城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): Microsoft (China) Co. Ltd.
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackspam | Invalid user kissee from 139.219.14.12 port 57930 |
2019-12-19 04:48:33 |
| attack | Dec 14 20:40:39 hosting sshd[3956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 user=root Dec 14 20:40:41 hosting sshd[3956]: Failed password for root from 139.219.14.12 port 45446 ssh2 ... |
2019-12-15 04:06:46 |
| attack | Dec 10 12:51:05 server sshd\[27600\]: Invalid user schnur from 139.219.14.12 Dec 10 12:51:05 server sshd\[27600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Dec 10 12:51:07 server sshd\[27600\]: Failed password for invalid user schnur from 139.219.14.12 port 41286 ssh2 Dec 10 13:22:45 server sshd\[4359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 user=mysql Dec 10 13:22:47 server sshd\[4359\]: Failed password for mysql from 139.219.14.12 port 38148 ssh2 ... |
2019-12-10 22:12:20 |
| attack | SSH login attempt with user guest |
2019-11-24 18:15:35 |
| attackspam | Nov 23 18:07:24 microserver sshd[57127]: Invalid user asterisk from 139.219.14.12 port 42578 Nov 23 18:07:24 microserver sshd[57127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Nov 23 18:07:26 microserver sshd[57127]: Failed password for invalid user asterisk from 139.219.14.12 port 42578 ssh2 Nov 23 18:11:44 microserver sshd[57755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 user=root Nov 23 18:11:46 microserver sshd[57755]: Failed password for root from 139.219.14.12 port 45332 ssh2 Nov 23 18:23:44 microserver sshd[59184]: Invalid user melle from 139.219.14.12 port 53580 Nov 23 18:23:44 microserver sshd[59184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Nov 23 18:23:47 microserver sshd[59184]: Failed password for invalid user melle from 139.219.14.12 port 53580 ssh2 Nov 23 18:27:47 microserver sshd[59789]: pam_unix(sshd:auth): authe |
2019-11-23 23:08:07 |
| attackbots | $f2bV_matches |
2019-10-24 14:06:03 |
| attackspam | Oct 16 02:27:54 master sshd[28548]: Failed password for invalid user rt from 139.219.14.12 port 60300 ssh2 |
2019-10-16 08:55:12 |
| attackbotsspam | Oct 10 16:14:47 MK-Soft-VM3 sshd[4895]: Failed password for root from 139.219.14.12 port 46212 ssh2 ... |
2019-10-10 23:07:41 |
| attackspambots | Oct 8 05:42:20 dev0-dcde-rnet sshd[1002]: Failed password for root from 139.219.14.12 port 52504 ssh2 Oct 8 05:47:04 dev0-dcde-rnet sshd[1025]: Failed password for root from 139.219.14.12 port 37514 ssh2 |
2019-10-08 18:24:30 |
| attackbots | $f2bV_matches |
2019-10-03 00:54:08 |
| attackspambots | Oct 1 02:33:22 sachi sshd\[28916\]: Invalid user flume from 139.219.14.12 Oct 1 02:33:22 sachi sshd\[28916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Oct 1 02:33:24 sachi sshd\[28916\]: Failed password for invalid user flume from 139.219.14.12 port 52702 ssh2 Oct 1 02:38:02 sachi sshd\[29322\]: Invalid user unknown from 139.219.14.12 Oct 1 02:38:02 sachi sshd\[29322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 |
2019-10-01 20:43:20 |
| attackspam | Sep 28 03:59:03 php1 sshd\[21397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 user=root Sep 28 03:59:06 php1 sshd\[21397\]: Failed password for root from 139.219.14.12 port 57164 ssh2 Sep 28 04:06:04 php1 sshd\[22043\]: Invalid user temp from 139.219.14.12 Sep 28 04:06:04 php1 sshd\[22043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Sep 28 04:06:06 php1 sshd\[22043\]: Failed password for invalid user temp from 139.219.14.12 port 54032 ssh2 |
2019-09-28 22:21:23 |
| attackbots | Sep 6 01:38:46 xtremcommunity sshd\[28955\]: Invalid user bots from 139.219.14.12 port 34886 Sep 6 01:38:46 xtremcommunity sshd\[28955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Sep 6 01:38:48 xtremcommunity sshd\[28955\]: Failed password for invalid user bots from 139.219.14.12 port 34886 ssh2 Sep 6 01:42:06 xtremcommunity sshd\[29098\]: Invalid user hduser from 139.219.14.12 port 33616 Sep 6 01:42:06 xtremcommunity sshd\[29098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 ... |
