城市(city): unknown
省份(region): unknown
国家(country): Indonesia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.194.225.62 | attack | Oct 8 22:24:18 kunden sshd[25644]: Address 139.194.225.62 maps to fm-dyn-139-194-225-62.fast.net.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 22:24:18 kunden sshd[25644]: Invalid user admin from 139.194.225.62 Oct 8 22:24:19 kunden sshd[25644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.194.225.62 Oct 8 22:24:21 kunden sshd[25644]: Failed password for invalid user admin from 139.194.225.62 port 45508 ssh2 Oct 8 22:24:21 kunden sshd[25644]: Connection closed by 139.194.225.62 [preauth] Oct 8 22:24:25 kunden sshd[25649]: Address 139.194.225.62 maps to fm-dyn-139-194-225-62.fast.net.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 22:24:25 kunden sshd[25649]: Invalid user admin from 139.194.225.62 Oct 8 22:24:26 kunden sshd[25649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.194.225.62 Oct 8 22:24:28........ ------------------------------- |
2020-10-10 03:26:02 |
| 139.194.225.62 | attackspam | Oct 8 22:24:18 kunden sshd[25644]: Address 139.194.225.62 maps to fm-dyn-139-194-225-62.fast.net.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 22:24:18 kunden sshd[25644]: Invalid user admin from 139.194.225.62 Oct 8 22:24:19 kunden sshd[25644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.194.225.62 Oct 8 22:24:21 kunden sshd[25644]: Failed password for invalid user admin from 139.194.225.62 port 45508 ssh2 Oct 8 22:24:21 kunden sshd[25644]: Connection closed by 139.194.225.62 [preauth] Oct 8 22:24:25 kunden sshd[25649]: Address 139.194.225.62 maps to fm-dyn-139-194-225-62.fast.net.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 22:24:25 kunden sshd[25649]: Invalid user admin from 139.194.225.62 Oct 8 22:24:26 kunden sshd[25649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.194.225.62 Oct 8 22:24:28........ ------------------------------- |
2020-10-09 19:19:38 |
| 139.194.226.67 | attack | 2020-08-17 16:25:22 | |
| 139.194.247.116 | attackbots | Automatic report - Port Scan Attack |
2020-05-14 01:48:44 |
| 139.194.237.149 | attack | Email rejected due to spam filtering |
2020-03-06 18:17:20 |
| 139.194.20.239 | attackbotsspam | 2019-07-07 19:15:33 1hkAl8-00063y-7m SMTP connection from \(fm-dyn-139-194-20-239.fast.net.id\) \[139.194.20.239\]:43362 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-07 19:15:56 1hkAlX-00064X-7D SMTP connection from \(fm-dyn-139-194-20-239.fast.net.id\) \[139.194.20.239\]:43560 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-07 19:16:09 1hkAlk-00064r-RQ SMTP connection from \(fm-dyn-139-194-20-239.fast.net.id\) \[139.194.20.239\]:43667 I=\[193.107.88.166\]:25 closed by DROP in ACL ... |
2020-02-05 00:59:58 |
| 139.194.216.169 | attackspambots | 2019-03-08 17:53:54 1h2Ikr-0001C7-H0 SMTP connection from \(fm-dyn-139-194-216-169.fast.net.id\) \[139.194.216.169\]:49080 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-08 17:55:08 1h2Im3-0001FP-Mj SMTP connection from \(fm-dyn-139-194-216-169.fast.net.id\) \[139.194.216.169\]:49486 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-08 17:55:49 1h2Imi-0001Gc-Du SMTP connection from \(fm-dyn-139-194-216-169.fast.net.id\) \[139.194.216.169\]:49778 I=\[193.107.88.166\]:25 closed by DROP in ACL ... |
2020-02-05 00:58:45 |
