城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.199.41.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21959
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;34.199.41.125. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012200 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 00:08:46 CST 2025
;; MSG SIZE rcvd: 106125.41.199.34.in-addr.arpa domain name pointer ec2-34-199-41-125.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
125.41.199.34.in-addr.arpa name = ec2-34-199-41-125.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 118.89.135.215 | attackspam | Automatic report - Banned IP Access |
2019-10-31 08:13:21 |
| 106.255.84.110 | attack | Oct 29 21:48:25 pl1server sshd[21761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.255.84.110 user=r.r Oct 29 21:48:28 pl1server sshd[21761]: Failed password for r.r from 106.255.84.110 port 41922 ssh2 Oct 29 21:48:28 pl1server sshd[21761]: Received disconnect from 106.255.84.110: 11: Bye Bye [preauth] Oct 29 22:11:42 pl1server sshd[26241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.255.84.110 user=r.r Oct 29 22:11:44 pl1server sshd[26241]: Failed password for r.r from 106.255.84.110 port 39802 ssh2 Oct 29 22:11:44 pl1server sshd[26241]: Received disconnect from 106.255.84.110: 11: Bye Bye [preauth] Oct 29 22:15:55 pl1server sshd[27012]: Invalid user comut from 106.255.84.110 Oct 29 22:15:55 pl1server sshd[27012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.255.84.110 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?i |
2019-10-31 08:34:38 |
| 218.86.123.242 | attackspambots | [Aegis] @ 2019-10-30 21:23:44 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack |
2019-10-31 08:09:06 |
| 121.204.143.153 | attackbots | Oct 30 22:19:10 server sshd\[23858\]: User root from 121.204.143.153 not allowed because listed in DenyUsers Oct 30 22:19:10 server sshd\[23858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.143.153 user=root Oct 30 22:19:12 server sshd\[23858\]: Failed password for invalid user root from 121.204.143.153 port 44508 ssh2 Oct 30 22:23:47 server sshd\[25416\]: User root from 121.204.143.153 not allowed because listed in DenyUsers Oct 30 22:23:47 server sshd\[25416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.143.153 user=root |
2019-10-31 08:11:06 |
| 201.47.158.130 | attack | Oct 31 04:57:26 ns381471 sshd[12018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.47.158.130 Oct 31 04:57:29 ns381471 sshd[12018]: Failed password for invalid user test from 201.47.158.130 port 42764 ssh2 |
2019-10-31 12:08:47 |
| 170.253.228.97 | attack | Automatic report - Port Scan Attack |
2019-10-31 08:29:03 |
| 177.207.1.74 | attack | Automatic report - Port Scan Attack |
2019-10-31 12:08:01 |
| 128.199.184.127 | attackbotsspam | 2019-10-30T20:48:21.524459shield sshd\[29343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.184.127 user=root 2019-10-30T20:48:23.212123shield sshd\[29343\]: Failed password for root from 128.199.184.127 port 48234 ssh2 2019-10-30T20:51:58.631598shield sshd\[29772\]: Invalid user mysql from 128.199.184.127 port 54012 2019-10-30T20:51:58.636237shield sshd\[29772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.184.127 2019-10-30T20:52:01.116350shield sshd\[29772\]: Failed password for invalid user mysql from 128.199.184.127 port 54012 ssh2 |
2019-10-31 08:19:45 |
| 27.111.85.60 | attack | Oct 30 22:27:43 MK-Soft-VM6 sshd[18678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.111.85.60 Oct 30 22:27:45 MK-Soft-VM6 sshd[18678]: Failed password for invalid user mathlida from 27.111.85.60 port 56457 ssh2 ... |
2019-10-31 08:09:48 |
| 164.132.81.106 | attack | Oct 30 18:40:18 TORMINT sshd\[23827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.81.106 user=root Oct 30 18:40:20 TORMINT sshd\[23827\]: Failed password for root from 164.132.81.106 port 35064 ssh2 Oct 30 18:43:42 TORMINT sshd\[23974\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.81.106 user=root ... |
2019-10-31 08:14:30 |
| 185.234.219.66 | attack | v+mailserver-auth-slow-bruteforce |
2019-10-31 08:20:39 |
| 199.249.230.89 | attack | Automatic report - Banned IP Access |
2019-10-31 12:07:21 |
| 218.92.0.191 | attackbots | Oct 31 01:11:53 legacy sshd[24141]: Failed password for root from 218.92.0.191 port 38936 ssh2 Oct 31 01:13:49 legacy sshd[24217]: Failed password for root from 218.92.0.191 port 61166 ssh2 ... |
2019-10-31 08:15:58 |
| 85.93.20.92 | attackbotsspam | 191030 19:51:32 \[Warning\] Access denied for user 'root'@'85.93.20.92' \(using password: YES\) 191030 21:49:18 \[Warning\] Access denied for user 'root'@'85.93.20.92' \(using password: YES\) 191030 23:47:28 \[Warning\] Access denied for user 'root'@'85.93.20.92' \(using password: YES\) ... |
2019-10-31 12:04:39 |
| 222.186.175.140 | attack | Oct 31 05:12:41 gw1 sshd[4910]: Failed password for root from 222.186.175.140 port 7362 ssh2 Oct 31 05:12:57 gw1 sshd[4910]: error: maximum authentication attempts exceeded for root from 222.186.175.140 port 7362 ssh2 [preauth] ... |
2019-10-31 08:19:19 |