2019-09-06 20:43:41 |
| attackbotsspam | Aug 30 16:11:21 XXXXXX sshd[60014]: Invalid user enzo from 139.219.14.12 port 57362 |
2019-08-31 03:00:31 |
| attackbots | Aug 30 03:05:27 www2 sshd\[13803\]: Invalid user yunmen from 139.219.14.12Aug 30 03:05:29 www2 sshd\[13803\]: Failed password for invalid user yunmen from 139.219.14.12 port 35960 ssh2Aug 30 03:10:40 www2 sshd\[14356\]: Invalid user harmeet from 139.219.14.12 ... |
2019-08-30 13:15:29 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.219.140.60 | attack | Mar 31 01:48:56 vps sshd[269848]: Failed password for root from 139.219.140.60 port 37932 ssh2 Mar 31 01:52:27 vps sshd[290396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.140.60 user=root Mar 31 01:52:29 vps sshd[290396]: Failed password for root from 139.219.140.60 port 33290 ssh2 Mar 31 01:56:08 vps sshd[311274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.140.60 user=root Mar 31 01:56:10 vps sshd[311274]: Failed password for root from 139.219.140.60 port 54292 ssh2 ... |
2020-03-31 08:59:40 |
| 139.219.140.60 | attackspambots | 2020-03-28T12:29:23.601490ldap.arvenenaske.de sshd[106299]: Connection from 139.219.140.60 port 36424 on 5.199.128.55 port 22 rdomain "" 2020-03-28T12:29:25.243782ldap.arvenenaske.de sshd[106299]: Invalid user ed from 139.219.140.60 port 36424 2020-03-28T12:29:25.249738ldap.arvenenaske.de sshd[106299]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.140.60 user=ed 2020-03-28T12:29:25.250555ldap.arvenenaske.de sshd[106299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.140.60 2020-03-28T12:29:23.601490ldap.arvenenaske.de sshd[106299]: Connection from 139.219.140.60 port 36424 on 5.199.128.55 port 22 rdomain "" 2020-03-28T12:29:25.243782ldap.arvenenaske.de sshd[106299]: Invalid user ed from 139.219.140.60 port 36424 2020-03-28T12:29:27.642535ldap.arvenenaske.de sshd[106299]: Failed password for invalid user ed from 139.219.140.60 port 36424 ssh2 2020-03-28T12:36:33.735048ldap.a........ ------------------------------ |
2020-03-28 22:25:15 |
| 139.219.143.176 | attack | Feb 12 15:51:36 firewall sshd[28842]: Invalid user disney from 139.219.143.176 Feb 12 15:51:39 firewall sshd[28842]: Failed password for invalid user disney from 139.219.143.176 port 19928 ssh2 Feb 12 15:55:03 firewall sshd[29019]: Invalid user sabiya from 139.219.143.176 ... |
2020-02-13 05:03:14 |
| 139.219.143.176 | attackbots | Jan 11 15:01:00 mout sshd[22360]: Invalid user 2wsx3edc from 139.219.143.176 port 36501 |
2020-01-11 22:35:27 |
| 139.219.143.176 | attackspambots | Dec 27 14:39:20 raspberrypi sshd\[28372\]: Invalid user stokoe from 139.219.143.176Dec 27 14:39:23 raspberrypi sshd\[28372\]: Failed password for invalid user stokoe from 139.219.143.176 port 22672 ssh2Dec 27 14:52:19 raspberrypi sshd\[29526\]: Failed password for mysql from 139.219.143.176 port 57537 ssh2 ... |
2019-12-27 23:35:37 |
| 139.219.143.176 | attackbotsspam | sshd jail - ssh hack attempt |
2019-12-11 04:53:47 |
| 139.219.143.176 | attack | $f2bV_matches |
2019-12-05 04:07:10 |
| 139.219.143.176 | attack | ssh failed login |
2019-12-02 21:33:36 |
| 139.219.143.176 | attackspambots | [Aegis] @ 2019-11-30 14:36:47 0000 -> Multiple authentication failures. |
2019-12-01 00:07:13 |
| 139.219.143.176 | attackspam | Nov 28 11:50:11 server sshd\[18425\]: Invalid user test from 139.219.143.176 Nov 28 11:50:11 server sshd\[18425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.143.176 Nov 28 11:50:13 server sshd\[18425\]: Failed password for invalid user test from 139.219.143.176 port 49903 ssh2 Nov 28 12:02:05 server sshd\[21409\]: Invalid user backup from 139.219.143.176 Nov 28 12:02:05 server sshd\[21409\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.143.176 ... |
