城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 129.204.91.220 | attack | Event 'Ataque de red detectado' has occurred on device SRV-EXPLOTACION in Windows domain KAURKI on Thursday, July 16, 2020 9:39:47 PM (GMT+00:00) Tipo de evento: Ataque de red detectado Aplicación: Kaspersky Endpoint Security para Windows Aplicación\Ruta: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security for Windows\ Usuario: NT AUTHORITY\SYSTEM (Usuario del sistema) Componente: Protección frente a amenazas en la red Resultado\Descripción: Bloqueado Resultado\Nombre: Intrusion.Generic.CVE-2018-1273.exploit Objeto: TCP de 129.204.91.220 at 192.168.0.80:8080 |
2020-07-21 01:32:26 |
| 129.204.91.47 | attackspam | Lines containing failures of 129.204.91.47 Jun 1 00:27:44 kopano sshd[9143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.91.47 user=r.r Jun 1 00:27:46 kopano sshd[9143]: Failed password for r.r from 129.204.91.47 port 33046 ssh2 Jun 1 00:27:46 kopano sshd[9143]: Received disconnect from 129.204.91.47 port 33046:11: Bye Bye [preauth] Jun 1 00:27:46 kopano sshd[9143]: Disconnected from authenticating user r.r 129.204.91.47 port 33046 [preauth] Jun 1 00:39:59 kopano sshd[9894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.91.47 user=r.r Jun 1 00:40:00 kopano sshd[9894]: Failed password for r.r from 129.204.91.47 port 33586 ssh2 Jun 1 00:40:00 kopano sshd[9894]: Received disconnect from 129.204.91.47 port 33586:11: Bye Bye [preauth] Jun 1 00:40:00 kopano sshd[9894]: Disconnected from authenticating user r.r 129.204.91.47 port 33586 [preauth] Jun 1 00:45:56 kopano........ ------------------------------ |
2020-06-01 21:58:42 |
| 129.204.91.47 | attackspam | May 10 06:30:36 web01 sshd[28473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.91.47 May 10 06:30:38 web01 sshd[28473]: Failed password for invalid user bbz from 129.204.91.47 port 59438 ssh2 ... |
2020-05-10 13:53:15 |
| 129.204.91.220 | attack | Unauthorized connection attempt detected from IP address 129.204.91.220 to port 7001 [T] |
2020-04-15 01:16:20 |
| 129.204.91.238 | attackspam | port scan and connect, tcp 80 (http) |
2019-07-16 11:37:18 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.204.91.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39228
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;129.204.91.242. IN A
;; AUTHORITY SECTION:
. 273 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400
;; Query time: 127 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 04:45:39 CST 2022
;; MSG SIZE rcvd: 107Host 242.91.204.129.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 242.91.204.129.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 222.186.15.246 | attackspam | SSH bruteforce |
2019-12-04 14:26:32 |
| 148.70.249.72 | attack | 2019-12-04T06:30:38.689276abusebot-6.cloudsearch.cf sshd\[17609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.249.72 user=root |
2019-12-04 14:40:38 |
| 188.128.39.127 | attack | Dec 4 07:04:09 ns382633 sshd\[19882\]: Invalid user oedipus from 188.128.39.127 port 53374 Dec 4 07:04:09 ns382633 sshd\[19882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.127 Dec 4 07:04:12 ns382633 sshd\[19882\]: Failed password for invalid user oedipus from 188.128.39.127 port 53374 ssh2 Dec 4 07:30:15 ns382633 sshd\[24736\]: Invalid user joe from 188.128.39.127 port 51768 Dec 4 07:30:15 ns382633 sshd\[24736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.127 |
2019-12-04 14:53:36 |
| 190.42.19.17 | attack | 2019-12-04T06:30:20.154467abusebot-7.cloudsearch.cf sshd\[10131\]: Invalid user Teijo from 190.42.19.17 port 48793 |
