城市(city): unknown
省份(region): unknown
国家(country): Czechia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.241.97.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25979
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;94.241.97.242. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400
;; Query time: 164 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 04:48:19 CST 2025
;; MSG SIZE rcvd: 106242.97.241.94.in-addr.arpa domain name pointer 242.97.241.94.client.nordic.tel.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
242.97.241.94.in-addr.arpa name = 242.97.241.94.client.nordic.tel.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 212.129.3.50 | attackspam | 212.129.3.50 - - [15/Aug/2020:09:34:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1949 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.129.3.50 - - [15/Aug/2020:09:34:03 +0100] "POST /wp-login.php HTTP/1.1" 200 1970 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.129.3.50 - - [15/Aug/2020:09:34:03 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-15 16:59:12 |
| 167.172.98.89 | attack | frenzy |
2020-08-15 16:39:36 |
| 103.25.132.176 | attackbots | Email SMTP authentication failure |
2020-08-15 17:10:25 |
| 31.220.3.104 | attackbotsspam | /wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php |
2020-08-15 16:49:15 |
| 192.162.99.214 | attack | 2020-08-14 20:13:18 Unauthorized connection attempt to SMTP |
2020-08-15 17:15:23 |
| 178.254.149.30 | attackspambots | Aug 15 00:34:58 mail.srvfarm.net postfix/smtps/smtpd[908454]: warning: unknown[178.254.149.30]: SASL PLAIN authentication failed: Aug 15 00:34:58 mail.srvfarm.net postfix/smtps/smtpd[908454]: lost connection after AUTH from unknown[178.254.149.30] Aug 15 00:36:25 mail.srvfarm.net postfix/smtps/smtpd[908976]: warning: unknown[178.254.149.30]: SASL PLAIN authentication failed: Aug 15 00:36:25 mail.srvfarm.net postfix/smtps/smtpd[908976]: lost connection after AUTH from unknown[178.254.149.30] Aug 15 00:37:05 mail.srvfarm.net postfix/smtps/smtpd[910045]: warning: unknown[178.254.149.30]: SASL PLAIN authentication failed: |
2020-08-15 17:05:52 |
| 196.52.43.66 | attack |
|
2020-08-15 16:41:17 |
| 20.44.229.142 | attack | Aug 15 04:14:22 serwer sshd\[16536\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.44.229.142 user=root Aug 15 04:14:24 serwer sshd\[16536\]: Failed password for root from 20.44.229.142 port 53154 ssh2 Aug 15 04:23:40 serwer sshd\[21619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.44.229.142 user=root ... |
2020-08-15 16:45:03 |
| 125.220.213.225 | attack | Multiple SSH authentication failures from 125.220.213.225 |
2020-08-15 16:55:43 |
| 177.87.253.120 | attack | Aug 15 02:52:34 mail.srvfarm.net postfix/smtpd[972891]: warning: unknown[177.87.253.120]: SASL PLAIN authentication failed: Aug 15 02:52:35 mail.srvfarm.net postfix/smtpd[972891]: lost connection after AUTH from unknown[177.87.253.120] Aug 15 02:52:40 mail.srvfarm.net postfix/smtpd[970729]: warning: unknown[177.87.253.120]: SASL PLAIN authentication failed: Aug 15 02:52:41 mail.srvfarm.net postfix/smtpd[970729]: lost connection after AUTH from unknown[177.87.253.120] Aug 15 02:57:12 mail.srvfarm.net postfix/smtpd[972858]: warning: unknown[177.87.253.120]: SASL PLAIN authentication failed: |
2020-08-15 17:06:31 |
| 14.138.208.64 | attack | Automatic report - Port Scan Attack |
2020-08-15 17:00:53 |
| 191.246.229.172 | attack | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-08-15 16:40:24 |
| 31.220.3.108 | attackbotsspam | Aug 15 09:50:10 db sshd[24091]: User root from 31.220.3.108 not allowed because none of user's groups are listed in AllowGroups ... |
2020-08-15 16:58:02 |
| 190.110.35.131 | attack | Aug 15 00:09:20 mail.srvfarm.net postfix/smtpd[848719]: warning: unknown[190.110.35.131]: SASL PLAIN authentication failed: Aug 15 00:09:20 mail.srvfarm.net postfix/smtpd[848719]: lost connection after AUTH from unknown[190.110.35.131] Aug 15 00:15:33 mail.srvfarm.net postfix/smtpd[741824]: warning: unknown[190.110.35.131]: SASL PLAIN authentication failed: Aug 15 00:15:33 mail.srvfarm.net postfix/smtpd[741824]: lost connection after AUTH from unknown[190.110.35.131] Aug 15 00:16:15 mail.srvfarm.net postfix/smtps/smtpd[739406]: warning: unknown[190.110.35.131]: SASL PLAIN authentication failed: |
2020-08-15 17:04:07 |
| 111.229.85.222 | attackbots | Aug 15 05:44:51 serwer sshd\[13483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.85.222 user=root Aug 15 05:44:54 serwer sshd\[13483\]: Failed password for root from 111.229.85.222 port 41514 ssh2 Aug 15 05:47:41 serwer sshd\[15671\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.85.222 user=root ... |
2020-08-15 16:49:43 |