城市(city): unknown
省份(region): unknown
国家(country): Canada
运营商(isp): Ruk-Com Co. Ltd
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbotsspam | Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ... |
2020-09-08 23:54:06 |
| attack | Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ... |
2020-09-08 15:27:45 |
| attackbotsspam | Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ... |
2020-09-08 08:00:19 |
| attackspambots | May 22 00:04:21 163-172-32-151 sshd[11165]: Invalid user admin from 139.99.5.210 port 21049 ... |
2020-05-22 06:40:24 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.99.55.150 | attackbots | Oct 5 12:44:19 ns382633 sshd\[16009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root Oct 5 12:44:21 ns382633 sshd\[16009\]: Failed password for root from 139.99.55.150 port 33485 ssh2 Oct 5 12:52:28 ns382633 sshd\[16835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root Oct 5 12:52:30 ns382633 sshd\[16835\]: Failed password for root from 139.99.55.150 port 57762 ssh2 Oct 5 12:56:23 ns382633 sshd\[17334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root |
2020-10-06 01:45:25 |
| 139.99.55.149 | attackbots | [f2b] sshd bruteforce, retries: 1 |
2020-10-05 04:19:57 |
| 139.99.55.149 | attackspam | [f2b] sshd bruteforce, retries: 1 |
2020-10-04 20:12:49 |
| 139.99.54.20 | attack | Aug 31 00:41:01 ny01 sshd[17004]: Failed password for root from 139.99.54.20 port 34572 ssh2 Aug 31 00:45:16 ny01 sshd[17466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 Aug 31 00:45:19 ny01 sshd[17466]: Failed password for invalid user ali from 139.99.54.20 port 40168 ssh2 |
2020-08-31 12:53:16 |
| 139.99.54.20 | attack | SSH |
2020-08-30 01:54:08 |
| 139.99.54.20 | attackbots | $f2bV_matches |
2020-07-27 15:54:04 |
| 139.99.54.20 | attackspambots | Connection to SSH Honeypot - Detected by HoneypotDB |
2020-07-22 06:16:38 |
| 139.99.54.20 | attackbots | SSHD brute force attack detected by fail2ban |
2020-07-19 16:11:55 |
| 139.99.54.20 | attackspambots | 2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094 2020-07-04T03:21:26.041561na-vps210223 sshd[31605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094 2020-07-04T03:21:28.230660na-vps210223 sshd[31605]: Failed password for invalid user test1 from 139.99.54.20 port 53094 ssh2 2020-07-04T03:23:37.151063na-vps210223 sshd[5201]: Invalid user admin from 139.99.54.20 port 59606 ... |
2020-07-04 15:26:30 |
| 139.99.54.20 | attackbotsspam | Jun 18 19:45:28 rush sshd[1735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 Jun 18 19:45:30 rush sshd[1735]: Failed password for invalid user acs from 139.99.54.20 port 37198 ssh2 Jun 18 19:49:27 rush sshd[1963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 ... |
2020-06-19 04:00:35 |
| 139.99.54.20 | attackspam | SSH_attack |
2020-06-15 16:46:37 |
| 139.99.54.20 | attackspambots | May 31 19:30:25 ns382633 sshd\[13435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root May 31 19:30:26 ns382633 sshd\[13435\]: Failed password for root from 139.99.54.20 port 33044 ssh2 May 31 19:38:20 ns382633 sshd\[14843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root May 31 19:38:22 ns382633 sshd\[14843\]: Failed password for root from 139.99.54.20 port 47142 ssh2 May 31 19:42:13 ns382633 sshd\[15987\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root |
2020-06-01 03:18:08 |
| 139.99.54.20 | attackbots | May 24 13:16:17 l02a sshd[23182]: Invalid user salb from 139.99.54.20 May 24 13:16:17 l02a sshd[23182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 May 24 13:16:17 l02a sshd[23182]: Invalid user salb from 139.99.54.20 May 24 13:16:19 l02a sshd[23182]: Failed password for invalid user salb from 139.99.54.20 port 54544 ssh2 |
2020-05-24 20:35:09 |
| 139.99.54.20 | attack | Lines containing failures of 139.99.54.20 May 22 13:52:23 shared09 sshd[4439]: Invalid user nfn from 139.99.54.20 port 41096 May 22 13:52:23 shared09 sshd[4439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 May 22 13:52:25 shared09 sshd[4439]: Failed password for invalid user nfn from 139.99.54.20 port 41096 ssh2 May 22 13:52:26 shared09 sshd[4439]: Received disconnect from 139.99.54.20 port 41096:11: Bye Bye [preauth] May 22 13:52:26 shared09 sshd[4439]: Disconnected from invalid user nfn 139.99.54.20 port 41096 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.99.54.20 |
