城市(city): unknown
省份(region): unknown
国家(country): Korea (the Republic of)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.42.98.209
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61052
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.42.98.209. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020400 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 19:13:25 CST 2025
;; MSG SIZE rcvd: 105Host 209.98.42.42.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 209.98.42.42.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 221.149.8.48 | attackspam | Jun 21 02:10:12 php1 sshd\[29869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.8.48 user=root Jun 21 02:10:14 php1 sshd\[29869\]: Failed password for root from 221.149.8.48 port 53906 ssh2 Jun 21 02:13:15 php1 sshd\[30078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.8.48 user=root Jun 21 02:13:18 php1 sshd\[30078\]: Failed password for root from 221.149.8.48 port 37876 ssh2 Jun 21 02:16:16 php1 sshd\[30308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.8.48 user=root |
2020-06-21 21:21:37 |
| 79.124.62.86 | attack | Fail2Ban Ban Triggered |
2020-06-21 21:18:10 |
| 223.238.76.125 | attackspam | Unauthorized connection attempt from IP address 223.238.76.125 on Port 445(SMB) |
2020-06-21 21:30:42 |
| 51.79.68.147 | attackspam | no |
2020-06-21 21:22:22 |
| 134.209.24.143 | attackbots | Jun 21 05:38:34 dignus sshd[16755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.24.143 Jun 21 05:38:36 dignus sshd[16755]: Failed password for invalid user postgres from 134.209.24.143 port 58824 ssh2 Jun 21 05:44:18 dignus sshd[17256]: Invalid user shen from 134.209.24.143 port 59680 Jun 21 05:44:18 dignus sshd[17256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.24.143 Jun 21 05:44:20 dignus sshd[17256]: Failed password for invalid user shen from 134.209.24.143 port 59680 ssh2 ... |
2020-06-21 20:50:32 |
| 74.82.47.34 | attack | Honeypot hit. |
2020-06-21 21:06:07 |
| 180.107.109.21 | attack | Jun 21 02:13:36 php1 sshd\[30103\]: Invalid user soma from 180.107.109.21 Jun 21 02:13:36 php1 sshd\[30103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.107.109.21 Jun 21 02:13:37 php1 sshd\[30103\]: Failed password for invalid user soma from 180.107.109.21 port 32088 ssh2 Jun 21 02:16:24 php1 sshd\[30318\]: Invalid user nagios from 180.107.109.21 Jun 21 02:16:24 php1 sshd\[30318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.107.109.21 |
2020-06-21 21:00:15 |
| 151.80.45.136 | attackbots | SSH brutforce |
2020-06-21 21:31:27 |
| 196.37.111.217 | attackbots | 20 attempts against mh-ssh on cloud |
2020-06-21 21:31:05 |
| 162.243.135.71 | attackbots | scans once in preceeding hours on the ports (in chronological order) 8047 resulting in total of 51 scans from 162.243.0.0/16 block. |
2020-06-21 21:04:45 |
| 178.62.49.137 | attack | Jun 21 18:32:25 dhoomketu sshd[935884]: Failed password for root from 178.62.49.137 port 47656 ssh2 Jun 21 18:35:58 dhoomketu sshd[935945]: Invalid user usuario2 from 178.62.49.137 port 48920 Jun 21 18:35:58 dhoomketu sshd[935945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.49.137 Jun 21 18:35:58 dhoomketu sshd[935945]: Invalid user usuario2 from 178.62.49.137 port 48920 Jun 21 18:36:00 dhoomketu sshd[935945]: Failed password for invalid user usuario2 from 178.62.49.137 port 48920 ssh2 ... |
2020-06-21 21:12:36 |
| 162.243.138.15 | attackspambots | scans once in preceeding hours on the ports (in chronological order) 8083 resulting in total of 51 scans from 162.243.0.0/16 block. |
2020-06-21 20:57:05 |
| 223.111.157.138 | attack | scans 11 times in preceeding hours on the ports (in chronological order) 1313 2012 2013 2016 2017 2015 2018 2111 2252 2262 2272 resulting in total of 11 scans from 223.64.96.0/12 block. |
2020-06-21 21:10:46 |
| 162.243.136.88 | attack | scans 2 times in preceeding hours on the ports (in chronological order) 4545 60001 resulting in total of 51 scans from 162.243.0.0/16 block. |
2020-06-21 21:03:56 |
| 116.198.162.65 | attack | $f2bV_matches |
2020-06-21 21:05:36 |