| 139.194.20.198 | attackspam | Unauthorized connection attempt detected from IP address 139.194.20.198 to port 4567 [J] |
2020-01-29 02:35:18 |
| 139.194.212.230 | attackbots | unauthorized connection attempt |
2020-01-17 14:20:23 |
| 139.194.209.123 | attackbots | Honeypot attack, port: 445, PTR: fm-dyn-139-194-209-123.fast.net.id. |
2020-01-13 15:00:10 |
| 139.194.207.158 | attackbotsspam | Sun, 21 Jul 2019 18:28:30 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-22 04:50:29 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.194.2.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18832
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.194.2.94. IN A
;; AUTHORITY SECTION:
. 436 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400
;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 14:10:54 CST 2022
;; MSG SIZE rcvd: 10594.2.194.139.in-addr.arpa domain name pointer fm-dyn-139-194-2-94.fast.net.id.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
94.2.194.139.in-addr.arpa name = fm-dyn-139-194-2-94.fast.net.id.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 177.21.97.10 | attackbotsspam | Request: "GET / HTTP/1.1" |
2019-06-22 08:10:40 |
| 37.97.130.35 | attackspambots | Request: "GET /readme.php HTTP/1.1" |
2019-06-22 07:45:14 |
| 190.94.134.171 | attackspambots | 23/tcp [2019-06-21]1pkt |
2019-06-22 08:21:01 |
| 119.196.244.140 | attack | Unauthorised access (Jun 21) SRC=119.196.244.140 LEN=40 TTL=52 ID=8629 TCP DPT=8080 WINDOW=58462 SYN Unauthorised access (Jun 21) SRC=119.196.244.140 LEN=40 TTL=52 ID=9001 TCP DPT=8080 WINDOW=63929 SYN Unauthorised access (Jun 19) SRC=119.196.244.140 LEN=40 TTL=52 ID=685 TCP DPT=8080 WINDOW=63929 SYN Unauthorised access (Jun 18) SRC=119.196.244.140 LEN=40 TTL=52 ID=15538 TCP DPT=8080 WINDOW=63929 SYN Unauthorised access (Jun 17) SRC=119.196.244.140 LEN=40 TTL=52 ID=33171 TCP DPT=8080 WINDOW=63929 SYN Unauthorised access (Jun 17) SRC=119.196.244.140 LEN=40 TTL=52 ID=38537 TCP DPT=8080 WINDOW=58462 SYN |
2019-06-22 07:53:10 |
| 109.161.55.214 | attackspambots | 23/tcp [2019-06-21]1pkt |
2019-06-22 08:13:58 |
| 24.48.68.164 | attackspambots | Triggered by Fail2Ban |
2019-06-22 07:42:55 |
| 39.99.33.165 | attackbots | Bad Request: "POST /wp/wp-content/themes/twentyfifteen/content.php HTTP/1.1" Bad Request: "GET /index.php HTTP/1.1" Bad Request: "GET /index.php HTTP/1.1" Bad Request: "HEAD /wp-content/themes/twentyfourteen/category.php HTTP/1.1" |
2019-06-22 07:50:25 |
| 180.129.90.140 | attackspambots | Jun 22 00:59:22 cloud sshd[2235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.129.90.140 Jun 22 00:59:25 cloud sshd[2235]: Failed password for invalid user newuser from 180.129.90.140 port 54940 ssh2 |
2019-06-22 07:58:29 |
| 103.209.176.198 | attack | Request: "GET / HTTP/1.1" |
2019-06-22 08:26:29 |
| 78.178.100.166 | attackbots | 23/tcp [2019-06-21]1pkt |
2019-06-22 08:19:45 |
| 182.126.67.19 | attackbotsspam | Jun 21 23:23:35 *** sshd[17114]: User root from 182.126.67.19 not allowed because not listed in AllowUsers |
2019-06-22 07:47:23 |
| 164.163.110.20 | attackbots | Request: "GET / HTTP/1.1" |
2019-06-22 08:07:41 |
| 51.75.29.61 | attack | Jun 21 23:19:39 * sshd[30706]: Failed password for root from 51.75.29.61 port 54218 ssh2 |
2019-06-22 07:57:28 |
| 176.105.35.37 | attackspambots | 23/tcp [2019-06-21]1pkt |
2019-06-22 07:55:41 |
| 125.211.11.117 | attackbots | 2323/tcp [2019-06-21]1pkt |
2019-06-22 07:46:13 |