城市(city): unknown
省份(region): unknown
国家(country): Kenya
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.49.85.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61491
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;212.49.85.138. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024120701 1800 900 604800 86400
;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 06:20:04 CST 2024
;; MSG SIZE rcvd: 106138.85.49.212.in-addr.arpa domain name pointer simba.telkom.co.ke.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
138.85.49.212.in-addr.arpa name = simba.telkom.co.ke.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 1.171.75.227 | attack | Unauthorized connection attempt from IP address 1.171.75.227 on Port 445(SMB) |
2020-04-06 21:34:18 |
| 134.209.109.246 | attackbots | Apr 6 13:24:00 gitlab-tf sshd\[5689\]: Invalid user manager from 134.209.109.246Apr 6 13:26:02 gitlab-tf sshd\[5989\]: Invalid user ubuntu from 134.209.109.246 ... |
2020-04-06 21:44:47 |
| 156.222.151.49 | attack | Unauthorized connection attempt from IP address 156.222.151.49 on Port 445(SMB) |
2020-04-06 22:12:41 |
| 222.186.175.215 | attackbotsspam | Apr 6 16:10:55 pve sshd[28868]: Failed password for root from 222.186.175.215 port 54840 ssh2 Apr 6 16:11:00 pve sshd[28868]: Failed password for root from 222.186.175.215 port 54840 ssh2 Apr 6 16:11:05 pve sshd[28868]: Failed password for root from 222.186.175.215 port 54840 ssh2 Apr 6 16:11:09 pve sshd[28868]: Failed password for root from 222.186.175.215 port 54840 ssh2 |
2020-04-06 22:16:35 |
| 103.21.53.11 | attack | Apr 6 14:27:16 lock-38 sshd[642064]: Failed password for root from 103.21.53.11 port 52956 ssh2 Apr 6 14:34:49 lock-38 sshd[642288]: Failed password for root from 103.21.53.11 port 53754 ssh2 Apr 6 14:38:21 lock-38 sshd[642411]: Failed password for root from 103.21.53.11 port 40234 ssh2 Apr 6 14:41:55 lock-38 sshd[642569]: Failed password for root from 103.21.53.11 port 55088 ssh2 Apr 6 14:45:14 lock-38 sshd[642678]: Failed password for root from 103.21.53.11 port 41652 ssh2 ... |
2020-04-06 22:01:30 |
| 185.166.223.81 | attack | Fail2Ban Ban Triggered |
2020-04-06 21:29:52 |
| 112.3.30.18 | attackbotsspam | Apr 6 08:37:30 scivo sshd[21420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.30.18 user=r.r Apr 6 08:37:32 scivo sshd[21420]: Failed password for r.r from 112.3.30.18 port 45104 ssh2 Apr 6 08:37:32 scivo sshd[21420]: Received disconnect from 112.3.30.18: 11: Bye Bye [preauth] Apr 6 08:45:25 scivo sshd[22016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.30.18 user=r.r Apr 6 08:45:28 scivo sshd[22016]: Failed password for r.r from 112.3.30.18 port 51802 ssh2 Apr 6 08:45:28 scivo sshd[22016]: Received disconnect from 112.3.30.18: 11: Bye Bye [preauth] Apr 6 08:50:05 scivo sshd[22287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.30.18 user=r.r Apr 6 08:50:08 scivo sshd[22287]: Failed password for r.r from 112.3.30.18 port 35312 ssh2 Apr 6 08:50:08 scivo sshd[22287]: Received disconnect from 112.3.30.18: 11: Bye By........ ------------------------------- |
2020-04-06 21:36:29 |
| 180.76.177.237 | attackbotsspam | Apr 6 14:19:34 ns382633 sshd\[6142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.177.237 user=root Apr 6 14:19:36 ns382633 sshd\[6142\]: Failed password for root from 180.76.177.237 port 46662 ssh2 Apr 6 14:40:48 ns382633 sshd\[11127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.177.237 user=root Apr 6 14:40:50 ns382633 sshd\[11127\]: Failed password for root from 180.76.177.237 port 47976 ssh2 Apr 6 14:45:27 ns382633 sshd\[12173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.177.237 user=root |
2020-04-06 21:41:25 |
| 115.231.156.236 | attack | Bruteforce detected by fail2ban |
2020-04-06 21:46:42 |
| 206.189.205.124 | attackbots | Apr 6 15:41:28 sticky sshd\[9464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.205.124 user=root Apr 6 15:41:30 sticky sshd\[9464\]: Failed password for root from 206.189.205.124 port 58178 ssh2 Apr 6 15:45:23 sticky sshd\[9478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.205.124 user=root Apr 6 15:45:25 sticky sshd\[9478\]: Failed password for root from 206.189.205.124 port 41166 ssh2 Apr 6 15:49:14 sticky sshd\[9486\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.205.124 user=root ... |
2020-04-06 22:11:38 |
| 103.19.128.2 | attack | Unauthorized connection attempt from IP address 103.19.128.2 on Port 445(SMB) |
2020-04-06 21:49:35 |
| 42.2.216.123 | attackbots | Invalid user odroid from 42.2.216.123 |
2020-04-06 21:43:21 |
| 120.88.46.226 | attack | Apr 6 14:45:12 odroid64 sshd\[3082\]: User root from 120.88.46.226 not allowed because not listed in AllowUsers Apr 6 14:45:12 odroid64 sshd\[3082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.88.46.226 user=root ... |
2020-04-06 22:04:11 |
| 157.230.227.105 | attack | 157.230.227.105 - - [06/Apr/2020:15:19:00 +0200] "POST /wp-login.php HTTP/1.0" 200 2504 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.227.105 - - [06/Apr/2020:15:19:03 +0200] "POST /wp-login.php HTTP/1.0" 200 2485 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-04-06 21:44:27 |
| 45.63.107.23 | attack | Automatically reported by fail2ban report script (mx1) |
2020-04-06 22:13:42 |