城市(city): unknown
省份(region): unknown
国家(country): None
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.168.14.36 | attackspambots | Found on Blocklist de / proto=6 . srcport=42398 . dstport=22 SSH . (991) |
2020-10-07 02:37:31 |
| 104.168.14.36 | attackbots | Found on Blocklist de / proto=6 . srcport=42398 . dstport=22 SSH . (991) |
2020-10-06 18:34:54 |
| 104.168.14.122 | attack |
|
2020-08-31 08:30:32 |
| 104.168.141.181 | attack | Email spam message |
2020-06-24 21:18:29 |
| 104.168.142.194 | attackbotsspam | port 23 |
2020-06-20 04:42:22 |
| 104.168.141.201 | attackbots | TCP Port: 25 invalid blocked abuseat-org also barracuda and zen-spamhaus (282) |
2020-06-02 08:12:47 |
| 104.168.145.99 | attackspam | $f2bV_matches |
2020-05-26 05:07:13 |
| 104.168.142.227 | attackbots | lfd: (smtpauth) Failed SMTP AUTH login from 104.168.142.227 (hwsrv-273223.hostwindsdns.com): 5 in the last 3600 secs - Fri Jun 22 19:11:59 2018 |
2020-04-30 13:06:04 |
| 104.168.148.42 | attackspambots | Lines containing failures of 104.168.148.42 Apr 19 08:13:27 UTC__SANYALnet-Labs__cac12 sshd[19340]: Connection from 104.168.148.42 port 48714 on 45.62.253.138 port 22 Apr 19 08:13:28 UTC__SANYALnet-Labs__cac12 sshd[19340]: Invalid user ch from 104.168.148.42 port 48714 Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Failed password for invalid user ch from 104.168.148.42 port 48714 ssh2 Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Received disconnect from 104.168.148.42 port 48714:11: Bye Bye [preauth] Apr 19 08:13:30 UTC__SANYALnet-Labs__cac12 sshd[19340]: Disconnected from 104.168.148.42 port 48714 [preauth] Apr 19 08:24:40 UTC__SANYALnet-Labs__cac12 sshd[19617]: Connection from 104.168.148.42 port 49250 on 45.62.253.138 port 22 Apr 19 08:24:44 UTC__SANYALnet-Labs__cac12 sshd[19617]: Failed password for invalid user r.r from 104.168.148.42 port 49250 ssh2 Apr 19 08:24:44 UTC__SANYALnet-Labs__cac12 sshd[19617]: Received disconnect from 104.168.148.42 ........ ------------------------------ |
2020-04-19 20:48:20 |
| 104.168.148.189 | attackbots | Fail2Ban Ban Triggered |
2020-03-05 15:39:20 |
| 104.168.142.227 | attackbotsspam | lfd: (smtpauth) Failed SMTP AUTH login from 104.168.142.227 (hwsrv-273223.hostwindsdns.com): 5 in the last 3600 secs - Fri Jun 22 19:11:59 2018 |
2020-02-23 23:48:05 |
| 104.168.144.77 | attackbotsspam | lfd: (smtpauth) Failed SMTP AUTH login from 104.168.144.77 (US/United States/hwsrv-238723.hostwindsdns.com): 5 in the last 3600 secs - Thu May 3 12:14:48 2018 |
2020-02-07 06:46:19 |
| 104.168.142.229 | attack | 2020-01-19T23:42:11.3404711495-001 sshd[29566]: Invalid user lena from 104.168.142.229 port 55354 2020-01-19T23:42:11.3496611495-001 sshd[29566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-656802.hostwindsdns.com 2020-01-19T23:42:11.3404711495-001 sshd[29566]: Invalid user lena from 104.168.142.229 port 55354 2020-01-19T23:42:13.0808461495-001 sshd[29566]: Failed password for invalid user lena from 104.168.142.229 port 55354 ssh2 2020-01-19T23:44:41.3200111495-001 sshd[29648]: Invalid user admin from 104.168.142.229 port 50442 2020-01-19T23:44:41.3232021495-001 sshd[29648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-656802.hostwindsdns.com 2020-01-19T23:44:41.3200111495-001 sshd[29648]: Invalid user admin from 104.168.142.229 port 50442 2020-01-19T23:44:42.9783291495-001 sshd[29648]: Failed password for invalid user admin from 104.168.142.229 port 50442 ssh2 2020-01-19T23:47:09.1872401 ... |
2020-01-20 13:09:22 |
| 104.168.142.229 | attackspambots | Jan 17 14:51:45 dedicated sshd[8525]: Invalid user vnc from 104.168.142.229 port 39966 |
2020-01-17 23:38:18 |
| 104.168.142.229 | attackbots | Unauthorized connection attempt detected from IP address 104.168.142.229 to port 2220 [J] |
2020-01-17 04:56:59 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.14.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45684
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.168.14.80. IN A
;; AUTHORITY SECTION:
. 210 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400
;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 19:37:26 CST 2022
;; MSG SIZE rcvd: 106
80.14.168.104.in-addr.arpa domain name pointer 104-168-14-80-host.colocrossing.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
80.14.168.104.in-addr.arpa name = 104-168-14-80-host.colocrossing.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 118.24.99.161 | attack | $f2bV_matches |
2020-04-15 07:57:17 |
| 113.96.135.214 | attackspambots | Icarus honeypot on github |
2020-04-15 08:24:41 |
| 200.137.5.196 | attackspam | Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-04-15 08:16:56 |
| 217.182.43.162 | attackspambots | Apr 14 22:59:41 host5 sshd[13048]: Invalid user sheller from 217.182.43.162 port 4150 ... |
2020-04-15 07:46:38 |
