城市(city): unknown
省份(region): unknown
国家(country): None
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.41.243.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9998
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;125.41.243.94. IN A
;; AUTHORITY SECTION:
. 509 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 04:02:20 CST 2022
;; MSG SIZE rcvd: 106
94.243.41.125.in-addr.arpa domain name pointer hn.kd.ny.adsl.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
94.243.41.125.in-addr.arpa name = hn.kd.ny.adsl.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.55.145.31 | attackbots | Jun 3 15:43:44 server1 sshd\[9285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.145.31 user=root Jun 3 15:43:47 server1 sshd\[9285\]: Failed password for root from 45.55.145.31 port 54907 ssh2 Jun 3 15:47:06 server1 sshd\[10339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.145.31 user=root Jun 3 15:47:08 server1 sshd\[10339\]: Failed password for root from 45.55.145.31 port 57015 ssh2 Jun 3 15:50:22 server1 sshd\[11375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.145.31 user=root ... |
2020-06-04 06:02:09 |
| 182.74.25.246 | attack | SASL PLAIN auth failed: ruser=... |
2020-06-04 06:15:50 |
| 177.40.248.105 | attackbots | xmlrpc attack |
2020-06-04 06:30:08 |
| 177.12.205.143 | attackbots | Honeypot attack, port: 445, PTR: PTR record not found |
2020-06-04 06:14:16 |
| 82.118.242.107 | attackbots | Jun 3 23:49:49 vps339862 sshd\[14520\]: User root from 82.118.242.107 not allowed because not listed in AllowUsers Jun 3 23:50:15 vps339862 sshd\[14522\]: User root from 82.118.242.107 not allowed because not listed in AllowUsers Jun 3 23:51:23 vps339862 sshd\[14538\]: User root from 82.118.242.107 not allowed because not listed in AllowUsers Jun 3 23:51:40 vps339862 sshd\[14540\]: User root from 82.118.242.107 not allowed because not listed in AllowUsers ... |
2020-06-04 06:01:04 |
| 109.236.60.42 | attackspam | SmallBizIT.US 5 packets to udp(5060) |
2020-06-04 06:23:41 |
| 113.16.192.84 | attackbotsspam | Jun 3 13:53:18 mockhub sshd[8228]: Failed password for root from 113.16.192.84 port 35699 ssh2 ... |
2020-06-04 06:25:42 |
| 116.196.73.159 | attack | Jun 3 22:14:18 host sshd[1723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.73.159 user=root Jun 3 22:14:20 host sshd[1723]: Failed password for root from 116.196.73.159 port 35494 ssh2 ... |
2020-06-04 06:11:34 |
| 37.187.205.244 | attack | $f2bV_matches |
2020-06-04 06:24:45 |
| 167.99.66.158 | attackbotsspam | Jun 3 16:14:25 mail sshd\[47928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.158 user=root ... |
2020-06-04 06:04:11 |
| 85.15.219.229 | attackbots | SASL PLAIN auth failed: ruser=... |
2020-06-04 06:26:54 |
| 158.69.123.134 | attackbots | Jun 4 04:14:11 bacztwo sshd[10763]: Invalid user ftpuser from 158.69.123.134 port 45874 Jun 4 04:14:11 bacztwo sshd[10767]: Invalid user oracle from 158.69.123.134 port 47150 Jun 4 04:14:11 bacztwo sshd[10773]: Invalid user git from 158.69.123.134 port 46512 Jun 4 04:14:12 bacztwo sshd[11315]: Invalid user ftpuser from 158.69.123.134 port 48426 Jun 4 04:14:14 bacztwo sshd[11749]: Invalid user oracle from 158.69.123.134 port 49702 Jun 4 04:14:15 bacztwo sshd[11873]: Invalid user test from 158.69.123.134 port 50340 Jun 4 04:14:16 bacztwo sshd[11963]: Invalid user ubuntu from 158.69.123.134 port 50978 Jun 4 04:14:17 bacztwo sshd[12061]: Invalid user centos from 158.69.123.134 port 51616 Jun 4 04:14:17 bacztwo sshd[12121]: Invalid user redis from 158.69.123.134 port 52254 Jun 4 04:14:19 bacztwo sshd[12253]: Invalid user admin from 158.69.123.134 port 53530 Jun 4 04:14:21 bacztwo sshd[12472]: Invalid user hadoop from 158.69.123.134 port 54806 Jun 4 04:14:22 bacztwo sshd[12863]: ... |
2020-06-04 06:07:13 |
| 66.249.68.16 | attackbots | $f2bV_matches |
2020-06-04 05:57:43 |
| 194.28.57.30 | attackbotsspam | Jun 3 23:14:04 debian kernel: [117808.261822] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=194.28.57.30 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=50603 PROTO=TCP SPT=26530 DPT=23 WINDOW=42106 RES=0x00 SYN URGP=0 |
2020-06-04 06:31:53 |
| 220.135.54.136 | attack | Honeypot attack, port: 81, PTR: 220-135-54-136.HINET-IP.hinet.net. |
2020-06-04 06:29:31 |