城市(city): Oslo
省份(region): Oslo County
国家(country): Norway
运营商(isp): Telia
主机名(hostname): unknown
机构(organization): Telia Norge As
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.8.4.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30140
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;89.8.4.80. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019052200 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed May 22 23:36:23 CST 2019
;; MSG SIZE rcvd: 113
80.4.8.89.in-addr.arpa domain name pointer 80-4-8.connect.netcom.no.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
80.4.8.89.in-addr.arpa name = 80-4-8.connect.netcom.no.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 223.71.167.164 | attackspambots | Mar 12 23:48:22 mail postfix/submission/smtpd[91207]: lost connection after UNKNOWN from unknown[223.71.167.164] |
2020-03-13 08:19:52 |
| 174.138.44.201 | attack | 174.138.44.201 - - [12/Mar/2020:22:08:12 +0100] "GET /wp-login.php HTTP/1.1" 200 5459 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 174.138.44.201 - - [12/Mar/2020:22:08:14 +0100] "POST /wp-login.php HTTP/1.1" 200 6358 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 174.138.44.201 - - [12/Mar/2020:22:08:16 +0100] "POST /xmlrpc.php HTTP/1.1" 200 438 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-03-13 08:10:29 |
| 62.234.152.218 | attack | Mar 12 23:10:11 ArkNodeAT sshd\[14224\]: Invalid user lrmagento from 62.234.152.218 Mar 12 23:10:11 ArkNodeAT sshd\[14224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.152.218 Mar 12 23:10:13 ArkNodeAT sshd\[14224\]: Failed password for invalid user lrmagento from 62.234.152.218 port 54599 ssh2 |
2020-03-13 08:27:45 |
| 92.63.194.7 | attackbotsspam | 2020-03-13T01:35:38.925166 sshd[31806]: Invalid user operator from 92.63.194.7 port 37232 2020-03-13T01:35:38.934226 sshd[31806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.7 2020-03-13T01:35:38.925166 sshd[31806]: Invalid user operator from 92.63.194.7 port 37232 2020-03-13T01:35:41.248887 sshd[31806]: Failed password for invalid user operator from 92.63.194.7 port 37232 ssh2 ... |
2020-03-13 08:48:10 |
| 106.12.174.111 | attackspambots | SASL PLAIN auth failed: ruser=... |
2020-03-13 08:37:31 |
| 213.4.31.249 | attackspam | Lines containing failures of 213.4.31.249 Mar 12 12:26:47 nextcloud sshd[25637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.4.31.249 user=r.r Mar 12 12:26:49 nextcloud sshd[25637]: Failed password for r.r from 213.4.31.249 port 46574 ssh2 Mar 12 12:26:49 nextcloud sshd[25637]: Received disconnect from 213.4.31.249 port 46574:11: Bye Bye [preauth] Mar 12 12:26:49 nextcloud sshd[25637]: Disconnected from authenticating user r.r 213.4.31.249 port 46574 [preauth] Mar 12 12:30:55 nextcloud sshd[27859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.4.31.249 user=r.r Mar 12 12:30:57 nextcloud sshd[27859]: Failed password for r.r from 213.4.31.249 port 44788 ssh2 Mar 12 12:30:57 nextcloud sshd[27859]: Received disconnect from 213.4.31.249 port 44788:11: Bye Bye [preauth] Mar 12 12:30:57 nextcloud sshd[27859]: Disconnected from authenticating user r.r 213.4.31.249 port 44788 [preauth]........ ------------------------------ |
2020-03-13 08:14:37 |
| 178.128.101.79 | attackspambots | 178.128.101.79 - - \[12/Mar/2020:23:41:32 +0100\] "POST /wp-login.php HTTP/1.0" 200 6640 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 178.128.101.79 - - \[12/Mar/2020:23:41:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 6453 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 178.128.101.79 - - \[12/Mar/2020:23:41:40 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-03-13 08:27:23 |
| 159.65.183.47 | attack | $f2bV_matches |
2020-03-13 08:15:16 |
| 49.235.41.34 | attackbots | Mar 12 03:48:39 XXX sshd[39633]: Invalid user hduser from 49.235.41.34 port 48040 |
2020-03-13 08:10:58 |
| 206.189.132.8 | attack | (sshd) Failed SSH login from 206.189.132.8 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 12 21:59:00 amsweb01 sshd[5889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.8 user=root Mar 12 21:59:02 amsweb01 sshd[5889]: Failed password for root from 206.189.132.8 port 40090 ssh2 Mar 12 22:05:32 amsweb01 sshd[6462]: Invalid user test from 206.189.132.8 port 35744 Mar 12 22:05:33 amsweb01 sshd[6462]: Failed password for invalid user test from 206.189.132.8 port 35744 ssh2 Mar 12 22:07:08 amsweb01 sshd[6592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.8 user=root |
2020-03-13 08:53:31 |
| 92.63.194.107 | attackbots | 2020-03-13T01:35:31.797678 sshd[31780]: Invalid user admin from 92.63.194.107 port 44367 2020-03-13T01:35:31.806070 sshd[31780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.107 2020-03-13T01:35:31.797678 sshd[31780]: Invalid user admin from 92.63.194.107 port 44367 2020-03-13T01:35:33.493315 sshd[31780]: Failed password for invalid user admin from 92.63.194.107 port 44367 ssh2 ... |
2020-03-13 08:52:42 |
| 186.96.112.77 | attack | 1584047280 - 03/12/2020 22:08:00 Host: 186.96.112.77/186.96.112.77 Port: 445 TCP Blocked |
2020-03-13 08:23:30 |
| 192.144.225.182 | attack | Invalid user student from 192.144.225.182 port 49494 |
2020-03-13 08:35:32 |
| 51.83.78.109 | attack | Mar 13 00:27:15 serwer sshd\[10066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.78.109 user=root Mar 13 00:27:16 serwer sshd\[10066\]: Failed password for root from 51.83.78.109 port 49742 ssh2 Mar 13 00:32:44 serwer sshd\[10560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.78.109 user=root ... |
2020-03-13 08:22:07 |
| 94.158.23.236 | attackbots | B: zzZZzz blocked content access |
2020-03-13 08:12:54 |