2020-05-23 02:06:38 |
| 139.99.57.14 | attackbotsspam | Automatic report - XMLRPC Attack |
2019-11-13 04:03:37 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.5.210
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55113
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.5.210. IN A
;; AUTHORITY SECTION:
. 500 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020052102 1800 900 604800 86400
;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 22 06:40:19 CST 2020
;; MSG SIZE rcvd: 116
210.5.99.139.in-addr.arpa domain name pointer ip210.ip-139-99-5.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
210.5.99.139.in-addr.arpa name = ip210.ip-139-99-5.net.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 190.158.201.33 | attackbotsspam | Apr 14 06:39:46 NPSTNNYC01T sshd[21083]: Failed password for root from 190.158.201.33 port 39280 ssh2 Apr 14 06:43:45 NPSTNNYC01T sshd[21425]: Failed password for root from 190.158.201.33 port 43285 ssh2 ... |
2020-04-14 18:51:45 |
| 183.129.141.44 | attackspam | SSH brute-force: detected 6 distinct usernames within a 24-hour window. |
2020-04-14 18:26:50 |
| 91.241.37.146 | attack | Apr 14 11:34:22 our-server-hostname postfix/smtpd[3564]: connect from unknown[91.241.37.146] Apr x@x Apr 14 11:34:25 our-server-hostname postfix/smtpd[3564]: disconnect from unknown[91.241.37.146] Apr 14 12:55:09 our-server-hostname postfix/smtpd[15945]: connect from unknown[91.241.37.146] Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=91.241.37.146 |
2020-04-14 18:33:19 |
| 188.115.131.142 | attackbots | Напишите нам сейчас и получите бонус, в виде бесплатного составления оффера для Вашей рассылки Наш E-mail: formmarketing2020@gmail.com P.S. Извините за беспокойство, если мы с Вами уже сотрудничаем. -- Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 |
2020-04-14 18:13:17 |
| 217.182.68.93 | attackbots | Apr 14 09:19:14 vmd48417 sshd[6941]: Failed password for root from 217.182.68.93 port 53974 ssh2 |
2020-04-14 18:34:24 |
| 106.75.4.19 | attack | " " |
2020-04-14 18:44:41 |
| 46.101.136.110 | attackspambots | Wordpress malicious attack:[sshd] |
2020-04-14 18:14:59 |
| 111.229.3.209 | attackspambots | Apr 14 01:53:35 ny01 sshd[23346]: Failed password for root from 111.229.3.209 port 43170 ssh2 Apr 14 01:58:31 ny01 sshd[24428]: Failed password for bin from 111.229.3.209 port 41424 ssh2 |
2020-04-14 18:40:04 |
| 195.96.231.213 | attack | Apr 14 17:13:12 itv-usvr-01 sshd[6140]: Invalid user 888888 from 195.96.231.213 Apr 14 17:13:12 itv-usvr-01 sshd[6140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.96.231.213 Apr 14 17:13:12 itv-usvr-01 sshd[6140]: Invalid user 888888 from 195.96.231.213 Apr 14 17:13:14 itv-usvr-01 sshd[6140]: Failed password for invalid user 888888 from 195.96.231.213 port 59862 ssh2 Apr 14 17:16:56 itv-usvr-01 sshd[6261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.96.231.213 user=root Apr 14 17:16:58 itv-usvr-01 sshd[6261]: Failed password for root from 195.96.231.213 port 40788 ssh2 |
2020-04-14 18:42:13 |
| 182.61.169.8 | attackspam | 2020-04-14T04:26:43.191931linuxbox-skyline sshd[113438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.169.8 user=root 2020-04-14T04:26:45.785384linuxbox-skyline sshd[113438]: Failed password for root from 182.61.169.8 port 25533 ssh2 ... |
2020-04-14 18:29:10 |
| 47.101.218.170 | attack | $f2bV_matches |
2020-04-14 18:12:19 |
| 200.89.178.229 | attackspambots | Apr 14 07:28:32 124388 sshd[18024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.178.229 Apr 14 07:28:32 124388 sshd[18024]: Invalid user admin from 200.89.178.229 port 38668 Apr 14 07:28:34 124388 sshd[18024]: Failed password for invalid user admin from 200.89.178.229 port 38668 ssh2 Apr 14 07:32:56 124388 sshd[18051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.178.229 user=root Apr 14 07:32:59 124388 sshd[18051]: Failed password for root from 200.89.178.229 port 46314 ssh2 |
2020-04-14 18:21:48 |
| 36.111.171.14 | attackbots | 2020-04-13 UTC: (4x) - admin,root(3x) |
2020-04-14 18:40:26 |
| 94.158.244.113 | attackspam | " " |
2020-04-14 18:17:15 |
| 60.216.19.58 | attackbotsspam | prod8 ... |
2020-04-14 18:42:38 |