2019-12-04 14:52:52 |
| 139.59.84.111 | attackspambots | no |
2019-12-04 14:58:39 |
| 107.150.62.162 | attack | [portscan] Port scan |
2019-12-04 15:01:35 |
| 182.138.121.81 | attackbotsspam | port scan and connect, tcp 1433 (ms-sql-s) |
2019-12-04 14:10:30 |
| 129.204.181.48 | attack | Dec 4 06:22:26 localhost sshd\[45886\]: Invalid user root1234678 from 129.204.181.48 port 52122 Dec 4 06:22:26 localhost sshd\[45886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.181.48 Dec 4 06:22:28 localhost sshd\[45886\]: Failed password for invalid user root1234678 from 129.204.181.48 port 52122 ssh2 Dec 4 06:30:12 localhost sshd\[46135\]: Invalid user abcdefghijklmnopqrstuvwxy from 129.204.181.48 port 35420 Dec 4 06:30:12 localhost sshd\[46135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.181.48 ... |
2019-12-04 14:58:56 |
| 159.65.109.148 | attackbotsspam | 2019-12-04T05:09:20.224708shield sshd\[17540\]: Invalid user analog from 159.65.109.148 port 43998 2019-12-04T05:09:20.229046shield sshd\[17540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.109.148 2019-12-04T05:09:22.143486shield sshd\[17540\]: Failed password for invalid user analog from 159.65.109.148 port 43998 ssh2 2019-12-04T05:15:03.532502shield sshd\[18258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.109.148 user=root 2019-12-04T05:15:05.534057shield sshd\[18258\]: Failed password for root from 159.65.109.148 port 53348 ssh2 |
2019-12-04 14:15:02 |
| 212.64.88.97 | attackbots | 2019-12-04T07:23:20.416890scmdmz1 sshd\[3614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.88.97 user=root 2019-12-04T07:23:22.201568scmdmz1 sshd\[3614\]: Failed password for root from 212.64.88.97 port 49970 ssh2 2019-12-04T07:30:19.880810scmdmz1 sshd\[4377\]: Invalid user guest from 212.64.88.97 port 57456 ... |
2019-12-04 14:50:14 |
| 181.28.99.102 | attackbotsspam | 2019-12-04T07:01:15.360777scmdmz1 sshd\[1274\]: Invalid user guest from 181.28.99.102 port 57222 2019-12-04T07:01:15.363518scmdmz1 sshd\[1274\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.28.99.102 2019-12-04T07:01:17.580264scmdmz1 sshd\[1274\]: Failed password for invalid user guest from 181.28.99.102 port 57222 ssh2 ... |
2019-12-04 14:14:47 |
| 61.177.172.128 | attackspambots | Dec 3 20:21:55 web1 sshd\[29161\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root Dec 3 20:21:57 web1 sshd\[29161\]: Failed password for root from 61.177.172.128 port 64239 ssh2 Dec 3 20:22:00 web1 sshd\[29161\]: Failed password for root from 61.177.172.128 port 64239 ssh2 Dec 3 20:22:03 web1 sshd\[29161\]: Failed password for root from 61.177.172.128 port 64239 ssh2 Dec 3 20:22:05 web1 sshd\[29161\]: Failed password for root from 61.177.172.128 port 64239 ssh2 |
2019-12-04 14:29:30 |
| 42.247.22.66 | attackspambots | Dec 4 05:56:31 hell sshd[25105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.247.22.66 Dec 4 05:56:33 hell sshd[25105]: Failed password for invalid user ferachoglou from 42.247.22.66 port 36650 ssh2 ... |
2019-12-04 14:23:22 |
| 222.186.52.78 | attackbotsspam | 2019-12-04T06:30:03.324755abusebot-6.cloudsearch.cf sshd\[17602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.78 user=root |
2019-12-04 14:48:27 |
| 118.89.61.51 | attack | Dec 4 07:30:02 MK-Soft-Root2 sshd[10383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.61.51 Dec 4 07:30:04 MK-Soft-Root2 sshd[10383]: Failed password for invalid user vonderscher from 118.89.61.51 port 60076 ssh2 ... |
2019-12-04 15:00:20 |