城市(city): Indianapolis
省份(region): Indiana
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): Comcast Cable Communications, LLC
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 96.94.12.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54720
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;96.94.12.12. IN A
;; AUTHORITY SECTION:
. 2103 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019080502 1800 900 604800 86400
;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 06 03:48:56 CST 2019
;; MSG SIZE rcvd: 11512.12.94.96.in-addr.arpa domain name pointer 96-94-12-12-static.hfc.comcastbusiness.net.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
12.12.94.96.in-addr.arpa name = 96-94-12-12-static.hfc.comcastbusiness.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 27.148.190.100 | attack | 2020-09-08T18:55:16.668966lavrinenko.info sshd[18140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.148.190.100 user=root 2020-09-08T18:55:17.814087lavrinenko.info sshd[18140]: Failed password for root from 27.148.190.100 port 57212 ssh2 2020-09-08T18:57:31.622374lavrinenko.info sshd[18197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.148.190.100 user=root 2020-09-08T18:57:33.635149lavrinenko.info sshd[18197]: Failed password for root from 27.148.190.100 port 52762 ssh2 2020-09-08T18:59:59.280199lavrinenko.info sshd[18264]: Invalid user ftpuser from 27.148.190.100 port 48312 ... |
2020-09-09 00:06:33 |
| 185.108.182.94 | attackbotsspam | 2020-09-08T08:55:58.526719suse-nuc sshd[23237]: User root from 185.108.182.94 not allowed because listed in DenyUsers ... |
2020-09-09 00:02:33 |
| 123.59.62.57 | attackspam | 2020-09-07 UTC: (46x) - appldemo,cacti,elson,justin,root(37x),rpcuser,support,teamspeak3,torrent,ts3bot |
2020-09-09 00:10:53 |
| 110.49.71.249 | attackbots | Aug 11 00:32:04 server sshd[8685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.249 user=root Aug 11 00:32:06 server sshd[8685]: Failed password for invalid user root from 110.49.71.249 port 59883 ssh2 Aug 11 00:37:22 server sshd[8874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.249 user=root Aug 11 00:37:23 server sshd[8874]: Failed password for invalid user root from 110.49.71.249 port 42996 ssh2 |
2020-09-09 00:04:13 |
| 103.137.89.74 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-09-08 23:41:55 |
| 117.69.159.58 | attack | Sep 7 20:06:21 srv01 postfix/smtpd\[19167\]: warning: unknown\[117.69.159.58\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:06:32 srv01 postfix/smtpd\[19167\]: warning: unknown\[117.69.159.58\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:06:48 srv01 postfix/smtpd\[19167\]: warning: unknown\[117.69.159.58\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:07:06 srv01 postfix/smtpd\[19167\]: warning: unknown\[117.69.159.58\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:07:17 srv01 postfix/smtpd\[19167\]: warning: unknown\[117.69.159.58\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-09-09 00:01:00 |
| 123.172.249.226 | attackbotsspam | Brute forcing email accounts |
2020-09-09 00:05:50 |
| 221.179.87.165 | attackspam | Brute-force attempt banned |
2020-09-08 23:50:43 |
| 189.212.120.138 | attackbotsspam | Automatic report - Port Scan Attack |
2020-09-08 23:57:05 |
| 51.77.109.98 | attack | Sep 8 18:08:13 abendstille sshd\[20122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.109.98 user=root Sep 8 18:08:15 abendstille sshd\[20122\]: Failed password for root from 51.77.109.98 port 51584 ssh2 Sep 8 18:11:52 abendstille sshd\[23400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.109.98 user=root Sep 8 18:11:55 abendstille sshd\[23400\]: Failed password for root from 51.77.109.98 port 38518 ssh2 Sep 8 18:15:25 abendstille sshd\[26701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.109.98 user=root ... |
2020-09-09 00:19:52 |
| 138.197.213.134 | attack | Lines containing failures of 138.197.213.134 (max 1000) Sep 7 12:31:44 localhost sshd[7999]: User r.r from 138.197.213.134 not allowed because listed in DenyUsers Sep 7 12:31:44 localhost sshd[7999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.213.134 user=r.r Sep 7 12:31:46 localhost sshd[7999]: Failed password for invalid user r.r from 138.197.213.134 port 37984 ssh2 Sep 7 12:31:48 localhost sshd[7999]: Received disconnect from 138.197.213.134 port 37984:11: Bye Bye [preauth] Sep 7 12:31:48 localhost sshd[7999]: Disconnected from invalid user r.r 138.197.213.134 port 37984 [preauth] Sep 7 12:34:24 localhost sshd[9325]: User r.r from 138.197.213.134 not allowed because listed in DenyUsers Sep 7 12:34:24 localhost sshd[9325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.213.134 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.197.213.13 |
2020-09-08 23:49:25 |
| 222.212.171.237 | attackspam | (smtpauth) Failed SMTP AUTH login from 222.212.171.237 (CN/China/237.171.212.222.broad.cd.sc.dynamic.163data.com.cn): 5 in the last 3600 secs |
2020-09-09 00:07:29 |
| 94.102.49.159 | attackspam | [MK-Root1] Blocked by UFW |
2020-09-09 00:21:18 |
| 182.150.57.34 | attackbotsspam | Sep 8 16:13:46 ip106 sshd[4746]: Failed password for root from 182.150.57.34 port 59416 ssh2 ... |
2020-09-09 00:05:27 |
| 14.248.85.156 | attackbots | Honeypot attack, port: 445, PTR: static.vnpt.vn. |
2020-09-09 00:24:49 |