城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackspam | Jul 31 01:46:57 s64-1 sshd[30861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.102 Jul 31 01:46:59 s64-1 sshd[30861]: Failed password for invalid user usuario1 from 139.199.45.102 port 37772 ssh2 Jul 31 01:49:27 s64-1 sshd[30922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.102 ... |
2019-07-31 14:52:33 |
| attackbotsspam | Jul 7 02:37:09 Ubuntu-1404-trusty-64-minimal sshd\[7191\]: Invalid user jenkins from 139.199.45.102 Jul 7 02:37:09 Ubuntu-1404-trusty-64-minimal sshd\[7191\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.102 Jul 7 02:37:11 Ubuntu-1404-trusty-64-minimal sshd\[7191\]: Failed password for invalid user jenkins from 139.199.45.102 port 42676 ssh2 Jul 7 02:42:18 Ubuntu-1404-trusty-64-minimal sshd\[12274\]: Invalid user minecraft from 139.199.45.102 Jul 7 02:42:18 Ubuntu-1404-trusty-64-minimal sshd\[12274\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.102 |
2019-07-07 08:57:21 |
| attackspambots | Jun 28 10:24:41 [host] sshd[12104]: Invalid user shuan from 139.199.45.102 Jun 28 10:24:41 [host] sshd[12104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.102 Jun 28 10:24:43 [host] sshd[12104]: Failed password for invalid user shuan from 139.199.45.102 port 39606 ssh2 |
2019-06-28 17:34:37 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.199.45.83 | attack | Oct 12 17:30:43 minden010 sshd[13193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 Oct 12 17:30:45 minden010 sshd[13193]: Failed password for invalid user celina from 139.199.45.83 port 45008 ssh2 Oct 12 17:35:20 minden010 sshd[14132]: Failed password for root from 139.199.45.83 port 39056 ssh2 ... |
2020-10-13 04:07:27 |
| 139.199.45.83 | attack | $f2bV_matches |
2020-10-12 19:44:20 |
| 139.199.45.83 | attack | (sshd) Failed SSH login from 139.199.45.83 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 24 09:32:37 server4 sshd[28535]: Invalid user office from 139.199.45.83 Sep 24 09:32:37 server4 sshd[28535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 Sep 24 09:32:39 server4 sshd[28535]: Failed password for invalid user office from 139.199.45.83 port 56518 ssh2 Sep 24 09:41:23 server4 sshd[1121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 user=root Sep 24 09:41:25 server4 sshd[1121]: Failed password for root from 139.199.45.83 port 50346 ssh2 |
2020-09-24 23:46:16 |
| 139.199.45.83 | attackspam | Invalid user test from 139.199.45.83 port 43226 |
2020-09-24 15:32:43 |
| 139.199.45.83 | attackspambots | (sshd) Failed SSH login from 139.199.45.83 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 23 15:37:10 server5 sshd[20109]: Invalid user apps from 139.199.45.83 Sep 23 15:37:10 server5 sshd[20109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 Sep 23 15:37:12 server5 sshd[20109]: Failed password for invalid user apps from 139.199.45.83 port 51344 ssh2 Sep 23 15:49:28 server5 sshd[25497]: Invalid user ts3user from 139.199.45.83 Sep 23 15:49:28 server5 sshd[25497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 |
2020-09-24 06:58:39 |
| 139.199.45.83 | attack | Aug 30 17:22:52 h2646465 sshd[22610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 user=root Aug 30 17:22:54 h2646465 sshd[22610]: Failed password for root from 139.199.45.83 port 40330 ssh2 Aug 30 17:49:21 h2646465 sshd[25856]: Invalid user hosts from 139.199.45.83 Aug 30 17:49:21 h2646465 sshd[25856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 Aug 30 17:49:21 h2646465 sshd[25856]: Invalid user hosts from 139.199.45.83 Aug 30 17:49:23 h2646465 sshd[25856]: Failed password for invalid user hosts from 139.199.45.83 port 45484 ssh2 Aug 30 17:53:23 h2646465 sshd[26459]: Invalid user user1 from 139.199.45.83 Aug 30 17:53:23 h2646465 sshd[26459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 Aug 30 17:53:23 h2646465 sshd[26459]: Invalid user user1 from 139.199.45.83 Aug 30 17:53:25 h2646465 sshd[26459]: Failed password for invalid user user1 fr |
