城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.211.141.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31176
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;54.211.141.221. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025010602 1800 900 604800 86400
;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 12:12:14 CST 2025
;; MSG SIZE rcvd: 107
221.141.211.54.in-addr.arpa domain name pointer ec2-54-211-141-221.compute-1.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
221.141.211.54.in-addr.arpa name = ec2-54-211-141-221.compute-1.amazonaws.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 106.12.125.241 | attackbots | Aug 2 14:57:27 * sshd[21085]: Failed password for root from 106.12.125.241 port 48850 ssh2 |
2020-08-02 22:00:47 |
| 49.233.176.98 | attack | Unauthorized connection attempt: bot, scanning, hacking |
2020-08-02 21:56:34 |
| 200.243.21.50 | attack | Aug 2 15:39:28 vps sshd[302408]: Failed password for root from 200.243.21.50 port 60988 ssh2 Aug 2 15:41:10 vps sshd[312879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.243.21.50 user=root Aug 2 15:41:12 vps sshd[312879]: Failed password for root from 200.243.21.50 port 42980 ssh2 Aug 2 15:42:57 vps sshd[318726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.243.21.50 user=root Aug 2 15:42:59 vps sshd[318726]: Failed password for root from 200.243.21.50 port 53211 ssh2 ... |
2020-08-02 21:43:01 |
| 74.102.15.6 | attackspam | *Port Scan* detected from 74.102.15.6 (US/United States/New Jersey/Elmwood Park/pool-74-102-15-6.nwrknj.fios.verizon.net). 4 hits in the last 85 seconds |
2020-08-02 21:35:01 |
| 222.186.30.112 | attack | Aug 2 16:45:34 server2 sshd\[30514\]: User root from 222.186.30.112 not allowed because not listed in AllowUsers Aug 2 16:45:35 server2 sshd\[30510\]: User root from 222.186.30.112 not allowed because not listed in AllowUsers Aug 2 16:45:37 server2 sshd\[30516\]: User root from 222.186.30.112 not allowed because not listed in AllowUsers Aug 2 16:54:12 server2 sshd\[31029\]: User root from 222.186.30.112 not allowed because not listed in AllowUsers Aug 2 16:54:14 server2 sshd\[31033\]: User root from 222.186.30.112 not allowed because not listed in AllowUsers Aug 2 16:54:16 server2 sshd\[31031\]: User root from 222.186.30.112 not allowed because not listed in AllowUsers |
2020-08-02 21:57:34 |
| 101.51.105.149 | attackbotsspam | Attempted Brute Force (dovecot) |
2020-08-02 22:12:58 |
| 157.245.188.231 | attackspam | Attempts to probe for or exploit a Drupal 7.69 site on url: /wp-login.php. Reported by the module https://www.drupal.org/project/abuseipdb. |
2020-08-02 21:48:05 |
| 94.102.51.28 | attackbots | Port scan on 12 port(s): 4238 6485 6975 13261 15304 16060 24529 33184 33366 43525 50603 63254 |
2020-08-02 22:01:44 |
| 49.235.74.226 | attackbotsspam | Aug 2 14:25:44 fhem-rasp sshd[28979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.74.226 user=root Aug 2 14:25:46 fhem-rasp sshd[28979]: Failed password for root from 49.235.74.226 port 51206 ssh2 ... |
2020-08-02 22:13:43 |
| 177.39.142.108 | attack | (smtpauth) Failed SMTP AUTH login from 177.39.142.108 (BR/Brazil/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-02 16:42:40 plain authenticator failed for ([177.39.142.108]) [177.39.142.108]: 535 Incorrect authentication data (set_id=info@mobarezco.com) |
2020-08-02 21:47:40 |
| 222.186.42.7 | attack | Aug 2 09:28:01 NPSTNNYC01T sshd[15249]: Failed password for root from 222.186.42.7 port 36491 ssh2 Aug 2 09:28:11 NPSTNNYC01T sshd[15256]: Failed password for root from 222.186.42.7 port 13281 ssh2 ... |
2020-08-02 21:40:44 |
| 180.69.27.26 | attackspambots | Aug 2 08:08:35 lanister sshd[26773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.69.27.26 user=root Aug 2 08:08:37 lanister sshd[26773]: Failed password for root from 180.69.27.26 port 35408 ssh2 Aug 2 08:12:54 lanister sshd[26882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.69.27.26 user=root Aug 2 08:12:57 lanister sshd[26882]: Failed password for root from 180.69.27.26 port 46496 ssh2 |
2020-08-02 21:38:24 |
| 192.35.169.20 | attackspam | 02-Aug-2020 08:22:34.923 client @0x7f3246e52f60 192.35.169.20#7282 (213.1.168.192.in-addr.arpa): query (cache) '213.1.168.192.in-addr.arpa/PTR/IN' denied |
2020-08-02 21:45:53 |
| 222.186.15.62 | attackbotsspam | Aug 2 15:30:16 freya sshd[19224]: Disconnected from authenticating user root 222.186.15.62 port 18089 [preauth] ... |
2020-08-02 21:34:03 |
| 172.104.242.173 | attack |
|
2020-08-02 21:49:26 |