城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.251.150.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43979
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.251.150.42. IN A
;; AUTHORITY SECTION:
. 145 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400
;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:21:22 CST 2022
;; MSG SIZE rcvd: 10642.150.251.13.in-addr.arpa domain name pointer ec2-13-251-150-42.ap-southeast-1.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
42.150.251.13.in-addr.arpa name = ec2-13-251-150-42.ap-southeast-1.compute.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 151.236.59.142 | attack | 2020-10-04T01:05:20.422209morrigan.ad5gb.com sshd[829083]: Failed password for invalid user nisec from 151.236.59.142 port 59398 ssh2 |
2020-10-05 13:23:55 |
| 114.67.104.59 | attackspambots | Oct 5 01:17:00 mellenthin sshd[11159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.59 user=root Oct 5 01:17:02 mellenthin sshd[11159]: Failed password for invalid user root from 114.67.104.59 port 37250 ssh2 |
2020-10-05 13:17:34 |
| 35.153.140.226 | attackbotsspam | Oct 4 22:16:34 CT721 sshd[31937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.153.140.226 user=r.r Oct 4 22:16:35 CT721 sshd[31937]: Failed password for r.r from 35.153.140.226 port 42934 ssh2 Oct 4 22:16:35 CT721 sshd[31937]: Received disconnect from 35.153.140.226 port 42934:11: Bye Bye [preauth] Oct 4 22:16:35 CT721 sshd[31937]: Disconnected from 35.153.140.226 port 42934 [preauth] Oct 4 22:30:02 CT721 sshd[32159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.153.140.226 user=r.r Oct 4 22:30:04 CT721 sshd[32159]: Failed password for r.r from 35.153.140.226 port 43942 ssh2 Oct 4 22:30:04 CT721 sshd[32159]: Received disconnect from 35.153.140.226 port 43942:11: Bye Bye [preauth] Oct 4 22:30:04 CT721 sshd[32159]: Disconnected from 35.153.140.226 port 43942 [preauth] Oct 4 22:34:30 CT721 sshd[32238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tt........ ------------------------------- |
2020-10-05 13:14:31 |
| 139.155.82.193 | attack | SSH/22 MH Probe, BF, Hack - |
2020-10-05 13:01:56 |
| 183.232.228.66 | attackspambots | Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-10-04T20:58:56Z |
2020-10-05 13:22:37 |
| 103.105.59.80 | attackbotsspam | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-10-05 13:26:22 |
| 89.165.2.239 | attackbots | Oct 4 23:48:54 Ubuntu-1404-trusty-64-minimal sshd\[21845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.165.2.239 user=root Oct 4 23:48:55 Ubuntu-1404-trusty-64-minimal sshd\[21845\]: Failed password for root from 89.165.2.239 port 56564 ssh2 Oct 5 00:03:20 Ubuntu-1404-trusty-64-minimal sshd\[3066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.165.2.239 user=root Oct 5 00:03:22 Ubuntu-1404-trusty-64-minimal sshd\[3066\]: Failed password for root from 89.165.2.239 port 40917 ssh2 Oct 5 00:06:12 Ubuntu-1404-trusty-64-minimal sshd\[4027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.165.2.239 user=root |
2020-10-05 13:21:21 |
| 167.114.98.229 | attackspambots | 167.114.98.229 (CA/Canada/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 5 00:05:23 jbs1 sshd[17396]: Failed password for root from 85.60.193.225 port 34710 ssh2 Oct 5 00:05:55 jbs1 sshd[17568]: Failed password for root from 167.114.98.229 port 40082 ssh2 Oct 5 00:12:11 jbs1 sshd[19311]: Failed password for root from 167.114.98.229 port 36288 ssh2 Oct 5 00:08:56 jbs1 sshd[18324]: Failed password for root from 104.224.171.39 port 37460 ssh2 Oct 5 00:12:36 jbs1 sshd[19378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.1.75 user=root IP Addresses Blocked: 85.60.193.225 (ES/Spain/-) |
2020-10-05 13:19:02 |
| 141.212.123.185 | attackspambots | Blocked by Sophos UTM Network Protection . / / proto=17 . srcport=45667 . dstport=53 DNS . (3556) |
2020-10-05 13:04:54 |
| 83.103.150.72 | attackspam | Oct 5 06:28:13 server sshd[37321]: Failed password for root from 83.103.150.72 port 32802 ssh2 Oct 5 06:32:03 server sshd[38067]: Failed password for root from 83.103.150.72 port 35528 ssh2 Oct 5 06:35:56 server sshd[38885]: Failed password for root from 83.103.150.72 port 38268 ssh2 |
2020-10-05 13:10:04 |
| 71.6.233.75 | attackspambots | [N3.H3.VM3] Port Scanner Detected Blocked by UFW |
2020-10-05 13:06:38 |
| 14.254.182.145 | attackbots | 445/tcp 445/tcp [2020-10-04]2pkt |
2020-10-05 13:29:32 |
| 195.58.56.170 | attackbots | 445/tcp 445/tcp [2020-10-02]2pkt |
2020-10-05 13:01:36 |
| 123.235.149.165 | attack | Automatic report - Banned IP Access |
2020-10-05 12:55:28 |
| 112.85.42.186 | attack | Oct 5 10:27:58 dhoomketu sshd[3567976]: Failed password for root from 112.85.42.186 port 19111 ssh2 Oct 5 10:29:01 dhoomketu sshd[3568008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root Oct 5 10:29:04 dhoomketu sshd[3568008]: Failed password for root from 112.85.42.186 port 38671 ssh2 Oct 5 10:30:12 dhoomketu sshd[3568021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root Oct 5 10:30:14 dhoomketu sshd[3568021]: Failed password for root from 112.85.42.186 port 52523 ssh2 ... |
2020-10-05 13:03:44 |