2020-08-31 00:25:06 |
| 139.199.45.83 | attackbotsspam | Invalid user big from 139.199.45.83 port 52174 |
2020-08-19 13:01:32 |
| 139.199.45.83 | attack | Aug 12 08:06:13 cosmoit sshd[9920]: Failed password for root from 139.199.45.83 port 55750 ssh2 |
2020-08-12 14:12:20 |
| 139.199.45.83 | attack | Aug 5 23:14:00 dignus sshd[29884]: Failed password for root from 139.199.45.83 port 40906 ssh2 Aug 5 23:15:51 dignus sshd[30126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 user=root Aug 5 23:15:52 dignus sshd[30126]: Failed password for root from 139.199.45.83 port 59928 ssh2 Aug 5 23:17:32 dignus sshd[30351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 user=root Aug 5 23:17:34 dignus sshd[30351]: Failed password for root from 139.199.45.83 port 50740 ssh2 ... |
2020-08-06 14:20:32 |
| 139.199.45.83 | attack | Aug 2 19:00:49 ns382633 sshd\[24403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 user=root Aug 2 19:00:51 ns382633 sshd\[24403\]: Failed password for root from 139.199.45.83 port 35718 ssh2 Aug 2 19:14:46 ns382633 sshd\[27434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 user=root Aug 2 19:14:48 ns382633 sshd\[27434\]: Failed password for root from 139.199.45.83 port 39696 ssh2 Aug 2 19:19:35 ns382633 sshd\[28325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 user=root |
2020-08-03 03:08:15 |
| 139.199.45.83 | attackbots | Jul 29 07:57:56 * sshd[27400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 Jul 29 07:57:58 * sshd[27400]: Failed password for invalid user shifeng from 139.199.45.83 port 37558 ssh2 |
2020-07-29 17:43:26 |
| 139.199.45.83 | attack | Connection to SSH Honeypot - Detected by HoneypotDB |
2020-07-28 16:58:54 |
| 139.199.45.83 | attack | Invalid user qxl from 139.199.45.83 port 34370 |
2020-07-25 13:01:03 |
| 139.199.45.83 | attackbots | Jul 17 14:33:44 ns382633 sshd\[5772\]: Invalid user tm from 139.199.45.83 port 54098 Jul 17 14:33:44 ns382633 sshd\[5772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 Jul 17 14:33:46 ns382633 sshd\[5772\]: Failed password for invalid user tm from 139.199.45.83 port 54098 ssh2 Jul 17 14:47:27 ns382633 sshd\[8401\]: Invalid user alibaba from 139.199.45.83 port 59346 Jul 17 14:47:27 ns382633 sshd\[8401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 |
2020-07-18 00:10:19 |
| 139.199.45.83 | attackbotsspam | $f2bV_matches |
2020-07-17 01:00:13 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.45.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6161
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.45.102. IN A
;; AUTHORITY SECTION:
. 1843 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019032900 1800 900 604800 86400
;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Mar 29 15:56:02 +08 2019
;; MSG SIZE rcvd: 118
Host 102.45.199.139.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.3
Address: 67.207.67.3#53
** server can't find 102.45.199.139.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 103.16.202.160 | attack |
|
2020-08-02 20:04:39 |
| 174.115.199.202 | attackbots | Brute-force attempt banned |
2020-08-02 20:13:55 |
| 62.234.15.218 | attack | Aug 2 07:49:55 Tower sshd[26401]: Connection from 62.234.15.218 port 43548 on 192.168.10.220 port 22 rdomain "" Aug 2 07:49:57 Tower sshd[26401]: Failed password for root from 62.234.15.218 port 43548 ssh2 Aug 2 07:49:57 Tower sshd[26401]: Received disconnect from 62.234.15.218 port 43548:11: Bye Bye [preauth] Aug 2 07:49:57 Tower sshd[26401]: Disconnected from authenticating user root 62.234.15.218 port 43548 [preauth] |
