城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 163.68.249.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20235
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;163.68.249.42. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021800 1800 900 604800 86400
;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 19:36:55 CST 2025
;; MSG SIZE rcvd: 106Host 42.249.68.163.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 42.249.68.163.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 122.139.22.37 | attack | DATE:2019-07-05 03:42:31, IP:122.139.22.37, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis) |
2019-07-05 15:38:04 |
| 91.196.177.68 | attack | Unauthorised access (Jul 5) SRC=91.196.177.68 LEN=40 TTL=247 ID=40699 DF TCP DPT=23 WINDOW=14600 SYN |
2019-07-05 15:57:00 |
| 113.70.161.149 | attackspam | Unauthorised access (Jul 5) SRC=113.70.161.149 LEN=40 TTL=51 ID=32081 TCP DPT=23 WINDOW=13493 SYN |
2019-07-05 15:59:03 |
| 185.234.218.228 | attackbotsspam | 2019-07-04 15:21:58 server smtpd[62779]: warning: unknown[185.234.218.228]:55117: SASL LOGIN authentication failed: Invalid authentication mechanism |
2019-07-05 16:00:46 |
| 77.40.32.252 | attackspam | SMTP |
2019-07-05 16:07:33 |
| 196.52.43.64 | attack | Bruteforce on SSH Honeypot |
2019-07-05 15:35:44 |
| 37.252.187.140 | attackspam | Jul 5 09:04:47 core01 sshd\[4440\]: Failed password for invalid user tf2 from 37.252.187.140 port 59542 ssh2 Jul 5 09:14:46 core01 sshd\[7946\]: Invalid user chef from 37.252.187.140 port 49222 Jul 5 09:14:46 core01 sshd\[7946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.252.187.140 ... |
2019-07-05 15:58:11 |
| 194.42.156.87 | attackbots | 5555/tcp [2019-07-04]1pkt |
2019-07-05 15:48:00 |
| 124.166.240.130 | attackbots | Scanning (more than 2 packets) random ports - tries to find possible vulnerable services |
2019-07-05 15:37:37 |
| 185.176.27.70 | attack | 7937/tcp 7929/tcp 7921/tcp... [2019-05-04/07-05]1277pkt,433pt.(tcp) |
2019-07-05 15:36:06 |
| 187.56.135.248 | attackbots | Telnetd brute force attack detected by fail2ban |
2019-07-05 15:32:37 |
| 51.75.247.13 | attackspambots | SSH Brute-Force reported by Fail2Ban |
2019-07-05 16:02:53 |
| 14.18.32.156 | attackspam | Jul 5 07:21:19 MK-Soft-Root1 sshd\[25065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.32.156 user=root Jul 5 07:21:21 MK-Soft-Root1 sshd\[25065\]: Failed password for root from 14.18.32.156 port 59421 ssh2 Jul 5 07:21:24 MK-Soft-Root1 sshd\[25072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.32.156 user=root ... |
2019-07-05 15:34:57 |
| 129.204.3.37 | attackbotsspam | Jul 5 07:12:00 giegler sshd[6355]: Invalid user password from 129.204.3.37 port 53326 |
2019-07-05 15:30:48 |
| 148.70.11.143 | attackbotsspam | SSH Brute Force |
2019-07-05 15:26:03 |