城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.153.17.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39162
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;12.153.17.211. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012102 1800 900 604800 86400
;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 09:59:33 CST 2025
;; MSG SIZE rcvd: 106211.17.153.12.in-addr.arpa is an alias for 211.208/28.17.153.12.in-addr.arpa.
211.208/28.17.153.12.in-addr.arpa domain name pointer firewall.sjcnews.com.
211.208/28.17.153.12.in-addr.arpa domain name pointer sjc-sful.sjcnews.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
211.17.153.12.in-addr.arpa canonical name = 211.208/28.17.153.12.in-addr.arpa.
211.208/28.17.153.12.in-addr.arpa name = sjc-sful.sjcnews.com.
211.208/28.17.153.12.in-addr.arpa name = firewall.sjcnews.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 14.162.186.12 | attackspambots | Unauthorized connection attempt from IP address 14.162.186.12 on Port 445(SMB) |
2020-04-01 01:29:35 |
| 185.176.27.98 | attackbots | 03/31/2020-13:03:39.662294 185.176.27.98 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-04-01 01:20:32 |
| 106.13.96.229 | attackbots | Mar 31 14:31:08 novum-srv2 sshd[7947]: error: Received disconnect from 106.13.96.229 port 55726:3: com.jcraft.jsch.JSchException: Auth fail [preauth] Mar 31 14:31:09 novum-srv2 sshd[7949]: error: Received disconnect from 106.13.96.229 port 55914:3: com.jcraft.jsch.JSchException: Auth fail [preauth] Mar 31 14:31:12 novum-srv2 sshd[7951]: Invalid user pi from 106.13.96.229 port 55974 Mar 31 14:31:12 novum-srv2 sshd[7951]: Invalid user pi from 106.13.96.229 port 55974 Mar 31 14:31:12 novum-srv2 sshd[7951]: error: Received disconnect from 106.13.96.229 port 55974:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ... |
2020-04-01 01:27:33 |
| 58.27.99.112 | attack | Mar 31 18:09:44 [HOSTNAME] sshd[16027]: User **removed** from 58.27.99.112 not allowed because not listed in AllowUsers Mar 31 18:09:44 [HOSTNAME] sshd[16027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.27.99.112 user=**removed** Mar 31 18:09:46 [HOSTNAME] sshd[16027]: Failed password for invalid user **removed** from 58.27.99.112 port 53540 ssh2 ... |
2020-04-01 00:59:31 |
| 68.183.156.109 | attack | (sshd) Failed SSH login from 68.183.156.109 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 31 15:20:28 s1 sshd[11072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.156.109 user=root Mar 31 15:20:31 s1 sshd[11072]: Failed password for root from 68.183.156.109 port 53362 ssh2 Mar 31 15:27:26 s1 sshd[11981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.156.109 user=root Mar 31 15:27:28 s1 sshd[11981]: Failed password for root from 68.183.156.109 port 50904 ssh2 Mar 31 15:31:11 s1 sshd[12183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.156.109 user=root |
2020-04-01 01:24:42 |
| 123.207.145.66 | attack | Invalid user sft from 123.207.145.66 port 57654 |
2020-04-01 00:50:35 |
| 196.219.76.131 | attack | Unauthorized connection attempt from IP address 196.219.76.131 on Port 445(SMB) |
2020-04-01 00:42:02 |
| 49.235.13.95 | attack | Mar 31 14:25:37 ns382633 sshd\[23798\]: Invalid user ubuntu from 49.235.13.95 port 44595 Mar 31 14:25:37 ns382633 sshd\[23798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.13.95 Mar 31 14:25:40 ns382633 sshd\[23798\]: Failed password for invalid user ubuntu from 49.235.13.95 port 44595 ssh2 Mar 31 14:31:08 ns382633 sshd\[24897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.13.95 user=root Mar 31 14:31:10 ns382633 sshd\[24897\]: Failed password for root from 49.235.13.95 port 38398 ssh2 |
2020-04-01 01:27:09 |
| 69.30.213.82 | attack | 20 attempts against mh-misbehave-ban on sea |
2020-04-01 01:00:58 |
| 111.229.33.175 | attackbotsspam | Mar 31 17:14:59 prox sshd[30764]: Failed password for root from 111.229.33.175 port 56254 ssh2 |
2020-04-01 00:46:16 |
| 49.236.192.194 | attack | $f2bV_matches |
2020-04-01 00:56:47 |
| 36.81.171.253 | attack | Unauthorized connection attempt from IP address 36.81.171.253 on Port 445(SMB) |
2020-04-01 00:39:56 |
| 114.67.122.89 | attackspam | Mar 31 16:43:36 legacy sshd[17327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.122.89 Mar 31 16:43:38 legacy sshd[17327]: Failed password for invalid user Bio306Stu from 114.67.122.89 port 37396 ssh2 Mar 31 16:48:38 legacy sshd[17492]: Failed password for root from 114.67.122.89 port 41936 ssh2 ... |
2020-04-01 01:05:32 |
| 222.255.115.237 | attack | 2020-03-31T09:50:05.488104linuxbox-skyline sshd[121108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.255.115.237 user=root 2020-03-31T09:50:07.625325linuxbox-skyline sshd[121108]: Failed password for root from 222.255.115.237 port 54914 ssh2 ... |
2020-04-01 00:41:35 |
| 203.207.56.232 | attack | Automatic report - Port Scan Attack |
2020-04-01 01:21:33 |