2019-11-28 18:07:22 |
| 139.219.143.176 | attack | $f2bV_matches |
2019-11-14 01:27:50 |
| 139.219.143.176 | attack | SSH Brute Force, server-1 sshd[23486]: Failed password for root from 139.219.143.176 port 44323 ssh2 |
2019-11-05 07:30:29 |
| 139.219.143.176 | attackspambots | Oct 27 10:52:40 vps647732 sshd[2276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.143.176 Oct 27 10:52:42 vps647732 sshd[2276]: Failed password for invalid user minecraft from 139.219.143.176 port 38592 ssh2 ... |
2019-10-27 18:13:25 |
| 139.219.143.176 | attack | Automatic report - Banned IP Access |
2019-10-23 03:21:02 |
| 139.219.143.176 | attack | Sep 30 09:54:01 pkdns2 sshd\[24757\]: Invalid user minecraft3 from 139.219.143.176Sep 30 09:54:03 pkdns2 sshd\[24757\]: Failed password for invalid user minecraft3 from 139.219.143.176 port 64981 ssh2Sep 30 09:58:41 pkdns2 sshd\[24969\]: Invalid user yin from 139.219.143.176Sep 30 09:58:43 pkdns2 sshd\[24969\]: Failed password for invalid user yin from 139.219.143.176 port 48086 ssh2Sep 30 10:03:27 pkdns2 sshd\[25188\]: Invalid user jack from 139.219.143.176Sep 30 10:03:29 pkdns2 sshd\[25188\]: Failed password for invalid user jack from 139.219.143.176 port 31207 ssh2 ... |
2019-09-30 19:56:40 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.219.14.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55767
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.219.14.12. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019082901 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 30 13:15:20 CST 2019
;; MSG SIZE rcvd: 117Host 12.14.219.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 12.14.219.139.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 150.242.99.190 | attackspam | Sep 10 12:28:57 php1 sshd\[17416\]: Invalid user ftp from 150.242.99.190 Sep 10 12:28:57 php1 sshd\[17416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.99.190 Sep 10 12:28:58 php1 sshd\[17416\]: Failed password for invalid user ftp from 150.242.99.190 port 52920 ssh2 Sep 10 12:35:45 php1 sshd\[18035\]: Invalid user teste from 150.242.99.190 Sep 10 12:35:45 php1 sshd\[18035\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.99.190 |
2019-09-11 06:48:55 |
| 46.101.187.76 | attack | Sep 10 22:30:01 hb sshd\[25622\]: Invalid user uploader from 46.101.187.76 Sep 10 22:30:01 hb sshd\[25622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ctrl.qa Sep 10 22:30:03 hb sshd\[25622\]: Failed password for invalid user uploader from 46.101.187.76 port 35690 ssh2 Sep 10 22:35:00 hb sshd\[26121\]: Invalid user sinusbot from 46.101.187.76 Sep 10 22:35:00 hb sshd\[26121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ctrl.qa |
2019-09-11 06:54:35 |
| 146.185.175.132 | attackspambots | Sep 10 18:49:08 plusreed sshd[11773]: Invalid user db2admin from 146.185.175.132 ... |
2019-09-11 07:04:04 |
| 51.255.174.164 | attackbotsspam | Sep 11 01:29:10 tuotantolaitos sshd[25643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.174.164 Sep 11 01:29:12 tuotantolaitos sshd[25643]: Failed password for invalid user student from 51.255.174.164 port 38468 ssh2 ... |
2019-09-11 06:29:27 |
| 118.170.197.73 | attack | port 23 attempt blocked |
2019-09-11 06:51:42 |
| 103.28.57.86 | attack | Sep 10 12:49:48 hpm sshd\[14489\]: Invalid user cloud from 103.28.57.86 Sep 10 12:49:48 hpm sshd\[14489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.57.86 Sep 10 12:49:50 hpm sshd\[14489\]: Failed password for invalid user cloud from 103.28.57.86 port 40156 ssh2 Sep 10 12:56:44 hpm sshd\[15147\]: Invalid user oneadmin from 103.28.57.86 Sep 10 12:56:44 hpm sshd\[15147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.57.86 |
