城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 56.137.137.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50622
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;56.137.137.4. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021102 1800 900 604800 86400
;; Query time: 214 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 06:00:59 CST 2025
;; MSG SIZE rcvd: 1054.137.137.56.in-addr.arpa domain name pointer ec2-56-137-137-4.us-gov-west-1.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
4.137.137.56.in-addr.arpa name = ec2-56-137-137-4.us-gov-west-1.compute.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 59.25.197.142 | attackbotsspam | Nov 17 23:42:41 amit sshd\[15402\]: Invalid user spice from 59.25.197.142 Nov 17 23:42:41 amit sshd\[15402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.25.197.142 Nov 17 23:42:43 amit sshd\[15402\]: Failed password for invalid user spice from 59.25.197.142 port 42440 ssh2 ... |
2019-11-18 07:53:43 |
| 222.186.180.6 | attackbots | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Failed password for root from 222.186.180.6 port 19934 ssh2 Failed password for root from 222.186.180.6 port 19934 ssh2 Failed password for root from 222.186.180.6 port 19934 ssh2 Failed password for root from 222.186.180.6 port 19934 ssh2 |
2019-11-18 07:44:18 |
| 1.165.114.53 | attackbotsspam | Unauthorised access (Nov 18) SRC=1.165.114.53 LEN=40 PREC=0x20 TTL=51 ID=61518 TCP DPT=23 WINDOW=52514 SYN |
2019-11-18 07:56:07 |
| 78.47.198.174 | attackspam | 78.47.198.174 - - [17/Nov/2019:23:42:27 +0100] "GET /awstats.pl?config=oraux.pnzone.net&lang=de&output=allrobots HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.6) Gecko/20070725 Firefox/2.0.0.6" |
2019-11-18 08:00:19 |
| 42.177.161.195 | attackbots | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/42.177.161.195/ CN - 1H : (808) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 42.177.161.195 CIDR : 42.176.0.0/13 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 ATTACKS DETECTED ASN4837 : 1H - 12 3H - 30 6H - 73 12H - 142 24H - 285 DateTime : 2019-11-17 23:42:26 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-18 07:59:12 |
| 77.40.58.66 | attackspambots | 11/18/2019-01:08:37.195127 77.40.58.66 Protocol: 6 SURICATA SMTP tls rejected |
2019-11-18 08:12:21 |
| 187.111.222.22 | attackbotsspam | Nov 17 22:43:06 l02a sshd[19478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.111.222.22 user=root Nov 17 22:43:07 l02a sshd[19478]: Failed password for root from 187.111.222.22 port 35203 ssh2 Nov 17 22:43:09 l02a sshd[19478]: Failed password for root from 187.111.222.22 port 35203 ssh2 Nov 17 22:43:06 l02a sshd[19478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.111.222.22 user=root Nov 17 22:43:07 l02a sshd[19478]: Failed password for root from 187.111.222.22 port 35203 ssh2 Nov 17 22:43:09 l02a sshd[19478]: Failed password for root from 187.111.222.22 port 35203 ssh2 |
2019-11-18 07:46:32 |
| 94.39.248.119 | attackspam | Lines containing failures of 94.39.248.119 Nov 11 02:16:15 shared02 sshd[32532]: Invalid user ofsaa from 94.39.248.119 port 63134 Nov 11 02:16:15 shared02 sshd[32532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.39.248.119 Nov 11 02:16:17 shared02 sshd[32532]: Failed password for invalid user ofsaa from 94.39.248.119 port 63134 ssh2 Nov 11 02:16:18 shared02 sshd[32532]: Received disconnect from 94.39.248.119 port 63134:11: Bye Bye [preauth] Nov 11 02:16:18 shared02 sshd[32532]: Disconnected from invalid user ofsaa 94.39.248.119 port 63134 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=94.39.248.119 |
2019-11-18 08:02:14 |
| 178.128.148.115 | attack | 178.128.148.115 - - \[17/Nov/2019:23:42:06 +0100\] "POST /wp-login.php HTTP/1.0" 200 5707 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 178.128.148.115 - - \[17/Nov/2019:23:42:11 +0100\] "POST /wp-login.php HTTP/1.0" 200 5707 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 178.128.148.115 - - \[17/Nov/2019:23:42:15 +0100\] "POST /wp-login.php HTTP/1.0" 200 5707 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-11-18 08:02:46 |
| 193.31.24.113 | attackbotsspam | 11/18/2019-01:14:47.287770 193.31.24.113 Protocol: 6 ET GAMES MINECRAFT Server response outbound |
2019-11-18 08:17:48 |
| 177.38.10.234 | attack | Automatic report - Port Scan Attack |
2019-11-18 08:06:41 |
| 185.176.27.54 | attackbots | 11/17/2019-23:43:13.880065 185.176.27.54 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-11-18 07:44:42 |
| 110.219.106.149 | attack | Bad bot/spoofed identity |
2019-11-18 08:05:35 |
| 49.88.112.90 | attack | fire |
2019-11-18 07:52:43 |
| 217.174.11.92 | attackspam | Port Scan 1433 |
2019-11-18 08:17:30 |