城市(city): unknown
省份(region): unknown
国家(country): None
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 254.242.20.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25354
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;254.242.20.59. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400
;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 18:48:25 CST 2025
;; MSG SIZE rcvd: 106Host 59.20.242.254.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 59.20.242.254.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 116.120.115.80 | attackbotsspam | firewall-block, port(s): 23/tcp |
2019-11-30 02:37:16 |
| 34.92.247.140 | attack | 2019-11-29T15:43:17.976276abusebot.cloudsearch.cf sshd\[32636\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.247.92.34.bc.googleusercontent.com user=root |
2019-11-30 02:07:30 |
| 85.24.228.90 | attack | port scan/probe/communication attempt |
2019-11-30 02:16:59 |
| 185.176.27.42 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-11-30 02:21:12 |
| 185.200.118.47 | attack | proto=tcp . spt=35814 . dpt=3389 . src=185.200.118.47 . dst=xx.xx.4.1 . (Found on Alienvault Nov 29) (580) |
2019-11-30 02:25:21 |
| 89.108.155.50 | attackbotsspam | port scan/probe/communication attempt |
2019-11-30 02:07:16 |
| 186.236.114.129 | attack | firewall-block, port(s): 26/tcp |
2019-11-30 02:15:02 |
| 78.194.214.19 | attackbots | 2019-11-29T18:07:48.052256abusebot-5.cloudsearch.cf sshd\[1716\]: Invalid user robert from 78.194.214.19 port 37478 |
2019-11-30 02:34:49 |
| 73.210.114.85 | attackbots | port scan/probe/communication attempt |
2019-11-30 02:40:44 |
| 161.117.0.44 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-11-30 02:39:30 |
| 103.4.217.138 | attackspambots | Lines containing failures of 103.4.217.138 Nov 27 03:00:06 mellenthin sshd[4340]: User r.r from 103.4.217.138 not allowed because not listed in AllowUsers Nov 27 03:00:06 mellenthin sshd[4340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.4.217.138 user=r.r Nov 27 03:00:08 mellenthin sshd[4340]: Failed password for invalid user r.r from 103.4.217.138 port 50671 ssh2 Nov 27 03:00:08 mellenthin sshd[4340]: Received disconnect from 103.4.217.138 port 50671:11: Bye Bye [preauth] Nov 27 03:00:08 mellenthin sshd[4340]: Disconnected from invalid user r.r 103.4.217.138 port 50671 [preauth] Nov 27 03:21:31 mellenthin sshd[5023]: Invalid user trullemans from 103.4.217.138 port 52400 Nov 27 03:21:31 mellenthin sshd[5023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.4.217.138 Nov 27 03:21:32 mellenthin sshd[5023]: Failed password for invalid user trullemans from 103.4.217.138 port 52400 s........ ------------------------------ |
2019-11-30 02:30:25 |
| 123.206.74.50 | attack | Nov 29 15:46:35 yesfletchmain sshd\[13549\]: Invalid user kidawa_r from 123.206.74.50 port 58690 Nov 29 15:46:35 yesfletchmain sshd\[13549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.74.50 Nov 29 15:46:36 yesfletchmain sshd\[13549\]: Failed password for invalid user kidawa_r from 123.206.74.50 port 58690 ssh2 Nov 29 15:51:18 yesfletchmain sshd\[13801\]: Invalid user apache from 123.206.74.50 port 35334 Nov 29 15:51:18 yesfletchmain sshd\[13801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.74.50 ... |
2019-11-30 02:39:50 |
| 45.67.14.195 | attackbotsspam | Nov 29 10:10:36 aragorn sshd[4268]: Invalid user ubnt from 45.67.14.195 Nov 29 10:10:38 aragorn sshd[4272]: Invalid user admin from 45.67.14.195 Nov 29 10:10:38 aragorn sshd[4272]: Invalid user admin from 45.67.14.195 ... |
2019-11-30 02:24:32 |
| 54.38.241.162 | attack | Nov 29 18:35:14 eventyay sshd[11310]: Failed password for backup from 54.38.241.162 port 44768 ssh2 Nov 29 18:39:14 eventyay sshd[11389]: Failed password for root from 54.38.241.162 port 50218 ssh2 ... |
2019-11-30 02:19:38 |
| 14.240.247.218 | attackspam | DATE:2019-11-29 16:10:09, IP:14.240.247.218, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc) |
2019-11-30 02:45:33 |