2019-09-11 07:09:16 |
| 176.65.2.5 | attackspam | This IP address was blacklisted for the following reason: /de/jobs/industriemechaniker-m-w/&%22%20or%20(1,2)=(select*from(select%20name_const(CHAR(111,78,69,75,117,76,116,86,103,101,104,75),1),name_const(CHAR(111,78,69,75,117,76,116,86,103,101,104,75),1))a)%20--%20%22x%22=%22x @ 2018-10-15T00:52:34+02:00. |
2019-09-11 07:02:48 |
| 79.169.73.15 | attackbots | Sep 10 12:26:53 hcbb sshd\[8579\]: Invalid user minecraft from 79.169.73.15 Sep 10 12:26:53 hcbb sshd\[8579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=a79-169-73-15.cpe.netcabo.pt Sep 10 12:26:55 hcbb sshd\[8579\]: Failed password for invalid user minecraft from 79.169.73.15 port 52370 ssh2 Sep 10 12:32:41 hcbb sshd\[9036\]: Invalid user jira from 79.169.73.15 Sep 10 12:32:41 hcbb sshd\[9036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=a79-169-73-15.cpe.netcabo.pt |
2019-09-11 06:41:54 |
| 106.13.33.181 | attack | Sep 10 18:26:53 vps200512 sshd\[11245\]: Invalid user sftpuser from 106.13.33.181 Sep 10 18:26:53 vps200512 sshd\[11245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.33.181 Sep 10 18:26:55 vps200512 sshd\[11245\]: Failed password for invalid user sftpuser from 106.13.33.181 port 44730 ssh2 Sep 10 18:32:47 vps200512 sshd\[11342\]: Invalid user adminuser from 106.13.33.181 Sep 10 18:32:47 vps200512 sshd\[11342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.33.181 |
2019-09-11 06:45:26 |
| 185.235.244.251 | attackbots | Fail2Ban Ban Triggered |
2019-09-11 07:01:00 |
| 183.131.22.206 | attack | Sep 10 12:16:18 kapalua sshd\[19050\]: Invalid user odoo from 183.131.22.206 Sep 10 12:16:18 kapalua sshd\[19050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.131.22.206 Sep 10 12:16:20 kapalua sshd\[19050\]: Failed password for invalid user odoo from 183.131.22.206 port 58338 ssh2 Sep 10 12:21:51 kapalua sshd\[19627\]: Invalid user test from 183.131.22.206 Sep 10 12:21:51 kapalua sshd\[19627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.131.22.206 |
2019-09-11 06:33:03 |
| 107.174.127.134 | attack | " " |
2019-09-11 06:38:02 |
| 186.213.225.107 | attackbots | Sep 10 07:03:41 dax sshd[683]: warning: /etc/hosts.deny, line 15136: can't verify hostname: getaddrinfo(186.213.225.107.static.host.gvt.net.br, AF_INET) failed Sep 10 07:03:42 dax sshd[683]: reveeclipse mapping checking getaddrinfo for 186.213.225.107.static.host.gvt.net.br [186.213.225.107] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 10 07:03:42 dax sshd[683]: Invalid user mcserver from 186.213.225.107 Sep 10 07:03:42 dax sshd[683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.213.225.107 Sep 10 07:03:45 dax sshd[683]: Failed password for invalid user mcserver from 186.213.225.107 port 51752 ssh2 Sep 10 07:03:45 dax sshd[683]: Received disconnect from 186.213.225.107: 11: Bye Bye [preauth] Sep 10 07:22:48 dax sshd[3441]: warning: /etc/hosts.deny, line 15136: can't verify hostname: getaddrinfo(186.213.225.107.static.host.gvt.net.br, AF_INET) failed Sep 10 07:22:49 dax sshd[3441]: reveeclipse mapping checking getaddrinfo for 18........ ------------------------------- |
2019-09-11 07:12:01 |
| 195.154.82.61 | attackspam | Sep 10 12:26:12 wbs sshd\[17140\]: Invalid user password from 195.154.82.61 Sep 10 12:26:12 wbs sshd\[17140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-154-82-61.rev.poneytelecom.eu Sep 10 12:26:14 wbs sshd\[17140\]: Failed password for invalid user password from 195.154.82.61 port 56580 ssh2 Sep 10 12:31:42 wbs sshd\[17932\]: Invalid user dspace1 from 195.154.82.61 Sep 10 12:31:42 wbs sshd\[17932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-154-82-61.rev.poneytelecom.eu |
2019-09-11 06:40:37 |
| 194.61.24.94 | attack | Automatic report - Banned IP Access |
2019-09-11 06:27:49 |