城市(city): unknown
省份(region): unknown
国家(country): Thailand
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.125.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21977
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.207.125.106. IN A
;; AUTHORITY SECTION:
. 446 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400
;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:50:41 CST 2022
;; MSG SIZE rcvd: 107
106.125.207.14.in-addr.arpa domain name pointer mx-ll-14.207.125-106.dynamic.3bb.co.th.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
106.125.207.14.in-addr.arpa name = mx-ll-14.207.125-106.dynamic.3bb.co.th.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 180.76.148.1 | attackbots | Aug 2 23:21:03 lukav-desktop sshd\[13438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.1 user=root Aug 2 23:21:05 lukav-desktop sshd\[13438\]: Failed password for root from 180.76.148.1 port 43103 ssh2 Aug 2 23:26:04 lukav-desktop sshd\[13475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.1 user=root Aug 2 23:26:05 lukav-desktop sshd\[13475\]: Failed password for root from 180.76.148.1 port 50662 ssh2 Aug 2 23:30:10 lukav-desktop sshd\[13506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.1 user=root |
2020-08-03 04:39:58 |
| 61.177.172.54 | attackbotsspam | Aug 2 22:08:46 sd-69548 sshd[2471465]: Unable to negotiate with 61.177.172.54 port 42918: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Aug 2 23:00:45 sd-69548 sshd[2475111]: Unable to negotiate with 61.177.172.54 port 63446: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ... |
2020-08-03 05:02:39 |
| 180.76.236.5 | attackspam | Aug 2 09:31:26 ns sshd[974]: Connection from 180.76.236.5 port 33232 on 134.119.36.27 port 22 Aug 2 09:31:29 ns sshd[974]: User r.r from 180.76.236.5 not allowed because not listed in AllowUsers Aug 2 09:31:29 ns sshd[974]: Failed password for invalid user r.r from 180.76.236.5 port 33232 ssh2 Aug 2 09:31:29 ns sshd[974]: Received disconnect from 180.76.236.5 port 33232:11: Bye Bye [preauth] Aug 2 09:31:29 ns sshd[974]: Disconnected from 180.76.236.5 port 33232 [preauth] Aug 2 09:49:46 ns sshd[24749]: Connection from 180.76.236.5 port 52926 on 134.119.36.27 port 22 Aug 2 09:49:48 ns sshd[24749]: User r.r from 180.76.236.5 not allowed because not listed in AllowUsers Aug 2 09:49:48 ns sshd[24749]: Failed password for invalid user r.r from 180.76.236.5 port 52926 ssh2 Aug 2 09:49:49 ns sshd[24749]: Received disconnect from 180.76.236.5 port 52926:11: Bye Bye [preauth] Aug 2 09:49:49 ns sshd[24749]: Disconnected from 180.76.236.5 port 52926 [preauth] Aug 2 09:55........ ------------------------------- |
2020-08-03 05:02:02 |
| 130.185.123.140 | attack | Aug 2 22:35:42 OPSO sshd\[14961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.185.123.140 user=root Aug 2 22:35:44 OPSO sshd\[14961\]: Failed password for root from 130.185.123.140 port 41794 ssh2 Aug 2 22:39:17 OPSO sshd\[15487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.185.123.140 user=root Aug 2 22:39:19 OPSO sshd\[15487\]: Failed password for root from 130.185.123.140 port 52430 ssh2 Aug 2 22:42:52 OPSO sshd\[16535\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.185.123.140 user=root |
2020-08-03 04:49:17 |
| 112.111.249.31 | attackspambots | Aug 2 13:48:32 mockhub sshd[28945]: Failed password for root from 112.111.249.31 port 43750 ssh2 ... |
2020-08-03 04:53:53 |
| 193.56.28.160 | attackbotsspam | spam (f2b h2) |
2020-08-03 04:42:35 |
| 218.92.0.250 | attackspambots | Tried sshing with brute force. |
2020-08-03 04:37:25 |
| 222.240.228.75 | attackspam | Aug 2 20:22:20 jumpserver sshd[359878]: Failed password for root from 222.240.228.75 port 48742 ssh2 Aug 2 20:25:03 jumpserver sshd[359898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.240.228.75 user=root Aug 2 20:25:05 jumpserver sshd[359898]: Failed password for root from 222.240.228.75 port 9808 ssh2 ... |
2020-08-03 05:01:15 |
| 61.219.11.153 | attackspambots | 08/02/2020-16:25:20.327508 61.219.11.153 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 63 |
2020-08-03 04:48:05 |
| 61.177.172.128 | attack | Aug 2 23:01:53 * sshd[24605]: Failed password for root from 61.177.172.128 port 46897 ssh2 Aug 2 23:02:06 * sshd[24605]: error: maximum authentication attempts exceeded for root from 61.177.172.128 port 46897 ssh2 [preauth] |
2020-08-03 05:02:18 |
| 207.244.92.6 | attackspambots | 08/02/2020-16:29:39.450307 207.244.92.6 Protocol: 17 ET SCAN Sipvicious Scan |
2020-08-03 04:51:46 |
| 222.186.31.204 | attackspambots | [MK-VM6] SSH login failed |
2020-08-03 04:51:26 |
| 209.97.176.195 | attackbots | Aug 3 04:27:51 scivo sshd[30008]: Invalid user ubnt from 209.97.176.195 Aug 3 04:27:51 scivo sshd[30008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.176.195 Aug 3 04:27:53 scivo sshd[30008]: Failed password for invalid user ubnt from 209.97.176.195 port 57682 ssh2 Aug 3 04:27:53 scivo sshd[30008]: Received disconnect from 209.97.176.195: 11: Bye Bye [preauth] Aug 3 04:27:54 scivo sshd[30010]: Invalid user admin from 209.97.176.195 Aug 3 04:27:54 scivo sshd[30010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.176.195 Aug 3 04:27:56 scivo sshd[30010]: Failed password for invalid user admin from 209.97.176.195 port 36300 ssh2 Aug 3 04:27:56 scivo sshd[30010]: Received disconnect from 209.97.176.195: 11: Bye Bye [preauth] Aug 3 04:27:57 scivo sshd[30012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.176.195 user=........ ------------------------------- |
2020-08-03 05:07:18 |
| 106.54.155.35 | attackspam | "Unauthorized connection attempt on SSHD detected" |
2020-08-03 05:05:34 |
| 112.85.42.178 | attack | Aug 2 22:43:34 santamaria sshd\[30129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Aug 2 22:43:35 santamaria sshd\[30129\]: Failed password for root from 112.85.42.178 port 19677 ssh2 Aug 2 22:43:52 santamaria sshd\[30133\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root ... |
2020-08-03 04:44:09 |