城市(city): unknown
省份(region): unknown
国家(country): Brazil
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.29.12.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61474
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;191.29.12.158. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022800 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 21:37:28 CST 2025
;; MSG SIZE rcvd: 106158.12.29.191.in-addr.arpa domain name pointer 191-29-12-158.user.vivozap.com.br.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
158.12.29.191.in-addr.arpa name = 191-29-12-158.user.vivozap.com.br.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 107.179.13.141 | attack | Aug 21 07:44:01 *** sshd[14360]: User root from 107.179.13.141 not allowed because not listed in AllowUsers |
2020-08-21 17:47:32 |
| 79.129.29.237 | attackbotsspam | Aug 21 05:53:13 ny01 sshd[14977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.129.29.237 Aug 21 05:53:15 ny01 sshd[14977]: Failed password for invalid user bryan from 79.129.29.237 port 49922 ssh2 Aug 21 06:02:30 ny01 sshd[16821]: Failed password for root from 79.129.29.237 port 59766 ssh2 |
2020-08-21 18:13:43 |
| 1.54.133.10 | attack | Aug 21 10:03:33 rush sshd[20820]: Failed password for root from 1.54.133.10 port 49712 ssh2 Aug 21 10:07:57 rush sshd[21025]: Failed password for root from 1.54.133.10 port 49720 ssh2 ... |
2020-08-21 18:26:41 |
| 218.92.0.223 | attackbotsspam | Aug 21 13:27:21 ift sshd\[60589\]: Failed password for root from 218.92.0.223 port 21807 ssh2Aug 21 13:27:31 ift sshd\[60589\]: Failed password for root from 218.92.0.223 port 21807 ssh2Aug 21 13:27:35 ift sshd\[60589\]: Failed password for root from 218.92.0.223 port 21807 ssh2Aug 21 13:27:43 ift sshd\[60607\]: Failed password for root from 218.92.0.223 port 50771 ssh2Aug 21 13:28:17 ift sshd\[60652\]: Failed password for root from 218.92.0.223 port 27938 ssh2 ... |
2020-08-21 18:29:58 |
| 117.5.208.174 | attack | Unauthorised access (Aug 21) SRC=117.5.208.174 LEN=52 TTL=111 ID=7234 DF TCP DPT=445 WINDOW=8192 SYN |
2020-08-21 17:51:01 |
| 178.62.238.152 | attackbotsspam | Aug 21 02:56:13 vm1 sshd[8052]: Did not receive identification string from 178.62.238.152 port 38122 Aug 21 02:56:22 vm1 sshd[8053]: Received disconnect from 178.62.238.152 port 44138:11: Normal Shutdown, Thank you for playing [preauth] Aug 21 02:56:22 vm1 sshd[8053]: Disconnected from 178.62.238.152 port 44138 [preauth] Aug 21 02:56:35 vm1 sshd[8055]: Invalid user oracle from 178.62.238.152 port 43878 Aug 21 02:56:35 vm1 sshd[8055]: Received disconnect from 178.62.238.152 port 43878:11: Normal Shutdown, Thank you for playing [preauth] Aug 21 02:56:35 vm1 sshd[8055]: Disconnected from 178.62.238.152 port 43878 [preauth] Aug 21 02:56:48 vm1 sshd[8057]: Received disconnect from 178.62.238.152 port 43336:11: Normal Shutdown, Thank you for playing [preauth] Aug 21 02:56:48 vm1 sshd[8057]: Disconnected from 178.62.238.152 port 43336 [preauth] Aug 21 02:57:02 vm1 sshd[8059]: Invalid user postgres from 178.62.238.152 port 43036 Aug 21 02:57:02 vm1 sshd[8059]: Received disconne........ ------------------------------- |
2020-08-21 18:08:33 |
| 142.93.179.2 | attackspambots | Invalid user 123 from 142.93.179.2 port 39800 |
2020-08-21 18:01:09 |
| 36.189.253.226 | attackspambots | Aug 21 07:47:34 ip40 sshd[6438]: Failed password for root from 36.189.253.226 port 51728 ssh2 ... |
2020-08-21 18:00:25 |
| 195.122.226.164 | attackbots | Aug 21 10:09:49 eventyay sshd[28284]: Failed password for root from 195.122.226.164 port 41224 ssh2 Aug 21 10:13:58 eventyay sshd[28386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.122.226.164 Aug 21 10:14:00 eventyay sshd[28386]: Failed password for invalid user test from 195.122.226.164 port 15270 ssh2 ... |
2020-08-21 18:04:28 |
| 87.251.74.6 | attackspambots | ... |
2020-08-21 17:47:08 |
| 195.144.21.56 | attackspambots |
|
2020-08-21 17:50:17 |
| 117.92.214.63 | attackspam | Fail2Ban Ban Triggered HTTP SQL Injection Attempt |
2020-08-21 18:14:21 |
| 171.244.36.124 | attack | Aug 21 11:59:06 electroncash sshd[65380]: Invalid user xcc from 171.244.36.124 port 41464 Aug 21 11:59:06 electroncash sshd[65380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.36.124 Aug 21 11:59:06 electroncash sshd[65380]: Invalid user xcc from 171.244.36.124 port 41464 Aug 21 11:59:09 electroncash sshd[65380]: Failed password for invalid user xcc from 171.244.36.124 port 41464 ssh2 Aug 21 12:03:30 electroncash sshd[2610]: Invalid user ghost from 171.244.36.124 port 49078 ... |
2020-08-21 18:32:00 |
| 218.92.0.224 | attackbots | Aug 21 11:45:01 sd-69548 sshd[104895]: Unable to negotiate with 218.92.0.224 port 36205: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Aug 21 12:21:11 sd-69548 sshd[107382]: Unable to negotiate with 218.92.0.224 port 29859: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ... |
2020-08-21 18:23:37 |
| 188.165.230.118 | attackbots | 188.165.230.118 - - [21/Aug/2020:11:27:24 +0100] "POST /wp-login.php HTTP/1.1" 200 5618 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 188.165.230.118 - - [21/Aug/2020:11:28:30 +0100] "POST /wp-login.php HTTP/1.1" 200 5616 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 188.165.230.118 - - [21/Aug/2020:11:29:36 +0100] "POST /wp-login.php HTTP/1.1" 200 5609 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ... |
2020-08-21 18:30:52 |