城市(city): unknown
省份(region): unknown
国家(country): Canada
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 99.215.252.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35693
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;99.215.252.42. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025121600 1800 900 604800 86400
;; Query time: 281 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 16 15:10:02 CST 2025
;; MSG SIZE rcvd: 106
Host 42.252.215.99.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 42.252.215.99.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 156.96.45.198 | attack | Aug 1 11:31:07 mail postfix/smtpd[34318]: warning: unknown[156.96.45.198]: SASL LOGIN authentication failed: generic failure Aug 1 11:31:07 mail postfix/smtpd[34318]: warning: unknown[156.96.45.198]: SASL LOGIN authentication failed: generic failure Aug 1 11:31:07 mail postfix/smtpd[34318]: warning: unknown[156.96.45.198]: SASL LOGIN authentication failed: generic failure ... |
2020-08-01 19:54:46 |
| 63.82.54.178 | attackspambots | Aug 1 05:33:17 online-web-1 postfix/smtpd[174090]: connect from help.huzeshoes.com[63.82.54.178] Aug x@x Aug 1 05:33:23 online-web-1 postfix/smtpd[174090]: disconnect from help.huzeshoes.com[63.82.54.178] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Aug 1 05:33:27 online-web-1 postfix/smtpd[174943]: connect from help.huzeshoes.com[63.82.54.178] Aug x@x Aug 1 05:33:32 online-web-1 postfix/smtpd[174943]: disconnect from help.huzeshoes.com[63.82.54.178] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Aug 1 05:36:04 online-web-1 postfix/smtpd[174949]: connect from help.huzeshoes.com[63.82.54.178] Aug x@x Aug 1 05:36:09 online-web-1 postfix/smtpd[174949]: disconnect from help.huzeshoes.com[63.82.54.178] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Aug 1 05:36:09 online-web-1 postfix/smtpd[174943]: connect from help.huzeshoes.com[63.82.54.178] Aug x@x Aug 1 05:36:15 online-web-1 postfix/smtpd[174943]: disconnect from help.huzeshoes......... ------------------------------- |
2020-08-01 19:50:46 |
| 88.201.33.198 | attackspambots | SMB Server BruteForce Attack |
2020-08-01 20:18:18 |
| 208.109.8.138 | attackspambots | Aug 1 06:07:44 b-vps wordpress(gpfans.cz)[2907]: Authentication attempt for unknown user buchtic from 208.109.8.138 ... |
2020-08-01 19:42:23 |
| 128.199.212.194 | attack | CF RAY ID: 5b98e1236f61ddf1 IP Class: noRecord URI: /wp-login.php |
2020-08-01 19:57:13 |
| 52.179.231.206 | attackbots | 28,21-01/01 [bc01/m17] PostRequest-Spammer scoring: Durban01 |
2020-08-01 19:44:20 |
| 142.217.140.186 | attackspambots | Lines containing failures of 142.217.140.186 Jul 28 13:49:28 shared04 sshd[32545]: Invalid user pi from 142.217.140.186 port 35400 Jul 28 13:49:28 shared04 sshd[32545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.217.140.186 Jul 28 13:49:28 shared04 sshd[32547]: Invalid user pi from 142.217.140.186 port 35410 Jul 28 13:49:28 shared04 sshd[32547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.217.140.186 Jul 28 13:49:31 shared04 sshd[32545]: Failed password for invalid user pi from 142.217.140.186 port 35400 ssh2 Jul 28 13:49:31 shared04 sshd[32545]: Connection closed by invalid user pi 142.217.140.186 port 35400 [preauth] Jul 28 13:49:31 shared04 sshd[32547]: Failed password for invalid user pi from 142.217.140.186 port 35410 ssh2 Jul 28 13:49:31 shared04 sshd[32547]: Connection closed by invalid user pi 142.217.140.186 port 35410 [preauth] ........ ----------------------------------------------- https://www.blockl |
2020-08-01 20:01:01 |
| 164.155.93.4 | attackbotsspam | port scan and connect, tcp 1433 (ms-sql-s) |
2020-08-01 19:38:36 |
| 195.206.105.217 | attackspambots | Aug 1 10:10:13 buvik sshd[30078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.206.105.217 Aug 1 10:10:15 buvik sshd[30078]: Failed password for invalid user admin from 195.206.105.217 port 55896 ssh2 Aug 1 10:10:16 buvik sshd[30080]: Invalid user admin from 195.206.105.217 ... |
2020-08-01 19:54:12 |
| 136.33.189.193 | attackspam | Invalid user nabil from 136.33.189.193 port 56726 |
2020-08-01 19:39:53 |
| 106.8.166.243 | attackbots | 2020-08-01 05:46:47 SMTP protocol error in "AUTH LOGIN" H=\(k2LzDDjyI\) \[106.8.166.243\]:5764 I=\[193.107.88.166\]:25 AUTH command used when not advertised 2020-08-01 05:46:49 SMTP protocol error in "AUTH LOGIN" H=\(xu1PtJVT\) \[106.8.166.243\]:5847 I=\[193.107.88.166\]:25 AUTH command used when not advertised 2020-08-01 05:46:50 SMTP protocol error in "AUTH LOGIN" H=\(4ocTkQ9CI\) \[106.8.166.243\]:5993 I=\[193.107.88.166\]:25 AUTH command used when not advertised ... |
2020-08-01 19:39:11 |
| 139.198.122.19 | attackspam | Invalid user ogami from 139.198.122.19 port 47256 |
2020-08-01 20:02:23 |
| 185.221.253.95 | attackbotsspam | Dovecot Invalid User Login Attempt. |
2020-08-01 19:36:48 |
| 94.25.170.254 | attackspam | Unauthorized connection attempt from IP address 94.25.170.254 on Port 445(SMB) |
2020-08-01 20:18:03 |
| 139.59.141.196 | attackbots | 139.59.141.196 - - [01/Aug/2020:12:37:12 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:13 +0200] "POST /wp-login.php HTTP/1.1" 200 1819 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:13 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:14 +0200] "POST /wp-login.php HTTP/1.1" 200 1816 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:14 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:14 +0200] "POST /wp-login.php HTTP/1.1" 200 1818 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ... |
2020-08-01 19:47:41 |