城市(city): Ashburn
省份(region): Virginia
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.22.39.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2250
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;107.22.39.59. IN A
;; AUTHORITY SECTION:
. 421 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022101700 1800 900 604800 86400
;; Query time: 187 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 17 22:19:40 CST 2022
;; MSG SIZE rcvd: 10559.39.22.107.in-addr.arpa domain name pointer ec2-107-22-39-59.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
59.39.22.107.in-addr.arpa name = ec2-107-22-39-59.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 182.61.34.79 | attack | 2019-11-23T14:38:28.438066shield sshd\[10290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.34.79 user=root 2019-11-23T14:38:30.245543shield sshd\[10290\]: Failed password for root from 182.61.34.79 port 3312 ssh2 2019-11-23T14:43:52.989061shield sshd\[11985\]: Invalid user jia from 182.61.34.79 port 37124 2019-11-23T14:43:52.993353shield sshd\[11985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.34.79 2019-11-23T14:43:54.946403shield sshd\[11985\]: Failed password for invalid user jia from 182.61.34.79 port 37124 ssh2 |
2019-11-23 22:50:53 |
| 106.75.6.229 | attackspambots | Nov 23 15:53:26 srv01 sshd[6502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.6.229 user=backup Nov 23 15:53:28 srv01 sshd[6502]: Failed password for backup from 106.75.6.229 port 48278 ssh2 Nov 23 15:58:20 srv01 sshd[6818]: Invalid user guest from 106.75.6.229 port 48336 Nov 23 15:58:20 srv01 sshd[6818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.6.229 Nov 23 15:58:20 srv01 sshd[6818]: Invalid user guest from 106.75.6.229 port 48336 Nov 23 15:58:22 srv01 sshd[6818]: Failed password for invalid user guest from 106.75.6.229 port 48336 ssh2 ... |
2019-11-23 23:06:16 |
| 222.186.180.8 | attackspambots | Nov 23 15:48:56 meumeu sshd[10015]: Failed password for root from 222.186.180.8 port 18930 ssh2 Nov 23 15:49:08 meumeu sshd[10015]: Failed password for root from 222.186.180.8 port 18930 ssh2 Nov 23 15:49:12 meumeu sshd[10015]: Failed password for root from 222.186.180.8 port 18930 ssh2 Nov 23 15:49:12 meumeu sshd[10015]: error: maximum authentication attempts exceeded for root from 222.186.180.8 port 18930 ssh2 [preauth] ... |
2019-11-23 22:55:46 |
| 192.163.224.116 | attackspam | 2019-11-23T14:58:07.631938abusebot-3.cloudsearch.cf sshd\[8954\]: Invalid user admin from 192.163.224.116 port 45958 |
2019-11-23 23:00:50 |
| 38.76.122.2 | attackbots | Nov 23 15:34:32 ns382633 sshd\[21568\]: Invalid user bartlett from 38.76.122.2 port 49346 Nov 23 15:34:32 ns382633 sshd\[21568\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.76.122.2 Nov 23 15:34:34 ns382633 sshd\[21568\]: Failed password for invalid user bartlett from 38.76.122.2 port 49346 ssh2 Nov 23 15:55:48 ns382633 sshd\[25801\]: Invalid user dannye from 38.76.122.2 port 64521 Nov 23 15:55:48 ns382633 sshd\[25801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.76.122.2 |
2019-11-23 22:58:03 |
| 79.137.87.44 | attack | Nov 23 15:24:12 minden010 sshd[31301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.87.44 Nov 23 15:24:14 minden010 sshd[31301]: Failed password for invalid user heinjus from 79.137.87.44 port 46708 ssh2 Nov 23 15:28:20 minden010 sshd[32722]: Failed password for backup from 79.137.87.44 port 36437 ssh2 ... |
2019-11-23 22:41:17 |
| 182.61.33.2 | attackspam | Invalid user dangers from 182.61.33.2 port 53232 |
2019-11-23 22:27:24 |
| 223.215.174.73 | attackbotsspam | badbot |
2019-11-23 22:49:13 |
| 106.54.18.121 | attackspambots | 106.54.18.121 was recorded 48 times by 25 hosts attempting to connect to the following ports: 4243,2375,2377,2376. Incident counter (4h, 24h, all-time): 48, 77, 77 |
2019-11-23 23:09:21 |
| 14.231.217.198 | attackspam | Nov 23 15:22:57 riskplan-s sshd[32106]: Address 14.231.217.198 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Nov 23 15:22:57 riskplan-s sshd[32106]: Invalid user admin from 14.231.217.198 Nov 23 15:22:57 riskplan-s sshd[32106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.217.198 Nov 23 15:22:59 riskplan-s sshd[32106]: Failed password for invalid user admin from 14.231.217.198 port 56507 ssh2 Nov 23 15:23:01 riskplan-s sshd[32106]: Connection closed by 14.231.217.198 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.231.217.198 |
2019-11-23 22:43:38 |
| 191.193.88.43 | attackspambots | Lines containing failures of 191.193.88.43 Nov 20 20:16:19 shared11 sshd[20712]: Invalid user amma from 191.193.88.43 port 57552 Nov 20 20:16:19 shared11 sshd[20712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.193.88.43 Nov 20 20:16:21 shared11 sshd[20712]: Failed password for invalid user amma from 191.193.88.43 port 57552 ssh2 Nov 20 20:16:21 shared11 sshd[20712]: Received disconnect from 191.193.88.43 port 57552:11: Bye Bye [preauth] Nov 20 20:16:21 shared11 sshd[20712]: Disconnected from invalid user amma 191.193.88.43 port 57552 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=191.193.88.43 |
2019-11-23 22:48:11 |
| 36.4.84.34 | attackbots | badbot |
2019-11-23 22:45:32 |
| 192.241.132.135 | attackspam | 192.241.132.135 - - \[23/Nov/2019:15:50:03 +0100\] "POST /wp-login.php HTTP/1.0" 200 2167 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 192.241.132.135 - - \[23/Nov/2019:15:50:11 +0100\] "POST /wp-login.php HTTP/1.0" 200 2374 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 192.241.132.135 - - \[23/Nov/2019:15:50:18 +0100\] "POST /wp-login.php HTTP/1.0" 200 2366 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-11-23 23:04:26 |
| 80.211.169.93 | attack | 2019-11-23T15:00:04.834000abusebot-8.cloudsearch.cf sshd\[18269\]: Invalid user hung from 80.211.169.93 port 56724 |
2019-11-23 23:07:44 |
| 106.12.58.4 | attackbotsspam | Nov 23 15:28:32 MK-Soft-Root2 sshd[21471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.58.4 Nov 23 15:28:34 MK-Soft-Root2 sshd[21471]: Failed password for invalid user pascal from 106.12.58.4 port 51640 ssh2 ... |
2019-11-23 22:29:14 |