2020-08-02 19:59:47 |
| 149.147.30.115 | attackspam | 20/8/2@08:14:19: FAIL: Alarm-Network address from=149.147.30.115 ... |
2020-08-02 20:36:14 |
| 51.15.250.67 | attackbots | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-08-02 20:03:01 |
| 104.248.160.58 | attackbots | Aug 2 07:53:34 ny01 sshd[22575]: Failed password for root from 104.248.160.58 port 39182 ssh2 Aug 2 07:57:25 ny01 sshd[23424]: Failed password for root from 104.248.160.58 port 55940 ssh2 |
2020-08-02 20:04:21 |
| 60.186.216.167 | attackbotsspam | Aug 2 06:46:38 zimbra sshd[24661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.186.216.167 user=r.r Aug 2 06:46:41 zimbra sshd[24661]: Failed password for r.r from 60.186.216.167 port 43994 ssh2 Aug 2 06:46:41 zimbra sshd[24661]: Received disconnect from 60.186.216.167 port 43994:11: Bye Bye [preauth] Aug 2 06:46:41 zimbra sshd[24661]: Disconnected from 60.186.216.167 port 43994 [preauth] Aug 2 07:07:49 zimbra sshd[10164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.186.216.167 user=r.r Aug 2 07:07:51 zimbra sshd[10164]: Failed password for r.r from 60.186.216.167 port 34238 ssh2 Aug 2 07:07:51 zimbra sshd[10164]: Received disconnect from 60.186.216.167 port 34238:11: Bye Bye [preauth] Aug 2 07:07:51 zimbra sshd[10164]: Disconnected from 60.186.216.167 port 34238 [preauth] Aug 2 07:11:18 zimbra sshd[13359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ........ ------------------------------- |
2020-08-02 20:15:27 |
| 92.223.105.179 | attackspam | Attempted connection to port 22919. |
2020-08-02 20:01:58 |
| 177.161.164.56 | attackbots | Automatic report - Port Scan Attack |
2020-08-02 20:35:52 |
| 45.235.130.242 | attackspam | Unauthorized connection attempt from IP address 45.235.130.242 on Port 445(SMB) |
2020-08-02 20:03:28 |
| 176.123.8.174 | attackspambots | Aug 2 14:14:44 debian-2gb-nbg1-2 kernel: \[18628960.707934\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=176.123.8.174 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=55099 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0 |
2020-08-02 20:22:42 |
| 104.225.154.247 | attackbots | Aug 2 08:09:26 ny01 sshd[25269]: Failed password for root from 104.225.154.247 port 54346 ssh2 Aug 2 08:12:04 ny01 sshd[25629]: Failed password for root from 104.225.154.247 port 59440 ssh2 |
2020-08-02 20:27:05 |
| 157.40.253.57 | attackspam | Attempts against non-existent wp-login |
2020-08-02 20:33:30 |
| 182.253.242.225 | attackbotsspam | Unauthorized connection attempt detected from IP address 182.253.242.225 to port 445 [T] |
2020-08-02 19:59:00 |
| 129.226.138.179 | attackbots | 2020-08-02T06:09:43.950318abusebot-8.cloudsearch.cf sshd[26509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.138.179 user=root 2020-08-02T06:09:45.990260abusebot-8.cloudsearch.cf sshd[26509]: Failed password for root from 129.226.138.179 port 38102 ssh2 2020-08-02T06:13:25.075516abusebot-8.cloudsearch.cf sshd[26535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.138.179 user=root 2020-08-02T06:13:26.922362abusebot-8.cloudsearch.cf sshd[26535]: Failed password for root from 129.226.138.179 port 57490 ssh2 2020-08-02T06:15:01.308069abusebot-8.cloudsearch.cf sshd[26545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.138.179 user=root 2020-08-02T06:15:03.666856abusebot-8.cloudsearch.cf sshd[26545]: Failed password for root from 129.226.138.179 port 54060 ssh2 2020-08-02T06:16:38.580583abusebot-8.cloudsearch.cf sshd[26607]: pam_unix(sshd: ... |
2020-08-02 19:59:26 |