城市(city): Canoas
省份(region): Rio Grande do Sul
国家(country): Brazil
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.180.138.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21533
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;200.180.138.198. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400
;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 16:06:50 CST 2025
;; MSG SIZE rcvd: 108198.138.180.200.in-addr.arpa domain name pointer 200-180-138-198.paemt301.ipd.brasiltelecom.net.br.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
198.138.180.200.in-addr.arpa name = 200-180-138-198.paemt301.ipd.brasiltelecom.net.br.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 132.145.211.235 | attackbots | trying to access non-authorized port |
2020-02-06 00:27:28 |
| 190.85.145.162 | attackspam | Unauthorized connection attempt detected from IP address 190.85.145.162 to port 2220 [J] |
2020-02-06 01:08:22 |
| 93.174.95.41 | attack | Feb 5 17:09:03 debian-2gb-nbg1-2 kernel: \[3178189.856330\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=93.174.95.41 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=61506 PROTO=TCP SPT=57107 DPT=26869 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-02-06 00:46:06 |
| 45.220.84.135 | spam | As usual with SPAMMERS and ROBERS from Amazon, used for SPAM, PHISHING and SCAM ! |
2020-02-06 00:38:58 |
| 222.186.173.154 | attackbotsspam | Feb 5 13:47:12 ws19vmsma01 sshd[67692]: Failed password for root from 222.186.173.154 port 12908 ssh2 Feb 5 13:47:15 ws19vmsma01 sshd[67692]: Failed password for root from 222.186.173.154 port 12908 ssh2 ... |
2020-02-06 00:54:05 |
| 45.136.108.42 | attack | basic auth dictionary attack |
2020-02-06 00:28:30 |
| 222.189.206.51 | attackbots | 'IP reached maximum auth failures for a one day block' |
2020-02-06 00:25:40 |
| 45.220.84.135 | spam | As usual with SPAMMERS and ROBERS from Amazon, used for SPAM, PHISHING and SCAM ! |
2020-02-06 00:39:52 |
| 152.32.170.248 | attackspambots | Unauthorized connection attempt detected from IP address 152.32.170.248 to port 2220 [J] |
2020-02-06 00:25:12 |
| 195.181.211.71 | attackspambots | Feb 3 15:26:05 web1 sshd[13259]: Address 195.181.211.71 maps to 71.211.forpsi.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 3 15:26:05 web1 sshd[13259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.181.211.71 user=r.r Feb 3 15:26:07 web1 sshd[13259]: Failed password for r.r from 195.181.211.71 port 37790 ssh2 Feb 3 15:26:07 web1 sshd[13259]: Received disconnect from 195.181.211.71: 11: Bye Bye [preauth] Feb 3 15:32:12 web1 sshd[13754]: Address 195.181.211.71 maps to 71.211.forpsi.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 3 15:32:12 web1 sshd[13754]: Invalid user rulison from 195.181.211.71 Feb 3 15:32:12 web1 sshd[13754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.181.211.71 Feb 3 15:32:15 web1 sshd[13754]: Failed password for invalid user rulison from 195.181.211.71 port 55652 ssh2 Feb 3 15:32........ ------------------------------- |
2020-02-06 00:55:16 |
| 139.59.43.175 | attackspam | Feb 5 16:07:19 cp sshd[10323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.43.175 |
2020-02-06 01:05:40 |
| 80.82.77.243 | attack | Feb 5 17:23:03 debian-2gb-nbg1-2 kernel: \[3179030.045523\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.77.243 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=22263 PROTO=TCP SPT=52673 DPT=25113 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-02-06 00:58:05 |
| 151.232.235.96 | attackspambots | Unauthorized connection attempt from IP address 151.232.235.96 on Port 445(SMB) |
2020-02-06 00:40:52 |
| 218.94.136.90 | attack | Feb 5 17:48:39 legacy sshd[3592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.136.90 Feb 5 17:48:41 legacy sshd[3592]: Failed password for invalid user 112233445566 from 218.94.136.90 port 50268 ssh2 Feb 5 17:51:52 legacy sshd[3840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.136.90 ... |
2020-02-06 00:59:56 |
| 47.107.183.131 | attack | Unauthorized connection attempt detected from IP address 47.107.183.131 to port 8088 [J] |
2020-02-06 00:57:32 |