城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.154.113.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60513
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.154.113.74. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022802 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 06:44:48 CST 2025
;; MSG SIZE rcvd: 106
Host 74.113.154.13.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 74.113.154.13.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 222.186.30.152 | attack | 2019-09-26T12:08:41.936413enmeeting.mahidol.ac.th sshd\[8300\]: User root from 222.186.30.152 not allowed because not listed in AllowUsers 2019-09-26T12:08:42.313236enmeeting.mahidol.ac.th sshd\[8300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.152 user=root 2019-09-26T12:08:44.830098enmeeting.mahidol.ac.th sshd\[8300\]: Failed password for invalid user root from 222.186.30.152 port 21881 ssh2 ... |
2019-09-26 13:15:43 |
| 72.53.65.61 | attack | HTTP wp-login.php - 72-53-65-61.cpe.distributel.net |
2019-09-26 13:46:00 |
| 36.103.228.252 | attackspam | Sep 25 19:00:59 eddieflores sshd\[8314\]: Invalid user us from 36.103.228.252 Sep 25 19:00:59 eddieflores sshd\[8314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.103.228.252 Sep 25 19:01:01 eddieflores sshd\[8314\]: Failed password for invalid user us from 36.103.228.252 port 57748 ssh2 Sep 25 19:07:22 eddieflores sshd\[8797\]: Invalid user admin from 36.103.228.252 Sep 25 19:07:22 eddieflores sshd\[8797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.103.228.252 |
2019-09-26 13:10:54 |
| 45.79.44.115 | attackbotsspam | Port Scan: UDP/19 |
2019-09-26 13:18:20 |
| 129.204.147.102 | attackspam | $f2bV_matches |
2019-09-26 13:44:47 |
| 111.230.112.37 | attack | Sep 26 07:13:27 plex sshd[19743]: Invalid user odoo from 111.230.112.37 port 38182 |
2019-09-26 13:21:29 |
| 208.187.167.78 | attackbotsspam | Sent mail to target address hacked/leaked from abandonia in 2016 |
2019-09-26 12:59:47 |
| 37.49.224.137 | attackspambots | *Port Scan* detected from 37.49.224.137 (NL/Netherlands/-). 4 hits in the last 256 seconds |
2019-09-26 13:46:30 |
| 139.199.6.107 | attackspam | Sep 26 06:27:31 [host] sshd[17880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 user=root Sep 26 06:27:33 [host] sshd[17880]: Failed password for root from 139.199.6.107 port 49600 ssh2 Sep 26 06:30:17 [host] sshd[17895]: Invalid user ew from 139.199.6.107 |
2019-09-26 12:58:09 |
| 184.105.139.67 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-09-26 13:42:39 |
| 117.63.242.123 | attack | Unauthorised access (Sep 26) SRC=117.63.242.123 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=20647 TCP DPT=8080 WINDOW=18302 SYN Unauthorised access (Sep 25) SRC=117.63.242.123 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=35807 TCP DPT=8080 WINDOW=30630 SYN Unauthorised access (Sep 24) SRC=117.63.242.123 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=28767 TCP DPT=8080 WINDOW=30630 SYN Unauthorised access (Sep 24) SRC=117.63.242.123 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=33228 TCP DPT=8080 WINDOW=30630 SYN |
2019-09-26 13:19:15 |
| 132.145.170.174 | attack | 2019-09-26T05:52:06.237711lon01.zurich-datacenter.net sshd\[5171\]: Invalid user aj from 132.145.170.174 port 48904 2019-09-26T05:52:06.244310lon01.zurich-datacenter.net sshd\[5171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 2019-09-26T05:52:08.143705lon01.zurich-datacenter.net sshd\[5171\]: Failed password for invalid user aj from 132.145.170.174 port 48904 ssh2 2019-09-26T05:56:13.805076lon01.zurich-datacenter.net sshd\[5241\]: Invalid user jhshin from 132.145.170.174 port 33958 2019-09-26T05:56:13.813637lon01.zurich-datacenter.net sshd\[5241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 ... |
2019-09-26 13:16:21 |
| 52.172.44.97 | attackspam | Sep 26 07:18:36 vps691689 sshd[7254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.44.97 Sep 26 07:18:37 vps691689 sshd[7254]: Failed password for invalid user 123 from 52.172.44.97 port 42180 ssh2 Sep 26 07:23:23 vps691689 sshd[7302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.44.97 ... |
2019-09-26 13:40:11 |
| 71.6.167.142 | attackspam | 3389BruteforceFW23 |
2019-09-26 13:11:58 |
| 222.186.15.160 | attackspam | Sep 26 07:24:20 dcd-gentoo sshd[24239]: User root from 222.186.15.160 not allowed because none of user's groups are listed in AllowGroups Sep 26 07:24:23 dcd-gentoo sshd[24239]: error: PAM: Authentication failure for illegal user root from 222.186.15.160 Sep 26 07:24:20 dcd-gentoo sshd[24239]: User root from 222.186.15.160 not allowed because none of user's groups are listed in AllowGroups Sep 26 07:24:23 dcd-gentoo sshd[24239]: error: PAM: Authentication failure for illegal user root from 222.186.15.160 Sep 26 07:24:20 dcd-gentoo sshd[24239]: User root from 222.186.15.160 not allowed because none of user's groups are listed in AllowGroups Sep 26 07:24:23 dcd-gentoo sshd[24239]: error: PAM: Authentication failure for illegal user root from 222.186.15.160 Sep 26 07:24:23 dcd-gentoo sshd[24239]: Failed keyboard-interactive/pam for invalid user root from 222.186.15.160 port 36556 ssh2 ... |
2019-09-26 13:29:09 |