城市(city): unknown
省份(region): unknown
国家(country): Norway
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.133.54.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52244
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;137.133.54.105. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022602 1800 900 604800 86400
;; Query time: 152 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 13:30:50 CST 2025
;; MSG SIZE rcvd: 107Host 105.54.133.137.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 105.54.133.137.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 212.156.132.182 | attack | Dec 23 15:26:36 pi sshd\[18529\]: Failed password for invalid user ident from 212.156.132.182 port 49773 ssh2 Dec 23 15:32:19 pi sshd\[18786\]: Invalid user giacomelli from 212.156.132.182 port 51819 Dec 23 15:32:19 pi sshd\[18786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.132.182 Dec 23 15:32:21 pi sshd\[18786\]: Failed password for invalid user giacomelli from 212.156.132.182 port 51819 ssh2 Dec 23 15:38:05 pi sshd\[19029\]: Invalid user uftp from 212.156.132.182 port 53880 Dec 23 15:38:05 pi sshd\[19029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.132.182 Dec 23 15:38:06 pi sshd\[19029\]: Failed password for invalid user uftp from 212.156.132.182 port 53880 ssh2 Dec 23 15:43:57 pi sshd\[19257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.132.182 user=root Dec 23 15:43:59 pi sshd\[19257\]: Failed password for root ... |
2019-12-24 01:36:12 |
| 121.66.252.158 | attack | Dec 23 17:03:48 MK-Soft-Root1 sshd[11770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.252.158 Dec 23 17:03:51 MK-Soft-Root1 sshd[11770]: Failed password for invalid user biyangka from 121.66.252.158 port 39664 ssh2 ... |
2019-12-24 01:40:00 |
| 184.105.139.103 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-24 01:35:08 |
| 101.36.173.44 | attackspam | Dec 23 09:57:24 web1 postfix/smtpd[410]: warning: unknown[101.36.173.44]: SASL LOGIN authentication failed: authentication failure ... |
2019-12-24 02:03:22 |
| 124.156.50.149 | attackspambots | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-24 01:57:17 |
| 182.74.190.198 | attackbots | Dec 23 18:15:04 vps647732 sshd[31052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.74.190.198 Dec 23 18:15:06 vps647732 sshd[31052]: Failed password for invalid user wimp from 182.74.190.198 port 54544 ssh2 ... |
2019-12-24 01:31:00 |
| 129.211.99.69 | attackbotsspam | Nov 10 09:52:33 yesfletchmain sshd\[26046\]: Invalid user hadoop from 129.211.99.69 port 60904 Nov 10 09:52:33 yesfletchmain sshd\[26046\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.99.69 Nov 10 09:52:34 yesfletchmain sshd\[26046\]: Failed password for invalid user hadoop from 129.211.99.69 port 60904 ssh2 Nov 10 09:58:13 yesfletchmain sshd\[26184\]: User root from 129.211.99.69 not allowed because not listed in AllowUsers Nov 10 09:58:13 yesfletchmain sshd\[26184\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.99.69 user=root ... |
2019-12-24 01:35:23 |
| 218.92.0.158 | attackbotsspam | Dec 23 18:27:51 ks10 sshd[29000]: Failed password for root from 218.92.0.158 port 48265 ssh2 Dec 23 18:27:55 ks10 sshd[29000]: Failed password for root from 218.92.0.158 port 48265 ssh2 ... |
2019-12-24 01:46:46 |
| 124.156.50.158 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-24 01:54:26 |
| 178.165.122.141 | attackspam | scan z |
2019-12-24 01:29:20 |
| 129.211.80.201 | attack | Dec 23 16:56:18 XXX sshd[62334]: Invalid user vagrant from 129.211.80.201 port 38830 |
2019-12-24 01:43:15 |
| 223.71.139.97 | attackspambots | Dec 23 16:47:35 localhost sshd\[74327\]: Invalid user guest from 223.71.139.97 port 48482 Dec 23 16:47:35 localhost sshd\[74327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.71.139.97 Dec 23 16:47:37 localhost sshd\[74327\]: Failed password for invalid user guest from 223.71.139.97 port 48482 ssh2 Dec 23 17:02:09 localhost sshd\[74936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.71.139.97 user=root Dec 23 17:02:11 localhost sshd\[74936\]: Failed password for root from 223.71.139.97 port 57822 ssh2 ... |
2019-12-24 01:34:09 |
| 129.211.75.184 | attack | Nov 29 14:06:07 yesfletchmain sshd\[10589\]: User root from 129.211.75.184 not allowed because not listed in AllowUsers Nov 29 14:06:07 yesfletchmain sshd\[10589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.75.184 user=root Nov 29 14:06:09 yesfletchmain sshd\[10589\]: Failed password for invalid user root from 129.211.75.184 port 49434 ssh2 Nov 29 14:10:33 yesfletchmain sshd\[10756\]: Invalid user server from 129.211.75.184 port 56846 Nov 29 14:10:33 yesfletchmain sshd\[10756\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.75.184 ... |
2019-12-24 01:53:16 |
| 180.180.152.75 | attackbotsspam | 180.180.152.75 - - [23/Dec/2019:09:57:56 -0500] "GET /index.cfm?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&manufacturerID=15&collectionID=161 HTTP/1.1" 200 19267 "https:// /index.cfm?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&manufacturerID=15&collectionID=161" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ... |
2019-12-24 01:31:17 |
| 45.175.179.229 | attackspam | 45.175.179.229 - - [23/Dec/2019:09:57:47 -0500] "GET /index.cfm?page=../../../../../../etc/passwd%00&manufacturerID=15&collectionID=161 HTTP/1.1" 200 19262 "https:// /index.cfm?page=../../../../../../etc/passwd%00&manufacturerID=15&collectionID=161" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ... |
2019-12-24 01:38:11 |