城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.4.41.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19438
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.4.41.130. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025010602 1800 900 604800 86400
;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 13:12:57 CST 2025
;; MSG SIZE rcvd: 104Host 130.41.4.42.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 130.41.4.42.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 163.172.207.104 | attack | \[2019-09-23 15:10:33\] SECURITY\[2283\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-23T15:10:33.255-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9022011972592277524",SessionID="0x7fcd8c12cad8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/55866",ACLName="no_extension_match" \[2019-09-23 15:14:57\] SECURITY\[2283\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-23T15:14:57.222-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9023011972592277524",SessionID="0x7fcd8c57a408",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/61409",ACLName="no_extension_match" \[2019-09-23 15:19:28\] SECURITY\[2283\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-23T15:19:28.744-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9024011972592277524",SessionID="0x7fcd8c12cad8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/6072 |
2019-09-24 03:26:30 |
| 193.188.22.12 | attack | 2019-09-23T21:00:05.592353lon01.zurich-datacenter.net sshd\[28955\]: Invalid user monitor from 193.188.22.12 port 48910 2019-09-23T21:00:05.604305lon01.zurich-datacenter.net sshd\[28955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.12 2019-09-23T21:00:07.875077lon01.zurich-datacenter.net sshd\[28955\]: Failed password for invalid user monitor from 193.188.22.12 port 48910 ssh2 2019-09-23T21:00:08.011486lon01.zurich-datacenter.net sshd\[28957\]: Invalid user james from 193.188.22.12 port 52111 2019-09-23T21:00:08.022838lon01.zurich-datacenter.net sshd\[28957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.12 ... |
2019-09-24 03:08:49 |
| 182.75.33.118 | attackspambots | Unauthorized connection attempt from IP address 182.75.33.118 on Port 445(SMB) |
2019-09-24 03:31:22 |
| 106.13.48.157 | attackspam | Sep 23 20:24:43 v22019058497090703 sshd[19486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.157 Sep 23 20:24:45 v22019058497090703 sshd[19486]: Failed password for invalid user transfer from 106.13.48.157 port 54588 ssh2 Sep 23 20:29:55 v22019058497090703 sshd[19892]: Failed password for root from 106.13.48.157 port 38938 ssh2 ... |
2019-09-24 02:59:28 |
| 80.82.64.127 | attack | 09/23/2019-21:11:21.340387 80.82.64.127 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 82 |
2019-09-24 03:27:33 |
| 5.135.232.8 | attackbotsspam | Sep 23 15:28:53 TORMINT sshd\[15282\]: Invalid user ltdev from 5.135.232.8 Sep 23 15:28:54 TORMINT sshd\[15282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.232.8 Sep 23 15:28:55 TORMINT sshd\[15282\]: Failed password for invalid user ltdev from 5.135.232.8 port 52312 ssh2 ... |
2019-09-24 03:28:58 |
| 192.99.36.76 | attackspam | Sep 23 12:05:58 ny01 sshd[9103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.36.76 Sep 23 12:06:00 ny01 sshd[9103]: Failed password for invalid user whm from 192.99.36.76 port 60624 ssh2 Sep 23 12:10:14 ny01 sshd[9791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.36.76 |
2019-09-24 02:57:22 |
| 42.180.37.50 | attackbots | Unauthorised access (Sep 23) SRC=42.180.37.50 LEN=40 TTL=49 ID=27489 TCP DPT=8080 WINDOW=11055 SYN Unauthorised access (Sep 23) SRC=42.180.37.50 LEN=40 TTL=49 ID=25250 TCP DPT=8080 WINDOW=11055 SYN Unauthorised access (Sep 22) SRC=42.180.37.50 LEN=40 TTL=49 ID=21359 TCP DPT=8080 WINDOW=11055 SYN Unauthorised access (Sep 22) SRC=42.180.37.50 LEN=40 TTL=49 ID=18575 TCP DPT=8080 WINDOW=11055 SYN |
2019-09-24 02:55:46 |
| 117.3.81.247 | attackspambots | Unauthorized connection attempt from IP address 117.3.81.247 on Port 445(SMB) |
2019-09-24 03:24:57 |
| 51.75.202.120 | attack | fraudulent SSH attempt |
2019-09-24 03:01:58 |
| 49.88.112.116 | attack | Sep 23 18:18:19 localhost sshd\[22494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root Sep 23 18:18:21 localhost sshd\[22494\]: Failed password for root from 49.88.112.116 port 51002 ssh2 Sep 23 18:18:23 localhost sshd\[22494\]: Failed password for root from 49.88.112.116 port 51002 ssh2 |
2019-09-24 03:06:54 |
| 203.142.69.203 | attack | Sep 23 19:50:17 cp sshd[5900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203 |
2019-09-24 03:11:59 |
| 218.213.171.50 | attack | Unauthorized connection attempt from IP address 218.213.171.50 on Port 445(SMB) |
2019-09-24 03:29:31 |
| 158.69.192.200 | attackspambots | Automatic report - Banned IP Access |
2019-09-24 03:12:14 |
| 104.248.81.104 | attackspambots | 09/23/2019-17:37:59.293758 104.248.81.104 Protocol: 6 ET CHAT IRC PING command |
2019-09-24 02:59:52 |