城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.248.139.121 | attackspambots | May 14 08:55:32 NPSTNNYC01T sshd[14068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 May 14 08:55:34 NPSTNNYC01T sshd[14068]: Failed password for invalid user user from 104.248.139.121 port 49288 ssh2 May 14 08:59:01 NPSTNNYC01T sshd[14354]: Failed password for root from 104.248.139.121 port 56564 ssh2 ... |
2020-05-14 21:25:45 |
| 104.248.139.121 | attackbotsspam | May 3 06:22:00 legacy sshd[5370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 May 3 06:22:02 legacy sshd[5370]: Failed password for invalid user mf from 104.248.139.121 port 40166 ssh2 May 3 06:25:38 legacy sshd[5637]: Failed password for root from 104.248.139.121 port 49638 ssh2 ... |
2020-05-03 12:34:29 |
| 104.248.139.121 | attackspam | SSH auth scanning - multiple failed logins |
2020-04-30 07:33:34 |
| 104.248.139.121 | attack | 2020-04-27T13:03:38.800886abusebot-3.cloudsearch.cf sshd[30948]: Invalid user hung from 104.248.139.121 port 41966 2020-04-27T13:03:38.810081abusebot-3.cloudsearch.cf sshd[30948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 2020-04-27T13:03:38.800886abusebot-3.cloudsearch.cf sshd[30948]: Invalid user hung from 104.248.139.121 port 41966 2020-04-27T13:03:40.381859abusebot-3.cloudsearch.cf sshd[30948]: Failed password for invalid user hung from 104.248.139.121 port 41966 ssh2 2020-04-27T13:07:22.168837abusebot-3.cloudsearch.cf sshd[31229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 user=root 2020-04-27T13:07:24.161636abusebot-3.cloudsearch.cf sshd[31229]: Failed password for root from 104.248.139.121 port 53746 ssh2 2020-04-27T13:11:04.475551abusebot-3.cloudsearch.cf sshd[31503]: Invalid user znc from 104.248.139.121 port 37302 ... |
2020-04-27 22:58:33 |
| 104.248.139.121 | attackbots | Apr 27 11:44:11 dev0-dcde-rnet sshd[22559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 Apr 27 11:44:14 dev0-dcde-rnet sshd[22559]: Failed password for invalid user udp from 104.248.139.121 port 52906 ssh2 Apr 27 11:50:16 dev0-dcde-rnet sshd[22729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 |
2020-04-27 18:07:05 |
| 104.248.139.121 | attackspam | Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-04-24 23:09:01 |
| 104.248.139.121 | attackbotsspam | Invalid user od from 104.248.139.121 port 53734 |
2020-04-23 04:11:27 |
| 104.248.139.121 | attack | Wordpress malicious attack:[sshd] |
2020-04-20 12:17:42 |
| 104.248.139.121 | attackspam | Apr 20 00:12:29 debian-2gb-nbg1-2 kernel: \[9593314.391754\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.139.121 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=23968 PROTO=TCP SPT=59620 DPT=19842 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-20 08:07:04 |
| 104.248.139.121 | attackbots | scans once in preceeding hours on the ports (in chronological order) 19153 resulting in total of 5 scans from 104.248.0.0/16 block. |
2020-04-20 00:13:49 |
| 104.248.139.121 | attack | Apr 17 13:56:38 sso sshd[29563]: Failed password for root from 104.248.139.121 port 42032 ssh2 Apr 17 14:00:28 sso sshd[30000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 ... |
2020-04-17 22:34:21 |
| 104.248.139.121 | attackbotsspam | Apr 17 09:49:30 vpn01 sshd[24030]: Failed password for root from 104.248.139.121 port 47328 ssh2 ... |
2020-04-17 16:50:57 |
| 104.248.139.121 | attackspambots | Apr 8 06:00:12 sso sshd[10238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 Apr 8 06:00:14 sso sshd[10238]: Failed password for invalid user aman from 104.248.139.121 port 60516 ssh2 ... |
2020-04-08 12:18:20 |
| 104.248.139.121 | attackspam | (sshd) Failed SSH login from 104.248.139.121 (DE/Germany/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 4 09:34:42 ubnt-55d23 sshd[17241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 user=root Apr 4 09:34:44 ubnt-55d23 sshd[17241]: Failed password for root from 104.248.139.121 port 43664 ssh2 |
2020-04-04 16:11:55 |
| 104.248.139.121 | attack | Mar 28 16:31:05 dev0-dcde-rnet sshd[3144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 Mar 28 16:31:06 dev0-dcde-rnet sshd[3144]: Failed password for invalid user oracle from 104.248.139.121 port 41678 ssh2 Mar 28 16:41:28 dev0-dcde-rnet sshd[3230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 |
2020-03-29 00:22:33 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.139.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58386
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.248.139.93. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400
;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:51:33 CST 2022
