城市(city): unknown
省份(region): unknown
国家(country): Canada
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.229.42.108
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20242
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.229.42.108. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020400 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 00:27:12 CST 2025
;; MSG SIZE rcvd: 107Host 108.42.229.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 108.42.229.142.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 218.92.0.212 | attack | Aug 6 08:23:24 localhost sshd[2453318]: Unable to negotiate with 218.92.0.212 port 34774: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ... |
2020-08-06 06:39:40 |
| 194.26.29.12 | attackspambots | Multiport scan : 83 ports scanned 10(x2) 20(x2) 60 70 80 101 123 200 202 303 333 500 606 800 888 909 999 1000 1001 1010 2000 2020 2222 3030 3333 3344 3380 3383 3385 3386 3387 3390(x2) 3393(x2) 3394 3395 3396(x2) 3399(x2) 3400 3401 4000 4004(x2) 4040 4321 4433 4444 5000 5005 5050 5544 5555 5566 6000 6006(x2) 6655 6666(x2) 6677(x2) 7000 7007(x2) 7070 7766 7777 7788 8000 8008(x2) 8080 8899 9090 9988 9999 10001 11000(x2) 11111 12000 13000 ..... |
2020-08-06 06:29:34 |
| 125.220.213.225 | attack | Aug 5 23:22:16 rancher-0 sshd[821493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.220.213.225 user=root Aug 5 23:22:18 rancher-0 sshd[821493]: Failed password for root from 125.220.213.225 port 51908 ssh2 ... |
2020-08-06 06:35:42 |
| 110.164.189.53 | attackbots | Aug 5 23:49:38 vps639187 sshd\[18741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.164.189.53 user=root Aug 5 23:49:40 vps639187 sshd\[18741\]: Failed password for root from 110.164.189.53 port 51478 ssh2 Aug 5 23:53:50 vps639187 sshd\[18862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.164.189.53 user=root ... |
2020-08-06 06:25:08 |
| 87.251.74.186 | attackspambots | Aug 6 01:42:06 mertcangokgoz-v4-main kernel: [284267.339731] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:5a:6b:04:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.186 DST=94.130.96.165 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=10716 PROTO=TCP SPT=41508 DPT=8486 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-08-06 06:44:14 |
| 118.163.101.205 | attackspambots | Lines containing failures of 118.163.101.205 Aug 4 04:15:44 ntop sshd[8531]: User r.r from 118.163.101.205 not allowed because not listed in AllowUsers Aug 4 04:15:44 ntop sshd[8531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.163.101.205 user=r.r Aug 4 04:15:46 ntop sshd[8531]: Failed password for invalid user r.r from 118.163.101.205 port 34906 ssh2 Aug 4 04:15:47 ntop sshd[8531]: Received disconnect from 118.163.101.205 port 34906:11: Bye Bye [preauth] Aug 4 04:15:47 ntop sshd[8531]: Disconnected from invalid user r.r 118.163.101.205 port 34906 [preauth] Aug 4 04:22:05 ntop sshd[11427]: User r.r from 118.163.101.205 not allowed because not listed in AllowUsers Aug 4 04:22:05 ntop sshd[11427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.163.101.205 user=r.r Aug 4 04:22:07 ntop sshd[11427]: Failed password for invalid user r.r from 118.163.101.205 port 41704 ssh2 A........ ------------------------------ |
2020-08-06 06:43:54 |
| 36.37.201.133 | attack | Aug 5 22:32:19 ncomp sshd[23580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.37.201.133 user=root Aug 5 22:32:21 ncomp sshd[23580]: Failed password for root from 36.37.201.133 port 36604 ssh2 Aug 5 23:02:14 ncomp sshd[24207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.37.201.133 user=root Aug 5 23:02:16 ncomp sshd[24207]: Failed password for root from 36.37.201.133 port 40252 ssh2 |
2020-08-06 06:42:46 |
| 187.62.177.90 | attackbots | (smtpauth) Failed SMTP AUTH login from 187.62.177.90 (BR/Brazil/187-62-177-90.cnnet.com.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-06 01:09:12 plain authenticator failed for ([187.62.177.90]) [187.62.177.90]: 535 Incorrect authentication data (set_id=info@ajorkowsar.com) |
2020-08-06 06:38:47 |
| 51.77.146.156 | attackspambots | Aug 6 00:15:38 vserver sshd\[17364\]: Failed password for root from 51.77.146.156 port 43126 ssh2Aug 6 00:17:50 vserver sshd\[17390\]: Failed password for root from 51.77.146.156 port 48192 ssh2Aug 6 00:19:56 vserver sshd\[17404\]: Failed password for root from 51.77.146.156 port 53256 ssh2Aug 6 00:22:06 vserver sshd\[17424\]: Failed password for root from 51.77.146.156 port 58344 ssh2 ... |
2020-08-06 06:37:11 |
| 187.177.25.158 | attackspambots | Automatic report - Port Scan Attack |
2020-08-06 06:48:53 |
| 70.45.133.188 | attack | Aug 5 23:41:20 rancher-0 sshd[822087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.45.133.188 user=root Aug 5 23:41:22 rancher-0 sshd[822087]: Failed password for root from 70.45.133.188 port 36446 ssh2 ... |
2020-08-06 06:24:46 |
| 51.75.76.201 | attackbots | Aug 5 23:36:34 sso sshd[14243]: Failed password for root from 51.75.76.201 port 50018 ssh2 ... |
2020-08-06 06:36:06 |
| 80.82.70.118 | attackspambots | Multiport scan : 8 ports scanned 53 80 143 389 873 3460 4500 9091 |
2020-08-06 06:37:52 |
| 37.120.145.163 | attackspam | SMTP blocked logins 22. Dates: 5-8-2020 / 5-8-2020 |
2020-08-06 06:38:23 |
| 104.248.176.46 | attack | Aug 6 01:14:13 mertcangokgoz-v4-main kernel: [282594.480883] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:5a:6b:04:d2:74:7f:6e:37:e3:08:00 SRC=104.248.176.46 DST=94.130.96.165 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=39515 PROTO=TCP SPT=58101 DPT=18398 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-08-06 06:22:20 |