城市(city): unknown
省份(region): unknown
国家(country): Thailand
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 14.207.42.89 | attackspambots | 2019-12-29 23:48:56 plain_virtual_exim authenticator failed for mx-ll-14.207.42-89.dynamic.3bb.co.th ([127.0.0.1]) [14.207.42.89]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.207.42.89 |
2019-12-30 08:21:41 |
| 14.207.42.142 | attack | Lines containing failures of 14.207.42.142 2019-11-04 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.207.42.142 |
2019-11-05 06:48:58 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.207.42.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49509
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.207.42.203. IN A
;; AUTHORITY SECTION:
. 22 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400
;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:58:09 CST 2022
;; MSG SIZE rcvd: 106203.42.207.14.in-addr.arpa domain name pointer mx-ll-14.207.42-203.dynamic.3bb.co.th.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
203.42.207.14.in-addr.arpa name = mx-ll-14.207.42-203.dynamic.3bb.co.th.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 173.212.247.35 | attackspam | Nov 7 09:03:51 andromeda sshd\[10044\]: Failed password for root from 173.212.247.35 port 49000 ssh2 Nov 7 09:03:51 andromeda sshd\[10009\]: Failed password for root from 173.212.247.35 port 48860 ssh2 Nov 7 09:03:51 andromeda sshd\[10006\]: Failed password for root from 173.212.247.35 port 48846 ssh2 Nov 7 09:03:51 andromeda sshd\[10014\]: Failed password for root from 173.212.247.35 port 48874 ssh2 |
2019-11-07 18:52:28 |
| 213.198.11.107 | attackspam | Nov 6 02:26:26 hurricane sshd[29215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.198.11.107 user=r.r Nov 6 02:26:27 hurricane sshd[29215]: Failed password for r.r from 213.198.11.107 port 53512 ssh2 Nov 6 02:26:27 hurricane sshd[29215]: Received disconnect from 213.198.11.107 port 53512:11: Bye Bye [preauth] Nov 6 02:26:27 hurricane sshd[29215]: Disconnected from 213.198.11.107 port 53512 [preauth] Nov 6 02:48:06 hurricane sshd[29301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.198.11.107 user=r.r Nov 6 02:48:08 hurricane sshd[29301]: Failed password for r.r from 213.198.11.107 port 47016 ssh2 Nov 6 02:48:08 hurricane sshd[29301]: Received disconnect from 213.198.11.107 port 47016:11: Bye Bye [preauth] Nov 6 02:48:08 hurricane sshd[29301]: Disconnected from 213.198.11.107 port 47016 [preauth] Nov 6 02:51:41 hurricane sshd[29312]: pam_unix(sshd:auth): authenticati........ ------------------------------- |
2019-11-07 18:51:49 |
| 118.25.14.19 | attackspambots | Automatic report - Banned IP Access |
2019-11-07 18:46:09 |
| 94.245.110.199 | attackbots | smtp auth brute force |
2019-11-07 18:29:35 |
| 81.22.45.107 | attackbotsspam | Nov 7 11:16:49 mc1 kernel: \[4408105.930580\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=8997 PROTO=TCP SPT=43255 DPT=48534 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 7 11:21:26 mc1 kernel: \[4408382.546423\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=56033 PROTO=TCP SPT=43255 DPT=48823 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 7 11:21:56 mc1 kernel: \[4408412.505227\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=2010 PROTO=TCP SPT=43255 DPT=48557 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-11-07 18:26:12 |
| 37.59.224.39 | attack | Nov 7 10:25:15 SilenceServices sshd[18189]: Failed password for root from 37.59.224.39 port 36203 ssh2 Nov 7 10:29:16 SilenceServices sshd[19289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.224.39 Nov 7 10:29:18 SilenceServices sshd[19289]: Failed password for invalid user zhuai from 37.59.224.39 port 55255 ssh2 |
2019-11-07 18:55:41 |
| 198.245.63.94 | attack | Nov 7 10:16:23 ovpn sshd\[4837\]: Invalid user loveme from 198.245.63.94 Nov 7 10:16:23 ovpn sshd\[4837\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.63.94 Nov 7 10:16:25 ovpn sshd\[4837\]: Failed password for invalid user loveme from 198.245.63.94 port 43308 ssh2 Nov 7 10:22:01 ovpn sshd\[6012\]: Invalid user virtual2 from 198.245.63.94 Nov 7 10:22:01 ovpn sshd\[6012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.63.94 |
2019-11-07 18:32:11 |
| 162.144.123.107 | attackspambots | Automatic report - Banned IP Access |
2019-11-07 18:51:05 |
| 217.182.78.87 | attack | SSH Brute-Force attacks |
2019-11-07 18:45:56 |
| 49.128.36.34 | attack | " " |
2019-11-07 18:41:54 |
| 138.197.146.132 | attackbots | 11/07/2019-08:09:03.585262 138.197.146.132 Protocol: 6 ET POLICY Cleartext WordPress Login |
2019-11-07 18:43:15 |
| 14.188.165.59 | attackspambots | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/14.188.165.59/ VN - 1H : (18) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : VN NAME ASN : ASN45899 IP : 14.188.165.59 CIDR : 14.188.160.0/20 PREFIX COUNT : 2411 UNIQUE IP COUNT : 7209216 ATTACKS DETECTED ASN45899 : 1H - 2 3H - 2 6H - 3 12H - 4 24H - 7 DateTime : 2019-11-07 07:24:49 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-07 18:40:22 |
| 181.126.83.125 | attack | Nov 7 13:06:59 gw1 sshd[20105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.126.83.125 Nov 7 13:07:01 gw1 sshd[20105]: Failed password for invalid user tomcat from 181.126.83.125 port 45090 ssh2 ... |
2019-11-07 18:56:10 |
| 217.29.18.206 | attack | proto=tcp . spt=41677 . dpt=25 . (Listed on unsubscore also rbldns-ru and manitu-net) (368) |
2019-11-07 18:49:26 |
| 157.230.153.203 | attackspambots | POST /wp-login.php HTTP/1.1 200 1827 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0 |
2019-11-07 18:27:46 |