城市(city): unknown
省份(region): unknown
国家(country): Japan
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.114.157.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41760
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.114.157.207. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 07:52:25 CST 2025
;; MSG SIZE rcvd: 107207.157.114.13.in-addr.arpa domain name pointer ec2-13-114-157-207.ap-northeast-1.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
207.157.114.13.in-addr.arpa name = ec2-13-114-157-207.ap-northeast-1.compute.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 51.15.166.9 | attack | Feb 10 11:49:30 nginx sshd[76580]: Invalid user guest from 51.15.166.9 Feb 10 11:49:30 nginx sshd[76580]: Connection closed by 51.15.166.9 port 40740 [preauth] |
2020-02-10 19:29:58 |
| 42.118.8.203 | attackspam | Feb 10 05:49:57 lock-38 sshd[25398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.8.203 Feb 10 05:49:59 lock-38 sshd[25398]: Failed password for invalid user system from 42.118.8.203 port 60211 ssh2 ... |
2020-02-10 19:54:49 |
| 177.42.244.158 | attackbotsspam | 20/2/9@23:50:15: FAIL: Alarm-Network address from=177.42.244.158 ... |
2020-02-10 19:37:05 |
| 49.235.169.15 | attack | <6 unauthorized SSH connections |
2020-02-10 20:02:19 |
| 95.110.154.101 | attackspam | Feb 10 12:48:33 sd-53420 sshd\[27783\]: Invalid user tdb from 95.110.154.101 Feb 10 12:48:33 sd-53420 sshd\[27783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.154.101 Feb 10 12:48:35 sd-53420 sshd\[27783\]: Failed password for invalid user tdb from 95.110.154.101 port 43974 ssh2 Feb 10 12:51:45 sd-53420 sshd\[28160\]: Invalid user iyu from 95.110.154.101 Feb 10 12:51:45 sd-53420 sshd\[28160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.154.101 ... |
2020-02-10 20:03:53 |
| 46.151.199.234 | attackbots | DATE:2020-02-10 05:48:54, IP:46.151.199.234, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-02-10 19:39:54 |
| 106.12.68.240 | attackbots | $f2bV_matches |
2020-02-10 20:03:40 |
| 51.68.90.47 | attackspambots | Feb 10 11:16:47 MK-Soft-VM5 sshd[944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.90.47 Feb 10 11:16:49 MK-Soft-VM5 sshd[944]: Failed password for invalid user vqn from 51.68.90.47 port 60264 ssh2 ... |
2020-02-10 19:38:00 |
| 85.204.246.240 | attack | [10/Feb/2020:10:52:28 +0100] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" [10/Feb/2020:10:52:29 +0100] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" |
2020-02-10 20:09:08 |
| 171.239.206.21 | attackspam | Feb 10 07:01:32 riskplan-s sshd[25266]: Address 171.239.206.21 maps to dynamic-ip-adsl.viettel.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 10 07:01:32 riskplan-s sshd[25266]: Invalid user mother from 171.239.206.21 Feb 10 07:01:33 riskplan-s sshd[25266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.239.206.21 Feb 10 07:01:35 riskplan-s sshd[25266]: Failed password for invalid user mother from 171.239.206.21 port 56668 ssh2 Feb 10 07:01:36 riskplan-s sshd[25266]: Connection closed by 171.239.206.21 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=171.239.206.21 |
2020-02-10 19:57:02 |
| 196.47.188.164 | attackbotsspam | unauthorized connection attempt |
2020-02-10 19:40:15 |
| 221.12.19.202 | attackspam | 2020-02-10T09:02:22.693228scmdmz1 sshd[29139]: Invalid user hcf from 221.12.19.202 port 60638 2020-02-10T09:02:22.696188scmdmz1 sshd[29139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.12.19.202 2020-02-10T09:02:22.693228scmdmz1 sshd[29139]: Invalid user hcf from 221.12.19.202 port 60638 2020-02-10T09:02:24.513014scmdmz1 sshd[29139]: Failed password for invalid user hcf from 221.12.19.202 port 60638 ssh2 2020-02-10T09:05:20.314132scmdmz1 sshd[29469]: Invalid user cra from 221.12.19.202 port 41512 ... |
2020-02-10 20:01:32 |
| 125.124.85.140 | attack | $f2bV_matches |
2020-02-10 19:33:45 |
| 220.170.144.64 | attackspam | Automatic report - SSH Brute-Force Attack |
2020-02-10 20:10:24 |
| 189.146.121.201 | attack | Honeypot attack, port: 81, PTR: dsl-189-146-121-201-dyn.prod-infinitum.com.mx. |
2020-02-10 19:43:06 |