城市(city): Ashburn
省份(region): Virginia
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.23.94.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36774
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;52.23.94.1. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 10:19:00 CST 2025
;; MSG SIZE rcvd: 103
1.94.23.52.in-addr.arpa domain name pointer ec2-52-23-94-1.compute-1.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
1.94.23.52.in-addr.arpa name = ec2-52-23-94-1.compute-1.amazonaws.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 209.97.176.152 | attackbots | Jun 24 22:50:13 em3 sshd[12635]: Invalid user windows from 209.97.176.152 Jun 24 22:50:13 em3 sshd[12635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.176.152 Jun 24 22:50:14 em3 sshd[12635]: Failed password for invalid user windows from 209.97.176.152 port 44688 ssh2 Jun 24 22:53:17 em3 sshd[12638]: Invalid user mwkamau from 209.97.176.152 Jun 24 22:53:17 em3 sshd[12638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.176.152 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=209.97.176.152 |
2019-06-27 12:41:34 |
| 49.67.68.89 | attackspambots | 2019-06-27T02:03:58.175812 X postfix/smtpd[50937]: warning: unknown[49.67.68.89]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T04:19:12.164805 X postfix/smtpd[5306]: warning: unknown[49.67.68.89]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T05:53:05.469466 X postfix/smtpd[24060]: warning: unknown[49.67.68.89]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-06-27 12:43:03 |
| 165.22.249.42 | attack | Jun 27 05:38:15 mail sshd[1558]: Invalid user jake from 165.22.249.42 Jun 27 05:38:15 mail sshd[1558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.249.42 Jun 27 05:38:15 mail sshd[1558]: Invalid user jake from 165.22.249.42 Jun 27 05:38:16 mail sshd[1558]: Failed password for invalid user jake from 165.22.249.42 port 33344 ssh2 Jun 27 05:53:39 mail sshd[3450]: Invalid user mythtv from 165.22.249.42 ... |
2019-06-27 12:22:51 |
| 45.55.231.94 | attack | Jun 27 05:50:44 ovpn sshd\[3478\]: Invalid user vnc from 45.55.231.94 Jun 27 05:50:44 ovpn sshd\[3478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Jun 27 05:50:46 ovpn sshd\[3478\]: Failed password for invalid user vnc from 45.55.231.94 port 45180 ssh2 Jun 27 05:53:47 ovpn sshd\[3485\]: Invalid user teacher from 45.55.231.94 Jun 27 05:53:47 ovpn sshd\[3485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 |
2019-06-27 12:18:48 |
| 114.232.72.160 | attackspam | 2019-06-27T04:43:51.381345 X postfix/smtpd[14637]: warning: unknown[114.232.72.160]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T05:53:02.249077 X postfix/smtpd[23785]: warning: unknown[114.232.72.160]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T05:53:29.069228 X postfix/smtpd[24060]: warning: unknown[114.232.72.160]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-06-27 12:29:34 |
| 103.238.146.27 | attackbotsspam | Jun 27 05:53:25 mail kernel: \[653149.445054\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=103.238.146.27 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=16889 DF PROTO=TCP SPT=58110 DPT=65530 WINDOW=8192 RES=0x00 SYN URGP=0 Jun 27 05:53:28 mail kernel: \[653152.442562\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=103.238.146.27 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=8000 DF PROTO=TCP SPT=58110 DPT=65530 WINDOW=8192 RES=0x00 SYN URGP=0 Jun 27 05:53:34 mail kernel: \[653158.445629\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=103.238.146.27 DST=91.205.173.180 LEN=48 TOS=0x00 PREC=0x00 TTL=112 ID=17006 DF PROTO=TCP SPT=58110 DPT=65530 WINDOW=65535 RES=0x00 SYN URGP=0 |
2019-06-27 12:25:06 |
| 14.231.165.214 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-27 03:38:32,689 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.231.165.214) |
2019-06-27 12:14:41 |
| 41.110.185.2 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-27 03:16:50,764 INFO [shellcode_manager] (41.110.185.2) no match, writing hexdump (88554fa732798e44629d7405f758be9d :1816309) - MS17010 (EternalBlue) |
2019-06-27 12:17:18 |
| 165.227.209.96 | attackspambots | Jun 27 05:54:00 ArkNodeAT sshd\[16970\]: Invalid user contact from 165.227.209.96 Jun 27 05:54:00 ArkNodeAT sshd\[16970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.209.96 Jun 27 05:54:02 ArkNodeAT sshd\[16970\]: Failed password for invalid user contact from 165.227.209.96 port 57646 ssh2 |
2019-06-27 12:11:20 |
| 54.39.18.237 | attackbots | Jun 27 04:15:39 MK-Soft-VM4 sshd\[25887\]: Invalid user ftp from 54.39.18.237 port 54882 Jun 27 04:15:39 MK-Soft-VM4 sshd\[25887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.18.237 Jun 27 04:15:40 MK-Soft-VM4 sshd\[25887\]: Failed password for invalid user ftp from 54.39.18.237 port 54882 ssh2 ... |
2019-06-27 12:33:42 |
| 198.20.180.70 | attackspam | 3,13-04/04 concatform PostRequest-Spammer scoring: wien2018 |
2019-06-27 12:12:19 |
| 218.92.0.207 | attackspambots | Jun 27 00:19:14 plusreed sshd[4251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.207 user=root Jun 27 00:19:16 plusreed sshd[4251]: Failed password for root from 218.92.0.207 port 54751 ssh2 ... |
2019-06-27 12:19:48 |
| 121.7.127.92 | attack | 2019-06-27T05:52:05.829370stark.klein-stark.info sshd\[31376\]: Invalid user spamers from 121.7.127.92 port 53697 2019-06-27T05:52:05.835088stark.klein-stark.info sshd\[31376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bb121-7-127-92.singnet.com.sg 2019-06-27T05:52:08.384895stark.klein-stark.info sshd\[31376\]: Failed password for invalid user spamers from 121.7.127.92 port 53697 ssh2 ... |
2019-06-27 12:35:32 |
| 220.189.119.8 | attackspambots | Jun 27 05:53:56 Ubuntu-1404-trusty-64-minimal sshd\[821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.189.119.8 user=root Jun 27 05:53:57 Ubuntu-1404-trusty-64-minimal sshd\[821\]: Failed password for root from 220.189.119.8 port 43276 ssh2 Jun 27 05:54:00 Ubuntu-1404-trusty-64-minimal sshd\[821\]: Failed password for root from 220.189.119.8 port 43276 ssh2 Jun 27 05:54:02 Ubuntu-1404-trusty-64-minimal sshd\[821\]: Failed password for root from 220.189.119.8 port 43276 ssh2 Jun 27 05:54:04 Ubuntu-1404-trusty-64-minimal sshd\[821\]: Failed password for root from 220.189.119.8 port 43276 ssh2 |
2019-06-27 12:09:16 |
| 222.184.179.244 | attack | 2019-06-27T02:34:22.070068 X postfix/smtpd[54600]: warning: unknown[222.184.179.244]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T02:44:52.186813 X postfix/smtpd[55873]: warning: unknown[222.184.179.244]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T05:53:13.151300 X postfix/smtpd[24060]: warning: unknown[222.184.179.244]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-06-27 12:38:36 |