;; MSG SIZE rcvd: 107Host 93.139.248.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 93.139.248.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 134.175.219.41 | attackbotsspam | Apr 10 05:57:38 DAAP sshd[23846]: Invalid user toro from 134.175.219.41 port 42200 Apr 10 05:57:38 DAAP sshd[23846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.219.41 Apr 10 05:57:38 DAAP sshd[23846]: Invalid user toro from 134.175.219.41 port 42200 Apr 10 05:57:39 DAAP sshd[23846]: Failed password for invalid user toro from 134.175.219.41 port 42200 ssh2 Apr 10 05:58:29 DAAP sshd[23885]: Invalid user mongo from 134.175.219.41 port 50466 ... |
2020-04-10 12:39:29 |
| 134.175.204.181 | attackspambots | Apr 9 20:59:07 mockhub sshd[21003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.204.181 Apr 9 20:59:10 mockhub sshd[21003]: Failed password for invalid user admin from 134.175.204.181 port 36530 ssh2 ... |
2020-04-10 12:06:39 |
| 51.77.192.208 | attackspambots | xmlrpc attack |
2020-04-10 12:33:02 |
| 114.5.177.198 | attackspambots | 114.5.177.198 - - [10/Apr/2020:05:58:39 +0200] "POST /wp-login.php HTTP/1.1" 200 3405 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 114.5.177.198 - - [10/Apr/2020:05:58:42 +0200] "POST /wp-login.php HTTP/1.1" 200 3383 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-04-10 12:26:14 |
| 139.198.5.79 | attack | Bruteforce detected by fail2ban |
2020-04-10 12:05:06 |
| 3.84.115.189 | attackspambots | Apr 10 05:33:40 server sshd[31843]: Failed password for invalid user dmc from 3.84.115.189 port 37382 ssh2 Apr 10 05:50:32 server sshd[3303]: Failed password for invalid user postgres from 3.84.115.189 port 39826 ssh2 Apr 10 05:59:13 server sshd[5452]: Failed password for invalid user hallintomies from 3.84.115.189 port 40982 ssh2 |
2020-04-10 12:01:58 |
| 128.14.140.122 | attack | Honeypot hit. |
2020-04-10 12:34:07 |
| 82.64.153.14 | attack | Apr 9 23:54:32 NPSTNNYC01T sshd[21457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.153.14 Apr 9 23:54:34 NPSTNNYC01T sshd[21457]: Failed password for invalid user test from 82.64.153.14 port 59702 ssh2 Apr 9 23:59:08 NPSTNNYC01T sshd[21765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.153.14 ... |
2020-04-10 12:07:58 |
| 185.175.93.105 | attack | Apr 10 06:27:53 debian-2gb-nbg1-2 kernel: \[8751882.664953\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.105 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=63929 PROTO=TCP SPT=57439 DPT=6720 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-10 12:32:14 |
| 51.75.76.201 | attackspam | Apr 10 06:11:25 host01 sshd[3621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.76.201 Apr 10 06:11:27 host01 sshd[3621]: Failed password for invalid user pma from 51.75.76.201 port 50976 ssh2 Apr 10 06:15:45 host01 sshd[4513]: Failed password for root from 51.75.76.201 port 60194 ssh2 ... |
2020-04-10 12:23:43 |
| 190.205.59.6 | attack | Apr 10 06:05:06 ks10 sshd[3549755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.205.59.6 Apr 10 06:05:09 ks10 sshd[3549755]: Failed password for invalid user backupdb140 from 190.205.59.6 port 47658 ssh2 ... |
2020-04-10 12:14:41 |
| 111.229.212.132 | attackbots | Apr 10 06:13:12 srv-ubuntu-dev3 sshd[26660]: Invalid user postgres from 111.229.212.132 Apr 10 06:13:12 srv-ubuntu-dev3 sshd[26660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.212.132 Apr 10 06:13:12 srv-ubuntu-dev3 sshd[26660]: Invalid user postgres from 111.229.212.132 Apr 10 06:13:14 srv-ubuntu-dev3 sshd[26660]: Failed password for invalid user postgres from 111.229.212.132 port 32800 ssh2 Apr 10 06:18:08 srv-ubuntu-dev3 sshd[27618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.212.132 user=root Apr 10 06:18:10 srv-ubuntu-dev3 sshd[27618]: Failed password for root from 111.229.212.132 port 54926 ssh2 Apr 10 06:22:50 srv-ubuntu-dev3 sshd[28365]: Invalid user svn from 111.229.212.132 Apr 10 06:22:50 srv-ubuntu-dev3 sshd[28365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.212.132 Apr 10 06:22:50 srv-ubuntu-dev3 sshd[28365]: Invalid ... |
2020-04-10 12:25:42 |
| 130.61.209.207 | attackbots | Apr 9 18:06:24 eddieflores sshd\[4615\]: Invalid user james from 130.61.209.207 Apr 9 18:06:24 eddieflores sshd\[4615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.209.207 Apr 9 18:06:26 eddieflores sshd\[4615\]: Failed password for invalid user james from 130.61.209.207 port 51804 ssh2 Apr 9 18:10:17 eddieflores sshd\[5014\]: Invalid user maxim from 130.61.209.207 Apr 9 18:10:17 eddieflores sshd\[5014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.209.207 |
2020-04-10 12:17:32 |
| 223.247.129.7 | attackspambots | Apr 10 00:03:25 vps sshd[740316]: Failed password for invalid user sysadmin from 223.247.129.7 port 59524 ssh2 Apr 10 00:06:00 vps sshd[757035]: Invalid user mis from 223.247.129.7 port 48192 Apr 10 00:06:00 vps sshd[757035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.129.7 Apr 10 00:06:01 vps sshd[757035]: Failed password for invalid user mis from 223.247.129.7 port 48192 ssh2 Apr 10 00:08:40 vps sshd[769929]: Invalid user tomcat from 223.247.129.7 port 36870 ... |
2020-04-10 10:22:12 |
| 190.134.194.137 | attackbotsspam | Port probing on unauthorized port 8089 |
2020-04-10 10:21:42 |