City: Seoul
Region: Seoul Special City
Country: South Korea
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.214.241.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13619
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.214.241.242. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020201 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 10:42:51 CST 2025
;; MSG SIZE rcvd: 107Host 242.241.214.20.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 242.241.214.20.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 119.110.83.60 | attack | Unauthorized connection attempt from IP address 119.110.83.60 on Port 445(SMB) |
2019-11-20 00:49:27 |
| 185.175.93.105 | attackspambots | 185.175.93.105 was recorded 145 times by 35 hosts attempting to connect to the following ports: 6889,4489,4389,9189,2889,3689,6589,4589,2489,2089,10089,8289,6989,6789,3089,9489,3789,1089,9089,2989,6489,3889,5989,9689,2689,6189,8089,8589,9589,9989,5489,4689,5689,5889,8389,8489,6689,7189,8189,8989,4289,5589,1389,3289,6389,2589,4189,2389,3589,4789,3489,1189,5389,1789,6289,2189,9889,5789,4889,7489,9389,7589,1289,1689,1589,2789,4089,5189,1989,5289,7689. Incident counter (4h, 24h, all-time): 145, 306, 8088 |
2019-11-20 00:56:28 |
| 202.62.94.57 | attack | Unauthorized connection attempt from IP address 202.62.94.57 on Port 445(SMB) |
2019-11-20 01:08:53 |
| 216.243.31.2 | attackbotsspam | 216.243.31.2 was recorded 23 times by 22 hosts attempting to connect to the following ports: 80,443. Incident counter (4h, 24h, all-time): 23, 53, 515 |
2019-11-20 00:31:43 |
| 115.75.106.11 | attack | port scan and connect, tcp 1433 (ms-sql-s) |
2019-11-20 00:41:53 |
| 103.231.163.42 | attackspambots | Unauthorized connection attempt from IP address 103.231.163.42 on Port 445(SMB) |
2019-11-20 00:56:09 |
| 185.32.122.235 | attack | Unauthorized connection attempt from IP address 185.32.122.235 on Port 445(SMB) |
2019-11-20 00:49:57 |
| 188.131.179.87 | attack | Nov 19 14:01:18 tuxlinux sshd[25355]: Invalid user fogle from 188.131.179.87 port 14560 Nov 19 14:01:18 tuxlinux sshd[25355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.179.87 Nov 19 14:01:18 tuxlinux sshd[25355]: Invalid user fogle from 188.131.179.87 port 14560 Nov 19 14:01:18 tuxlinux sshd[25355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.179.87 Nov 19 14:01:18 tuxlinux sshd[25355]: Invalid user fogle from 188.131.179.87 port 14560 Nov 19 14:01:18 tuxlinux sshd[25355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.179.87 Nov 19 14:01:20 tuxlinux sshd[25355]: Failed password for invalid user fogle from 188.131.179.87 port 14560 ssh2 ... |
2019-11-20 00:45:33 |
| 116.193.222.123 | attackspam | Unauthorized connection attempt from IP address 116.193.222.123 on Port 445(SMB) |
2019-11-20 01:10:44 |
| 132.232.74.106 | attack | Nov 19 11:59:50 ny01 sshd[20356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.74.106 Nov 19 11:59:51 ny01 sshd[20356]: Failed password for invalid user arana from 132.232.74.106 port 54584 ssh2 Nov 19 12:04:58 ny01 sshd[20789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.74.106 |
2019-11-20 01:07:51 |
| 202.29.20.214 | attack | $f2bV_matches |
2019-11-20 00:46:56 |
| 103.231.94.75 | attackbots | SSH login attempts brute force. |
2019-11-20 00:44:33 |
| 202.9.122.26 | attackspam | firewall-block, port(s): 23/tcp |
2019-11-20 00:34:44 |
| 3.80.45.242 | attackbots | [Tue Nov 19 14:01:09.722733 2019] [authz_core:error] [pid 50574:tid 140467886868224] [client 3.80.45.242:59486] AH01630: client denied by server configuration: /var/www/vhosts/sololinux.es/httpdocs/revista/SOLOLINUX_N2_MARZO_2019.pdf [Tue Nov 19 14:01:09.724204 2019] [authz_core:error] [pid 50574:tid 140467870082816] [client 3.80.45.242:59488] AH01630: client denied by server configuration: /var/www/vhosts/sololinux.es/httpdocs/eliminar-el-nombre-del-sistema-en-la-terminal [Tue Nov 19 14:01:09.725087 2019] [authz_core:error] [pid 50700:tid 140467786155776] [client 3.80.45.242:59490] AH01630: client denied by server configuration: /var/www/vhosts/sololinux.es/httpdocs/google-no-detecta-mis-redes-sociales [Tue Nov 19 14:01:09.725635 2019] [authz_core:error] [pid 50700:tid 140467853297408] [client 3.80.45.242:59492] AH01630: client denied by server configuration: /var/www/vhosts/sololinux.es/httpdocs/consola-vs-terminal-vs-shell ... |
2019-11-20 00:54:17 |
| 198.108.67.88 | attackbots | ET DROP Dshield Block Listed Source group 1 - port: 2056 proto: TCP cat: Misc Attack |
2019-11-20 00:38:32 |