城市(city): Tokyo
省份(region): Tokyo
国家(country): Japan
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.64.116.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 658
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;54.64.116.138. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025070500 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 05 21:23:05 CST 2025
;; MSG SIZE rcvd: 106b'138.116.64.54.in-addr.arpa domain name pointer ec2-54-64-116-138.ap-northeast-1.compute.amazonaws.com.
'Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
138.116.64.54.in-addr.arpa name = ec2-54-64-116-138.ap-northeast-1.compute.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 202.191.56.159 | attackbotsspam | Apr 5 12:03:04 kmh-wsh-001-nbg03 sshd[10198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.56.159 user=r.r Apr 5 12:03:07 kmh-wsh-001-nbg03 sshd[10198]: Failed password for r.r from 202.191.56.159 port 54214 ssh2 Apr 5 12:03:07 kmh-wsh-001-nbg03 sshd[10198]: Received disconnect from 202.191.56.159 port 54214:11: Bye Bye [preauth] Apr 5 12:03:07 kmh-wsh-001-nbg03 sshd[10198]: Disconnected from 202.191.56.159 port 54214 [preauth] Apr 5 12:22:31 kmh-wsh-001-nbg03 sshd[13386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.56.159 user=r.r Apr 5 12:22:33 kmh-wsh-001-nbg03 sshd[13386]: Failed password for r.r from 202.191.56.159 port 48392 ssh2 Apr 5 12:22:34 kmh-wsh-001-nbg03 sshd[13386]: Received disconnect from 202.191.56.159 port 48392:11: Bye Bye [preauth] Apr 5 12:22:34 kmh-wsh-001-nbg03 sshd[13386]: Disconnected from 202.191.56.159 port 48392 [preauth] Apr 5 1........ ------------------------------- |
2020-04-06 00:09:29 |
| 222.186.175.216 | attack | Apr 5 17:36:47 vpn01 sshd[14826]: Failed password for root from 222.186.175.216 port 24782 ssh2 Apr 5 17:36:51 vpn01 sshd[14826]: Failed password for root from 222.186.175.216 port 24782 ssh2 ... |
2020-04-05 23:48:27 |
| 106.13.236.114 | attackspam | W 5701,/var/log/auth.log,-,- |
2020-04-06 00:05:52 |
| 104.131.91.148 | attackbots | Apr 5 14:42:47 vmd48417 sshd[16057]: Failed password for root from 104.131.91.148 port 34345 ssh2 |
2020-04-06 00:11:50 |
| 106.124.129.115 | attack | Apr 5 14:42:55 *** sshd[15926]: User root from 106.124.129.115 not allowed because not listed in AllowUsers |
2020-04-06 00:14:11 |
| 107.170.18.163 | attackspam | Apr 5 13:43:25 localhost sshd\[7813\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.18.163 user=root Apr 5 13:43:27 localhost sshd\[7813\]: Failed password for root from 107.170.18.163 port 41351 ssh2 Apr 5 13:58:56 localhost sshd\[8098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.18.163 user=root ... |
2020-04-05 23:45:39 |
| 67.225.222.34 | attackbots | Apr 5 20:47:43 our-server-hostname postfix/smtpd[13237]: connect from unknown[67.225.222.34] Apr 5 20:47:44 our-server-hostname postfix/smtpd[13237]: SSL_accept error from unknown[67.225.222.34]: -1 Apr 5 20:47:44 our-server-hostname postfix/smtpd[13237]: lost connection after STARTTLS from unknown[67.225.222.34] Apr 5 20:47:44 our-server-hostname postfix/smtpd[13237]: disconnect from unknown[67.225.222.34] Apr 5 20:47:44 our-server-hostname postfix/smtpd[12809]: connect from unknown[67.225.222.34] Apr x@x Apr 5 20:47:45 our-server-hostname postfix/smtpd[12809]: disconnect from unknown[67.225.222.34] Apr 5 20:54:53 our-server-hostname postfix/smtpd[12865]: connect from unknown[67.225.222.34] Apr 5 20:54:54 our-server-hostname postfix/smtpd[12865]: SSL_accept error from unknown[67.225.222.34]: -1 Apr 5 20:54:54 our-server-hostname postfix/smtpd[12865]: lost connection after STARTTLS from unknown[67.225.222.34] Apr 5 20:54:54 our-server-hostname postfix/smtpd[12........ ------------------------------- |
2020-04-06 00:20:36 |
| 152.245.229.84 | attack | 2020-04-05T14:42:20.637061vfs-server-01 sshd\[2409\]: Invalid user ubnt from 152.245.229.84 port 20339 2020-04-05T14:43:20.737465vfs-server-01 sshd\[2498\]: Invalid user admin from 152.245.229.84 port 20365 2020-04-05T14:43:23.057607vfs-server-01 sshd\[2503\]: Invalid user admin from 152.245.229.84 port 20366 |
2020-04-05 23:34:22 |
| 159.89.82.79 | attackspambots | Automatic report - WordPress Brute Force |
2020-04-06 00:25:02 |
| 122.51.255.162 | attackspam | Apr 5 14:37:19 * sshd[26770]: Failed password for root from 122.51.255.162 port 38894 ssh2 |
2020-04-05 23:53:32 |
| 154.83.16.197 | attackspam | Automatic report BANNED IP |
2020-04-05 23:44:19 |
| 41.41.77.196 | attackspam | Automatic report - Banned IP Access |
2020-04-06 00:17:20 |
| 222.184.101.98 | attackspam | Apr 5 16:05:42 * sshd[5845]: Failed password for root from 222.184.101.98 port 20421 ssh2 |
2020-04-05 23:51:57 |
| 1.194.239.202 | attackspam | (sshd) Failed SSH login from 1.194.239.202 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 5 12:34:06 andromeda sshd[25586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.194.239.202 user=root Apr 5 12:34:08 andromeda sshd[25586]: Failed password for root from 1.194.239.202 port 43406 ssh2 Apr 5 12:42:38 andromeda sshd[26069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.194.239.202 user=root |
2020-04-06 00:15:00 |
| 27.70.222.65 | attack | port scan and connect, tcp 23 (telnet) |
2020-04-05 23:56:16 |