城市(city): unknown
省份(region): unknown
国家(country): unknown
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2406:3100:1010:100::5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 15722
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2406:3100:1010:100::5. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Feb 19 02:59:07 CST 2022
;; MSG SIZE rcvd: 50
'Host 5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa not found: 2(SERVFAIL)
b'5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = www.kasetsart.org.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = www.kasetsart.education.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = ku.ac.th.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = ku.th.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = www.ku.ac.th.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = www.ku.th.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = www.kasetsart-university.org.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = kasetsart-university.org.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = kasetsart.org.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = kasetsart.education.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = www.kasetsart.university.
5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.0.1.0.1.0.0.1.3.6.0.4.2.ip6.arpa name = kasetsart.university.
Authoritative answers can be found from:
'| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 183.66.137.10 | attack | Dec 21 19:16:20 marvibiene sshd[43039]: Invalid user carrie from 183.66.137.10 port 35786 Dec 21 19:16:20 marvibiene sshd[43039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.66.137.10 Dec 21 19:16:20 marvibiene sshd[43039]: Invalid user carrie from 183.66.137.10 port 35786 Dec 21 19:16:23 marvibiene sshd[43039]: Failed password for invalid user carrie from 183.66.137.10 port 35786 ssh2 ... |
2019-12-22 04:20:50 |
| 59.93.80.4 | attack | RDPBruteGSL24 |
2019-12-22 04:12:13 |
| 158.69.121.204 | attackbots | \[2019-12-21 15:03:26\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-21T15:03:26.984-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="00033660046363302959",SessionID="0x7f0fb4ca4128",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/158.69.121.204/50087",ACLName="no_extension_match" \[2019-12-21 15:06:49\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-21T15:06:49.752-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="00033670046363302959",SessionID="0x7f0fb4a5a908",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/158.69.121.204/52710",ACLName="no_extension_match" \[2019-12-21 15:10:12\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-21T15:10:12.631-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="00033680046363302959",SessionID="0x7f0fb4a47618",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/158.69.121.204/5008 |
2019-12-22 04:10:44 |
| 124.235.171.114 | attack | Dec 21 19:46:15 hosting sshd[32245]: Invalid user krysko from 124.235.171.114 port 15715 ... |
2019-12-22 04:05:28 |
| 167.206.202.139 | attack | Unauthorized connection attempt detected from IP address 167.206.202.139 to port 445 |
2019-12-22 04:21:05 |
| 143.0.52.117 | attackspambots | Dec 21 14:32:31 XXX sshd[64159]: Invalid user chi-yao from 143.0.52.117 port 58790 |
2019-12-22 04:03:50 |
| 51.79.25.38 | attack | detected by Fail2Ban |
2019-12-22 04:11:08 |
| 91.204.188.50 | attack | 21 attempts against mh-ssh on echoip.magehost.pro |
2019-12-22 03:46:45 |
| 139.59.90.40 | attackbots | [ssh] SSH attack |
2019-12-22 03:51:16 |
| 134.17.94.229 | attack | 2019-12-21T12:26:12.789465suse-nuc sshd[22867]: Invalid user sinh from 134.17.94.229 port 2583 ... |
2019-12-22 03:46:11 |
| 223.71.139.97 | attackspambots | Dec 21 21:04:48 ns41 sshd[14339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.71.139.97 |
2019-12-22 04:09:54 |
| 104.168.250.71 | attack | Dec 21 18:01:14 ns381471 sshd[10121]: Failed password for root from 104.168.250.71 port 59002 ssh2 Dec 21 18:07:29 ns381471 sshd[10296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.250.71 |
2019-12-22 04:06:10 |
| 104.236.244.98 | attackbotsspam | Dec 21 19:03:16 pornomens sshd\[23936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.244.98 user=backup Dec 21 19:03:18 pornomens sshd\[23936\]: Failed password for backup from 104.236.244.98 port 41922 ssh2 Dec 21 19:20:56 pornomens sshd\[24191\]: Invalid user guest from 104.236.244.98 port 57514 Dec 21 19:20:56 pornomens sshd\[24191\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.244.98 ... |
2019-12-22 04:16:46 |
| 222.185.235.186 | attack | k+ssh-bruteforce |
2019-12-22 04:06:45 |
| 222.186.175.182 | attackbotsspam | Dec 21 17:05:37 firewall sshd[28034]: Failed password for root from 222.186.175.182 port 57852 ssh2 Dec 21 17:05:50 firewall sshd[28034]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 57852 ssh2 [preauth] Dec 21 17:05:50 firewall sshd[28034]: Disconnecting: Too many authentication failures [preauth] ... |
2019-12-22 04:08:52 |