09-07 14:26:13 |
| 5.188.86.168 | attackbotsspam | Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-07T05:55:17Z |
2020-09-07 14:18:13 |
| 92.222.74.255 | attackspam | *Port Scan* detected from 92.222.74.255 (FR/France/Grand Est/Strasbourg/255.ip-92-222-74.eu). 4 hits in the last 271 seconds |
2020-09-07 14:26:43 |
| 222.186.175.215 | attack | Sep 7 08:12:00 dev0-dcde-rnet sshd[22579]: Failed password for root from 222.186.175.215 port 3844 ssh2 Sep 7 08:12:12 dev0-dcde-rnet sshd[22579]: error: maximum authentication attempts exceeded for root from 222.186.175.215 port 3844 ssh2 [preauth] Sep 7 08:12:18 dev0-dcde-rnet sshd[22581]: Failed password for root from 222.186.175.215 port 14486 ssh2 |
2020-09-07 14:12:35 |
| 45.142.120.121 | attackspambots | Sep 7 08:21:21 relay postfix/smtpd\[21984\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 08:22:06 relay postfix/smtpd\[18489\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 08:22:43 relay postfix/smtpd\[21984\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 08:23:30 relay postfix/smtpd\[22053\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 08:24:11 relay postfix/smtpd\[20974\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-09-07 14:31:44 |
| 185.89.65.41 | attack | Autoban 185.89.65.41 AUTH/CONNECT |
2020-09-07 14:45:21 |
| 202.51.74.92 | attackbotsspam | SSH auth scanning - multiple failed logins |
2020-09-07 14:22:45 |
| 5.102.4.181 | attackspam | Port Scan: TCP/443 |
2020-09-07 14:35:06 |
| 106.12.38.231 | attackbots | Sep 6 20:07:29 sachi sshd\[24363\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.231 user=root Sep 6 20:07:31 sachi sshd\[24363\]: Failed password for root from 106.12.38.231 port 45422 ssh2 Sep 6 20:11:21 sachi sshd\[24724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.231 user=root Sep 6 20:11:23 sachi sshd\[24724\]: Failed password for root from 106.12.38.231 port 33502 ssh2 Sep 6 20:15:05 sachi sshd\[24984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.231 user=root |
2020-09-07 14:43:03 |
| 121.52.41.26 | attack | bruteforce detected |
2020-09-07 14:40:13 |
| 109.73.12.36 | attackspambots | 109.73.12.36 (RU/Russia/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 7 02:25:50 server4 sshd[12561]: Failed password for root from 109.73.12.36 port 32922 ssh2 Sep 7 02:26:40 server4 sshd[13011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.115.224 user=root Sep 7 02:26:04 server4 sshd[12591]: Failed password for root from 122.51.154.136 port 57468 ssh2 Sep 7 02:26:06 server4 sshd[12628]: Failed password for root from 51.91.102.99 port 49634 ssh2 Sep 7 02:26:02 server4 sshd[12591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.154.136 user=root Sep 7 02:25:48 server4 sshd[12561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.73.12.36 user=root IP Addresses Blocked: |
2020-09-07 14:30:33 |