| 45.82.137.35 | attackbots | Apr 15 02:05:16 dev0-dcde-rnet sshd[24073]: Failed password for root from 45.82.137.35 port 40446 ssh2 Apr 15 02:12:56 dev0-dcde-rnet sshd[24195]: Failed password for root from 45.82.137.35 port 56698 ssh2 |
2020-04-15 08:20:27 |
| 74.93.44.130 | attackspam | Apr 14 05:28:01 vayu sshd[820053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74-93-44-130-fortwayne.hfc.comcastbusiness.net user=mysql Apr 14 05:28:02 vayu sshd[820053]: Failed password for mysql from 74.93.44.130 port 7506 ssh2 Apr 14 05:28:02 vayu sshd[820053]: Received disconnect from 74.93.44.130: 11: Bye Bye [preauth] Apr 14 05:46:16 vayu sshd[825617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74-93-44-130-fortwayne.hfc.comcastbusiness.net user=r.r Apr 14 05:46:18 vayu sshd[825617]: Failed password for r.r from 74.93.44.130 port 11657 ssh2 Apr 14 05:46:18 vayu sshd[825617]: Received disconnect from 74.93.44.130: 11: Bye Bye [preauth] Apr 14 05:47:55 vayu sshd[825880]: Invalid user asterisk from 74.93.44.130 Apr 14 05:47:55 vayu sshd[825880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74-93-44-130-fortwayne.hfc.comcastbusiness.ne........ ------------------------------- |
2020-04-15 08:09:42 |
| 222.186.15.158 | attackspambots | Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-04-15 07:46:17 |
| 45.141.157.110 | attackspam | Apr 14 18:56:16 km20725 sshd[16662]: reveeclipse mapping checking getaddrinfo for ip-157-110.cn-global [45.141.157.110] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 14 18:56:16 km20725 sshd[16662]: Invalid user pdv from 45.141.157.110 Apr 14 18:56:16 km20725 sshd[16662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.141.157.110 Apr 14 18:56:18 km20725 sshd[16662]: Failed password for invalid user pdv from 45.141.157.110 port 47118 ssh2 Apr 14 18:56:18 km20725 sshd[16662]: Received disconnect from 45.141.157.110: 11: Bye Bye [preauth] Apr 14 19:04:14 km20725 sshd[17099]: reveeclipse mapping checking getaddrinfo for ip-157-110.cn-global [45.141.157.110] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 14 19:04:14 km20725 sshd[17099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.141.157.110 user=r.r Apr 14 19:04:16 km20725 sshd[17099]: Failed password for r.r from 45.141.157.110 port 51910 ssh2 A........ ------------------------------- |
2020-04-15 07:48:21 |
| 195.84.49.20 | attackbots | Apr 15 00:57:41 master sshd[5748]: Failed password for invalid user cumulus from 195.84.49.20 port 51544 ssh2 Apr 15 01:24:29 master sshd[5787]: Failed password for invalid user thuannx from 195.84.49.20 port 51750 ssh2 Apr 15 01:27:58 master sshd[5789]: Failed password for invalid user VM from 195.84.49.20 port 59262 ssh2 Apr 15 01:31:23 master sshd[5814]: Failed password for root from 195.84.49.20 port 38542 ssh2 |
2020-04-15 07:49:23 |
| 51.77.201.5 | attackbots | Apr 14 04:23:29 kmh-sql-001-nbg01 sshd[30807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.201.5 user=r.r Apr 14 04:23:31 kmh-sql-001-nbg01 sshd[30807]: Failed password for r.r from 51.77.201.5 port 46814 ssh2 Apr 14 04:23:31 kmh-sql-001-nbg01 sshd[30807]: Received disconnect from 51.77.201.5 port 46814:11: Bye Bye [preauth] Apr 14 04:23:31 kmh-sql-001-nbg01 sshd[30807]: Disconnected from 51.77.201.5 port 46814 [preauth] Apr 14 04:35:23 kmh-sql-001-nbg01 sshd[32411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.201.5 user=r.r Apr 14 04:35:25 kmh-sql-001-nbg01 sshd[32411]: Failed password for r.r from 51.77.201.5 port 38742 ssh2 Apr 14 04:35:25 kmh-sql-001-nbg01 sshd[32411]: Received disconnect from 51.77.201.5 port 38742:11: Bye Bye [preauth] Apr 14 04:35:25 kmh-sql-001-nbg01 sshd[32411]: Disconnected from 51.77.201.5 port 38742 [preauth] Apr 14 04:40:23 kmh-sql-001-nbg0........ ------------------------------- |
2020-04-15 08:04:49 |
| 37.252.190.224 | attackspam | Apr 14 23:17:04 localhost sshd\[22911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.252.190.224 user=root Apr 14 23:17:06 localhost sshd\[22911\]: Failed password for root from 37.252.190.224 port 51614 ssh2 Apr 14 23:20:34 localhost sshd\[23159\]: Invalid user redis1 from 37.252.190.224 Apr 14 23:20:34 localhost sshd\[23159\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.252.190.224 Apr 14 23:20:36 localhost sshd\[23159\]: Failed password for invalid user redis1 from 37.252.190.224 port 59056 ssh2 ... |
2020-04-15 07:55:28 |
| 182.254.145.29 | attack | Invalid user Operator from 182.254.145.29 port 47908 |
2020-04-15 07:56:31 |
| 109.244.44.184 | attack | $f2bV_matches |
2020-04-15 07:47:34 |
| 51.75.201.137 | attackbots | Apr 15 01:59:23 vmd26974 sshd[7038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.201.137 Apr 15 01:59:25 vmd26974 sshd[7038]: Failed password for invalid user jake from 51.75.201.137 port 44468 ssh2 ... |
2020-04-15 08:22:19 |
| 93.28.14.209 | attack | detected by Fail2Ban |
2020-04-15 08:04:14 |