3.16.42.140 - IPInfo

基本信息:

城市(city): Columbus

省份(region): Ohio

国家(country): United States

运营商(isp): Amazon Technologies Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	mue-0 : Trying access unauthorized files=>/images/jdownloads/screenshots/update.php()	2020-07-22 07:00:30

相同子网IP讨论:

IP	类型	评论内容	时间
3.16.42.11	attackbotsspam	mue-Direct access to plugin not allowed	2020-08-02 06:43:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.16.42.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36120
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;3.16.42.140.			IN	A

;; AUTHORITY SECTION:
.			387	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072102 1800 900 604800 86400

;; Query time: 302 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 22 07:00:26 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

140.42.16.3.in-addr.arpa domain name pointer ec2-3-16-42-140.us-east-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.42.16.3.in-addr.arpa	name = ec2-3-16-42-140.us-east-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.252.21.138	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:23.	2019-10-07 14:56:19
177.19.238.230	attackspam	T: f2b postfix aggressive 3x	2019-10-07 14:50:34
125.59.204.26	attackspam	firewall-block, port(s): 8000/tcp	2019-10-07 15:08:21
193.70.0.93	attack	Oct 7 07:18:49 OPSO sshd\[32311\]: Invalid user P4sswort!qaz from 193.70.0.93 port 33398 Oct 7 07:18:49 OPSO sshd\[32311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.0.93 Oct 7 07:18:50 OPSO sshd\[32311\]: Failed password for invalid user P4sswort!qaz from 193.70.0.93 port 33398 ssh2 Oct 7 07:22:44 OPSO sshd\[621\]: Invalid user Centos1@3 from 193.70.0.93 port 44836 Oct 7 07:22:44 OPSO sshd\[621\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.0.93	2019-10-07 14:30:03
190.1.131.212	attackspam	Automatic report - SSH Brute-Force Attack	2019-10-07 15:07:36
14.162.31.76	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:20.	2019-10-07 15:02:51
50.87.248.100	attack	rumsingen.mit-polly.de 50.87.248.100 \[07/Oct/2019:05:50:12 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 3563 "-" "Mozilla/5.0 $Windows\; U\; Windows NT 5.1\; en-US\; rv:1.9.0.1$ Gecko/2008070208 Firefox/3.0.1" rumsingen.mit-polly.de 50.87.248.100 \[07/Oct/2019:05:50:16 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 3563 "-" "Mozilla/5.0 $Windows\; U\; Windows NT 5.1\; en-US\; rv:1.9.0.1$ Gecko/2008070208 Firefox/3.0.1"	2019-10-07 15:05:22
218.92.0.155	attackspambots	Oct 6 20:26:02 hanapaa sshd\[2100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.155 user=root Oct 6 20:26:04 hanapaa sshd\[2100\]: Failed password for root from 218.92.0.155 port 2276 ssh2 Oct 6 20:26:20 hanapaa sshd\[2118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.155 user=root Oct 6 20:26:21 hanapaa sshd\[2118\]: Failed password for root from 218.92.0.155 port 20823 ssh2 Oct 6 20:26:37 hanapaa sshd\[2139\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.155 user=root	2019-10-07 14:40:32
180.251.191.173	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:22.	2019-10-07 14:58:08
165.227.53.38	attackbotsspam	Oct 7 06:24:48 web8 sshd\[3264\]: Invalid user Serveur123 from 165.227.53.38 Oct 7 06:24:48 web8 sshd\[3264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.53.38 Oct 7 06:24:51 web8 sshd\[3264\]: Failed password for invalid user Serveur123 from 165.227.53.38 port 52058 ssh2 Oct 7 06:29:23 web8 sshd\[5716\]: Invalid user Haslo@12345 from 165.227.53.38 Oct 7 06:29:23 web8 sshd\[5716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.53.38	2019-10-07 14:31:26
14.185.80.214	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:20.	2019-10-07 15:01:29
128.71.137.99	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:19.	2019-10-07 15:02:13
218.92.0.211	attack	$f2bV_matches	2019-10-07 14:43:54
185.13.32.112	attackspambots	B: Magento admin pass test (wrong country)	2019-10-07 14:59:18
194.156.125.33	attackspam	5.486.645,80-13/04 [bc18/m112] concatform PostRequest-Spammer scoring: Lusaka01	2019-10-07 14:49:38

最近上报的IP列表

72.49.231.46	213.125.172.128	37.231.34.144	189.43.227.150
104.42.170.101	190.80.76.242	35.184.73.158	49.143.152.33
108.25.243.193	84.56.118.178	194.237.79.153	185.72.2.139
204.228.209.27	185.145.201.90	75.242.26.191	222.212.68.110
182.125.6.89	94.74.200.208	222.226.170.129	220.135.219.205