城市(city): unknown
省份(region): unknown
国家(country): Greece
运营商(isp): Otenet
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | Autoban 94.66.56.52 AUTH/CONNECT |
2019-11-05 05:09:35 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 94.66.56.67 | attackbots | Automatic report - Port Scan |
2019-11-24 09:55:15 |
| 94.66.56.21 | attackbotsspam | Lines containing failures of 94.66.56.21 Oct 30 04:44:27 shared03 postfix/smtpd[27536]: connect from ppp-94-66-56-21.home.otenet.gr[94.66.56.21] Oct 30 04:44:36 shared03 policyd-spf[29686]: prepend Received-SPF: Softfail (mailfrom) identhostnamey=mailfrom; client-ip=94.66.56.21; helo=cret64.static.otenet.gr; envelope-from=x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=94.66.56.21 |
2019-10-30 16:39:42 |
| 94.66.56.87 | attackbotsspam | 2019-06-21 13:31:08 1heHl4-00037t-Kb SMTP connection from ppp-94-66-56-87.home.otenet.gr \[94.66.56.87\]:60054 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-21 13:31:16 1heHlC-000382-4X SMTP connection from ppp-94-66-56-87.home.otenet.gr \[94.66.56.87\]:55921 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-21 13:31:23 1heHlJ-00038O-9n SMTP connection from ppp-94-66-56-87.home.otenet.gr \[94.66.56.87\]:42157 I=\[193.107.88.166\]:25 closed by DROP in ACL ... |
2019-10-24 20:33:45 |
| 94.66.56.215 | attack | 2019-10-21 x@x 2019-10-21 21:40:41 unexpected disconnection while reading SMTP command from ppp-94-66-56-215.home.otenet.gr [94.66.56.215]:58633 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=94.66.56.215 |
2019-10-22 06:22:44 |
| 94.66.56.250 | attackspam | Jul 28 07:45:59 our-server-hostname postfix/smtpd[18322]: connect from unknown[94.66.56.250] Jul x@x Jul x@x Jul 28 07:46:06 our-server-hostname postfix/smtpd[18322]: lost connection after DATA from unknown[94.66.56.250] Jul 28 07:46:06 our-server-hostname postfix/smtpd[18322]: disconnect from unknown[94.66.56.250] Jul 28 08:18:14 our-server-hostname postfix/smtpd[11331]: connect from unknown[94.66.56.250] Jul x@x Jul x@x Jul 28 08:18:27 our-server-hostname postfix/smtpd[11331]: lost connection after DATA from unknown[94.66.56.250] Jul 28 08:18:27 our-server-hostname postfix/smtpd[11331]: disconnect from unknown[94.66.56.250] Jul 28 20:37:41 our-server-hostname postfix/smtpd[12648]: connect from unknown[94.66.56.250] Jul x@x Jul x@x Jul 28 20:37:47 our-server-hostname postfix/smtpd[12648]: lost connection after DATA from unknown[94.66.56.250] Jul 28 20:37:47 our-server-hostname postfix/smtpd[12648]: disconnect from unknown[94.66.56.250] Jul 28 20:42:44 our-server-hostna........ ------------------------------- |
2019-07-29 01:01:02 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.66.56.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5350
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.66.56.52. IN A
;; AUTHORITY SECTION:
. 3593 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019080401 1800 900 604800 86400
;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 05 05:27:44 CST 2019
;; MSG SIZE rcvd: 11552.56.66.94.in-addr.arpa domain name pointer ppp-94-66-56-52.home.otenet.gr.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
52.56.66.94.in-addr.arpa name = ppp-94-66-56-52.home.otenet.gr.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 120.7.41.177 | attackbotsspam | Brute force blocker - service: proftpd1 - aantal: 28 - Wed Jun 6 04:10:14 2018 |
2020-02-24 05:25:13 |
| 212.22.67.110 | attackspam | Invalid user teamspeak from 212.22.67.110 port 59032 |
2020-02-24 05:06:47 |
| 146.66.244.246 | attackbotsspam | Feb 23 06:41:31 php1 sshd\[22058\]: Invalid user tssuser from 146.66.244.246 Feb 23 06:41:31 php1 sshd\[22058\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 Feb 23 06:41:33 php1 sshd\[22058\]: Failed password for invalid user tssuser from 146.66.244.246 port 42756 ssh2 Feb 23 06:45:09 php1 sshd\[22375\]: Invalid user ubuntu from 146.66.244.246 Feb 23 06:45:09 php1 sshd\[22375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 |
2020-02-24 05:10:39 |
| 83.205.46.31 | attack | Invalid user sundapeng from 83.205.46.31 port 34550 |
2020-02-24 05:31:43 |
| 125.89.48.140 | attackspam | Brute force blocker - service: proftpd1 - aantal: 37 - Fri Jun 8 16:05:14 2018 |
2020-02-24 05:01:57 |
| 156.62.140.124 | attack | Feb 22 04:20:15 reporting5 sshd[1866]: Invalid user test from 156.62.140.124 Feb 22 04:20:15 reporting5 sshd[1866]: Failed password for invalid user test from 156.62.140.124 port 49404 ssh2 Feb 22 04:25:28 reporting5 sshd[4109]: Invalid user dev from 156.62.140.124 Feb 22 04:25:28 reporting5 sshd[4109]: Failed password for invalid user dev from 156.62.140.124 port 48416 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=156.62.140.124 |
2020-02-24 05:09:01 |
| 83.137.53.241 | attackbots | Feb 23 22:10:56 debian-2gb-nbg1-2 kernel: \[4751459.019766\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.137.53.241 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=42221 PROTO=TCP SPT=54730 DPT=30566 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-02-24 05:12:52 |
| 58.245.250.32 | attackbots | Brute force blocker - service: proftpd1 - aantal: 30 - Thu Jun 7 14:00:20 2018 |
2020-02-24 05:08:01 |
| 104.244.78.197 | attack | k+ssh-bruteforce |
2020-02-24 05:09:21 |
| 51.38.134.204 | attackspambots | Invalid user narciso from 51.38.134.204 port 49082 |
2020-02-24 05:08:30 |
| 186.153.138.2 | attackbots | Invalid user dev from 186.153.138.2 port 40766 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.153.138.2 Failed password for invalid user dev from 186.153.138.2 port 40766 ssh2 Invalid user cshu from 186.153.138.2 port 60960 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.153.138.2 |
2020-02-24 04:57:11 |
| 222.188.30.76 | attackspam | Brute force blocker - service: proftpd1 - aantal: 155 - Thu Jun 7 04:15:16 2018 |
2020-02-24 05:16:53 |
| 187.112.170.168 | attackbotsspam | Automatic report - Port Scan Attack |
2020-02-24 05:22:09 |
| 177.92.16.186 | attack | Feb 23 06:27:58 hanapaa sshd\[30919\]: Invalid user !Qaz@Wsx from 177.92.16.186 Feb 23 06:27:58 hanapaa sshd\[30919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.92.16.186 Feb 23 06:28:00 hanapaa sshd\[30919\]: Failed password for invalid user !Qaz@Wsx from 177.92.16.186 port 18341 ssh2 Feb 23 06:31:54 hanapaa sshd\[31210\]: Invalid user ansible from 177.92.16.186 Feb 23 06:31:54 hanapaa sshd\[31210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.92.16.186 |
2020-02-24 05:28:07 |
| 108.83.65.54 | attackspam | *Port Scan* detected from 108.83.65.54 (US/United States/108-83-65-54.lightspeed.miamfl.sbcglobal.net). 4 hits in the last 165 seconds |
2020-02-24 05:26:25 |