City: unknown
Region: unknown
Country: Korea (Republic of)
Internet Service Provider: Seoul National University
Hostname: unknown
Organization: unknown
Usage Type: University/College/School
| Type | Details | Datetime |
|---|---|---|
| attackspam | Unauthorized connection attempt detected from IP address 147.47.200.22 to port 22 |
2020-06-03 23:04:02 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.47.200.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20168
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;147.47.200.22. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020060300 1800 900 604800 86400
;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 03 23:03:55 CST 2020
;; MSG SIZE rcvd: 11722.200.47.147.in-addr.arpa domain name pointer soju.snu.ac.kr.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
22.200.47.147.in-addr.arpa name = soju.snu.ac.kr.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.176.27.254 | attack | 11/15/2019-18:48:16.410078 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-11-16 07:52:12 |
| 200.0.236.210 | attack | Nov 11 16:26:24 itv-usvr-01 sshd[19915]: Invalid user leemhuis from 200.0.236.210 Nov 11 16:26:24 itv-usvr-01 sshd[19915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.0.236.210 Nov 11 16:26:24 itv-usvr-01 sshd[19915]: Invalid user leemhuis from 200.0.236.210 Nov 11 16:26:25 itv-usvr-01 sshd[19915]: Failed password for invalid user leemhuis from 200.0.236.210 port 53434 ssh2 Nov 11 16:31:09 itv-usvr-01 sshd[20092]: Invalid user smmsp from 200.0.236.210 |
2019-11-16 08:00:53 |
| 148.244.191.65 | attackspambots | 445/tcp 445/tcp 445/tcp... [2019-09-15/11-15]19pkt,1pt.(tcp) |
2019-11-16 07:45:48 |
| 198.199.124.109 | attackspambots | Nov 13 22:42:39 itv-usvr-01 sshd[29369]: Invalid user debelian from 198.199.124.109 Nov 13 22:42:39 itv-usvr-01 sshd[29369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.124.109 Nov 13 22:42:39 itv-usvr-01 sshd[29369]: Invalid user debelian from 198.199.124.109 Nov 13 22:42:41 itv-usvr-01 sshd[29369]: Failed password for invalid user debelian from 198.199.124.109 port 39986 ssh2 Nov 13 22:50:29 itv-usvr-01 sshd[29667]: Invalid user storace from 198.199.124.109 |
2019-11-16 08:03:22 |
| 5.139.217.202 | attack | 445/tcp 445/tcp 445/tcp... [2019-10-02/11-15]4pkt,1pt.(tcp) |
2019-11-16 08:00:06 |
| 198.50.197.216 | attack | Nov 13 07:09:02 itv-usvr-01 sshd[22499]: Invalid user server from 198.50.197.216 Nov 13 07:09:02 itv-usvr-01 sshd[22499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.197.216 Nov 13 07:09:02 itv-usvr-01 sshd[22499]: Invalid user server from 198.50.197.216 Nov 13 07:09:04 itv-usvr-01 sshd[22499]: Failed password for invalid user server from 198.50.197.216 port 45750 ssh2 Nov 13 07:14:46 itv-usvr-01 sshd[22855]: Invalid user fumerton from 198.50.197.216 |
2019-11-16 08:02:24 |
| 200.60.91.194 | attackspam | Nov 11 22:12:17 itv-usvr-01 sshd[2168]: Invalid user it1 from 200.60.91.194 Nov 11 22:12:17 itv-usvr-01 sshd[2168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.60.91.194 Nov 11 22:12:17 itv-usvr-01 sshd[2168]: Invalid user it1 from 200.60.91.194 Nov 11 22:12:19 itv-usvr-01 sshd[2168]: Failed password for invalid user it1 from 200.60.91.194 port 43064 ssh2 Nov 11 22:17:36 itv-usvr-01 sshd[2353]: Invalid user guest from 200.60.91.194 |
2019-11-16 07:59:01 |
| 201.174.182.159 | attackbots | Nov 11 10:41:06 itv-usvr-01 sshd[5355]: Invalid user arnstein from 201.174.182.159 Nov 11 10:41:06 itv-usvr-01 sshd[5355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.174.182.159 Nov 11 10:41:06 itv-usvr-01 sshd[5355]: Invalid user arnstein from 201.174.182.159 Nov 11 10:41:07 itv-usvr-01 sshd[5355]: Failed password for invalid user arnstein from 201.174.182.159 port 59155 ssh2 Nov 11 10:44:46 itv-usvr-01 sshd[5483]: Invalid user keyon from 201.174.182.159 |
2019-11-16 07:56:42 |
| 81.22.45.48 | attackbots | Nov 16 00:17:53 mc1 kernel: \[5146140.914538\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=12220 PROTO=TCP SPT=40318 DPT=2073 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 16 00:20:47 mc1 kernel: \[5146314.165476\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=14446 PROTO=TCP SPT=40318 DPT=3451 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 16 00:20:52 mc1 kernel: \[5146319.691612\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=35838 PROTO=TCP SPT=40318 DPT=2540 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-11-16 08:13:17 |
| 89.208.223.31 | attack | Nov 15 23:56:07 srv2 sshd\[11482\]: Invalid user admin from 89.208.223.31 port 65359 Nov 15 23:57:51 srv2 sshd\[11489\]: Invalid user admin from 89.208.223.31 port 58422 Nov 15 23:59:01 srv2 sshd\[11491\]: Invalid user admin from 89.208.223.31 port 64350 |
2019-11-16 08:15:28 |
| 106.124.141.108 | attackbotsspam | Nov 16 00:49:29 meumeu sshd[25347]: Failed password for root from 106.124.141.108 port 37026 ssh2 Nov 16 00:54:04 meumeu sshd[26017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.141.108 Nov 16 00:54:06 meumeu sshd[26017]: Failed password for invalid user minozzi from 106.124.141.108 port 55207 ssh2 ... |
2019-11-16 08:06:17 |
| 115.182.75.28 | attack | 1433/tcp 1433/tcp 1433/tcp... [2019-10-10/11-15]6pkt,1pt.(tcp) |
2019-11-16 08:01:06 |
| 202.110.83.126 | attackbotsspam | 1433/tcp 1433/tcp [2019-10-26/11-15]2pkt |
2019-11-16 07:51:03 |
| 193.32.163.123 | attackbots | Nov 15 23:24:46 thevastnessof sshd[28690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.123 ... |
2019-11-16 08:19:09 |
| 202.119.81.229 | attackbots | Nov 12 13:04:01 itv-usvr-01 sshd[8131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.119.81.229 user=root Nov 12 13:04:03 itv-usvr-01 sshd[8131]: Failed password for root from 202.119.81.229 port 34208 ssh2 Nov 12 13:12:27 itv-usvr-01 sshd[8579]: Invalid user shutdown from 202.119.81.229 |
2019-11-16 07:48:42 |