城市(city): unknown
省份(region): unknown
国家(country): Thailand
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.120.40.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61287
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;124.120.40.249. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 17:31:10 CST 2025
;; MSG SIZE rcvd: 107249.40.120.124.in-addr.arpa domain name pointer ppp-124-120-40-249.revip2.asianet.co.th.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
249.40.120.124.in-addr.arpa name = ppp-124-120-40-249.revip2.asianet.co.th.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.133.99.2 | attack | Mar 17 00:30:25 mailserver postfix/smtps/smtpd[42522]: connect from unknown[45.133.99.2] Mar 17 00:30:28 mailserver dovecot: auth-worker(42520): sql([hidden],45.133.99.2): unknown user Mar 17 00:30:30 mailserver postfix/smtps/smtpd[42522]: warning: unknown[45.133.99.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 17 00:30:30 mailserver postfix/smtps/smtpd[42522]: lost connection after AUTH from unknown[45.133.99.2] Mar 17 00:30:30 mailserver postfix/smtps/smtpd[42522]: disconnect from unknown[45.133.99.2] Mar 17 00:30:30 mailserver postfix/smtps/smtpd[42522]: connect from unknown[45.133.99.2] Mar 17 00:30:37 mailserver postfix/smtps/smtpd[42554]: connect from unknown[45.133.99.2] Mar 17 00:30:37 mailserver postfix/smtps/smtpd[42522]: lost connection after AUTH from unknown[45.133.99.2] Mar 17 00:30:37 mailserver postfix/smtps/smtpd[42522]: disconnect from unknown[45.133.99.2] |
2020-03-17 07:38:38 |
| 182.75.139.26 | attackbots | $f2bV_matches |
2020-03-17 07:24:12 |
| 201.31.49.26 | attackbotsspam | Unauthorised access (Mar 16) SRC=201.31.49.26 LEN=52 TTL=119 ID=20695 DF TCP DPT=445 WINDOW=8192 SYN |
2020-03-17 07:23:12 |
| 62.234.86.83 | attack | Invalid user pai from 62.234.86.83 port 41793 |
2020-03-17 07:21:58 |
| 88.157.229.58 | attack | Mar 16 23:56:35 sd-53420 sshd\[18997\]: User root from 88.157.229.58 not allowed because none of user's groups are listed in AllowGroups Mar 16 23:56:35 sd-53420 sshd\[18997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.157.229.58 user=root Mar 16 23:56:37 sd-53420 sshd\[18997\]: Failed password for invalid user root from 88.157.229.58 port 56412 ssh2 Mar 17 00:03:23 sd-53420 sshd\[21057\]: User root from 88.157.229.58 not allowed because none of user's groups are listed in AllowGroups Mar 17 00:03:23 sd-53420 sshd\[21057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.157.229.58 user=root ... |
2020-03-17 07:18:34 |
| 200.122.209.46 | attackbotsspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/200.122.209.46/ CO - 1H : (10) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CO NAME ASN : ASN27805 IP : 200.122.209.46 CIDR : 200.122.192.0/19 PREFIX COUNT : 52 UNIQUE IP COUNT : 2105088 ATTACKS DETECTED ASN27805 : 1H - 3 3H - 3 6H - 3 12H - 7 24H - 8 DateTime : 2020-03-16 15:35:17 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery |
2020-03-17 07:08:19 |
| 190.13.173.67 | attackspam | Mar 17 05:55:39 webhost01 sshd[7670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.13.173.67 Mar 17 05:55:41 webhost01 sshd[7670]: Failed password for invalid user squid from 190.13.173.67 port 60648 ssh2 ... |
2020-03-17 07:26:16 |
| 45.171.23.246 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 16-03-2020 14:35:17. |
2020-03-17 07:09:27 |
| 121.46.27.219 | attack | 2020-03-16T22:35:09.312529jannga.de sshd[25568]: Failed password for root from 121.46.27.219 port 40304 ssh2 2020-03-16T22:42:22.293347jannga.de sshd[26019]: Invalid user minecraft from 121.46.27.219 port 42752 ... |
2020-03-17 07:02:52 |
| 180.180.123.227 | attackspambots | Mar 16 15:35:29 debian-2gb-nbg1-2 kernel: \[6628449.323169\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.180.123.227 DST=195.201.40.59 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=12699 DF PROTO=TCP SPT=56685 DPT=14389 WINDOW=29200 RES=0x00 SYN URGP=0 |
2020-03-17 07:00:46 |
| 202.134.61.41 | attackspambots | IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking. |
2020-03-17 07:24:34 |
| 39.38.236.240 | attack | 39.38.236.240 - - \[16/Mar/2020:07:34:33 -0700\] "POST /index.php/admin HTTP/1.1" 404 2040739.38.236.240 - - \[16/Mar/2020:07:34:34 -0700\] "POST /index.php/admin/index/ HTTP/1.1" 404 2043539.38.236.240 - - \[16/Mar/2020:07:34:34 -0700\] "POST /index.php/admin/sales_order/ HTTP/1.1" 404 20459 ... |
2020-03-17 07:33:03 |
| 175.173.169.73 | attack | Telnet Server BruteForce Attack |
2020-03-17 07:02:21 |
| 49.149.66.146 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 16-03-2020 14:35:17. |
2020-03-17 07:08:53 |
| 202.88.252.53 | attack | SSH Invalid Login |
2020-03-17 07:04:36 |