城市(city): unknown
省份(region): unknown
国家(country): Spain
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 84.125.152.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46976
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;84.125.152.242. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012901 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 02:43:52 CST 2025
;; MSG SIZE rcvd: 107
242.152.125.84.in-addr.arpa domain name pointer 84.125.152.242.dyn.user.ono.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
242.152.125.84.in-addr.arpa name = 84.125.152.242.dyn.user.ono.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 185.200.118.50 | attackspambots | 3128/tcp 3389/tcp 1194/udp... [2019-05-08/06-22]19pkt,3pt.(tcp),1pt.(udp) |
2019-06-22 18:29:37 |
| 46.101.240.197 | attackbotsspam | SSH Server BruteForce Attack |
2019-06-22 18:41:15 |
| 189.127.107.167 | attackspambots | proto=tcp . spt=53307 . dpt=25 . (listed on Blocklist de Jun 21) (236) |
2019-06-22 18:49:15 |
| 218.80.251.10 | attack | Jun 22 06:24:56 mail kernel: \[223041.558114\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=218.80.251.10 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=18736 DF PROTO=TCP SPT=63894 DPT=65353 WINDOW=8192 RES=0x00 SYN URGP=0 Jun 22 06:24:59 mail kernel: \[223044.608408\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=218.80.251.10 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=23348 DF PROTO=TCP SPT=63894 DPT=65353 WINDOW=8192 RES=0x00 SYN URGP=0 Jun 22 06:25:05 mail kernel: \[223050.621653\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=218.80.251.10 DST=91.205.173.180 LEN=48 TOS=0x00 PREC=0x00 TTL=52 ID=32178 DF PROTO=TCP SPT=63894 DPT=65353 WINDOW=65535 RES=0x00 SYN URGP=0 |
2019-06-22 18:43:34 |
| 61.173.72.107 | attackspam | TCP port 445 (SMB) attempt blocked by firewall. [2019-06-22 06:23:49] |
2019-06-22 18:55:02 |
| 61.143.138.74 | attackbots | Port scan: Attack repeated for 24 hours |
2019-06-22 18:19:09 |
| 23.152.160.66 | attackbots | firewall-block, port(s): 623/tcp |
2019-06-22 18:16:22 |
| 186.215.11.153 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-06-22 18:27:45 |
| 118.24.89.243 | attack | $f2bV_matches |
2019-06-22 18:38:57 |
| 157.230.163.6 | attackbotsspam | $f2bV_matches |
2019-06-22 19:02:53 |
| 185.220.102.4 | attack | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.102.4 user=root Failed password for root from 185.220.102.4 port 36373 ssh2 Failed password for root from 185.220.102.4 port 36373 ssh2 Failed password for root from 185.220.102.4 port 36373 ssh2 Failed password for root from 185.220.102.4 port 36373 ssh2 |
2019-06-22 18:25:40 |
| 91.61.38.231 | attackspambots | SSH login attempts brute force. |
2019-06-22 18:34:44 |
| 69.158.249.123 | attack | Jun 22 07:23:55 yabzik sshd[13629]: Failed password for root from 69.158.249.123 port 3667 ssh2 Jun 22 07:23:57 yabzik sshd[13629]: Failed password for root from 69.158.249.123 port 3667 ssh2 Jun 22 07:23:59 yabzik sshd[13629]: Failed password for root from 69.158.249.123 port 3667 ssh2 Jun 22 07:24:02 yabzik sshd[13629]: Failed password for root from 69.158.249.123 port 3667 ssh2 |
2019-06-22 19:00:39 |
| 92.242.198.250 | attackspambots | Jun 22 06:20:42 mxgate1 postfix/postscreen[10273]: CONNECT from [92.242.198.250]:60679 to [176.31.12.44]:25 Jun 22 06:20:42 mxgate1 postfix/dnsblog[10315]: addr 92.242.198.250 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 22 06:20:42 mxgate1 postfix/dnsblog[10311]: addr 92.242.198.250 listed by domain zen.spamhaus.org as 127.0.0.3 Jun 22 06:20:42 mxgate1 postfix/dnsblog[10311]: addr 92.242.198.250 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 22 06:20:42 mxgate1 postfix/dnsblog[10312]: addr 92.242.198.250 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 22 06:20:42 mxgate1 postfix/dnsblog[10314]: addr 92.242.198.250 listed by domain bl.spamcop.net as 127.0.0.2 Jun 22 06:20:42 mxgate1 postfix/dnsblog[10313]: addr 92.242.198.250 listed by domain b.barracudacentral.org as 127.0.0.2 Jun 22 06:20:43 mxgate1 postfix/postscreen[10273]: PREGREET 18 after 0.99 from [92.242.198.250]:60679: HELO ijytkek.com Jun 22 06:20:43 mxgate1 postfix/postscreen[10273]: DNSBL ra........ ------------------------------- |
2019-06-22 18:44:41 |
| 86.125.178.205 | attackspambots | Jun 18 07:57:22 our-server-hostname sshd[22234]: reveeclipse mapping checking getaddrinfo for 86-125-178-205.rdsnet.ro [86.125.178.205] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 18 07:57:22 our-server-hostname sshd[22234]: Invalid user bibby from 86.125.178.205 Jun 18 07:57:22 our-server-hostname sshd[22234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.125.178.205 Jun 18 07:57:24 our-server-hostname sshd[22234]: Failed password for invalid user bibby from 86.125.178.205 port 51340 ssh2 Jun 18 08:27:49 our-server-hostname sshd[1267]: reveeclipse mapping checking getaddrinfo for 86-125-178-205.rdsnet.ro [86.125.178.205] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 18 08:27:49 our-server-hostname sshd[1267]: Invalid user spam from 86.125.178.205 Jun 18 08:27:49 our-server-hostname sshd[1267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.125.178.205 Jun 18 08:27:50 our-server-hostname ss........ ------------------------------- |
2019-06-22 18:46:44 |