城市(city): unknown
省份(region): unknown
国家(country): Taiwan, Province of China
运营商(isp): Taiwan Academic Network
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): University/College/School
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | 2019-11-02T08:23:54.221980abusebot-5.cloudsearch.cf sshd\[22220\]: Invalid user Radio2017 from 140.114.85.52 port 56048 |
2019-11-02 18:06:46 |
| attackbots | Oct 31 15:40:00 ip-172-31-62-245 sshd\[15018\]: Invalid user sensivity from 140.114.85.52\ Oct 31 15:40:02 ip-172-31-62-245 sshd\[15018\]: Failed password for invalid user sensivity from 140.114.85.52 port 51224 ssh2\ Oct 31 15:44:34 ip-172-31-62-245 sshd\[15030\]: Invalid user test from 140.114.85.52\ Oct 31 15:44:37 ip-172-31-62-245 sshd\[15030\]: Failed password for invalid user test from 140.114.85.52 port 34204 ssh2\ Oct 31 15:49:11 ip-172-31-62-245 sshd\[15070\]: Failed password for root from 140.114.85.52 port 45422 ssh2\ |
2019-11-01 01:44:39 |
| attack | $f2bV_matches |
2019-10-29 04:30:15 |
| attack | Oct 28 15:08:54 vpn01 sshd[1870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.114.85.52 Oct 28 15:08:57 vpn01 sshd[1870]: Failed password for invalid user 12 from 140.114.85.52 port 33470 ssh2 ... |
2019-10-28 23:05:57 |
| attackspambots | $f2bV_matches |
2019-10-24 13:06:59 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 140.114.85.215 | attackbotsspam | Oct 7 18:29:25 ncomp sshd[5130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.114.85.215 user=root Oct 7 18:29:26 ncomp sshd[5130]: Failed password for root from 140.114.85.215 port 49206 ssh2 Oct 7 18:40:51 ncomp sshd[5335]: Invalid user 123 from 140.114.85.215 |
2019-10-08 02:37:14 |
| 140.114.85.215 | attackspambots | Oct 2 04:19:36 hcbbdb sshd\[8785\]: Invalid user oracle from 140.114.85.215 Oct 2 04:19:36 hcbbdb sshd\[8785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tifa.cs.nthu.edu.tw Oct 2 04:19:37 hcbbdb sshd\[8785\]: Failed password for invalid user oracle from 140.114.85.215 port 42206 ssh2 Oct 2 04:24:33 hcbbdb sshd\[9304\]: Invalid user cao from 140.114.85.215 Oct 2 04:24:33 hcbbdb sshd\[9304\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tifa.cs.nthu.edu.tw |
2019-10-02 19:24:13 |
| 140.114.85.215 | attack | Oct 2 00:50:23 hcbbdb sshd\[17352\]: Invalid user user from 140.114.85.215 Oct 2 00:50:23 hcbbdb sshd\[17352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tifa.cs.nthu.edu.tw Oct 2 00:50:26 hcbbdb sshd\[17352\]: Failed password for invalid user user from 140.114.85.215 port 48912 ssh2 Oct 2 00:55:10 hcbbdb sshd\[17894\]: Invalid user user5 from 140.114.85.215 Oct 2 00:55:10 hcbbdb sshd\[17894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tifa.cs.nthu.edu.tw |
2019-10-02 09:03:18 |
| 140.114.85.215 | attackspam | Sep 29 11:41:59 hcbb sshd\[16202\]: Invalid user smbtest from 140.114.85.215 Sep 29 11:41:59 hcbb sshd\[16202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tifa.cs.nthu.edu.tw Sep 29 11:42:02 hcbb sshd\[16202\]: Failed password for invalid user smbtest from 140.114.85.215 port 58494 ssh2 Sep 29 11:46:35 hcbb sshd\[16576\]: Invalid user admin from 140.114.85.215 Sep 29 11:46:35 hcbb sshd\[16576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tifa.cs.nthu.edu.tw |
2019-09-30 05:54:39 |
| 140.114.85.215 | attack | Sep 28 05:54:14 srv206 sshd[1980]: Invalid user Ionutz from 140.114.85.215 ... |
2019-09-28 13:53:53 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.114.85.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51920
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.114.85.52. IN A
;; AUTHORITY SECTION:
. 410 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019102301 1800 900 604800 86400
;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 13:06:56 CST 2019
;; MSG SIZE rcvd: 117
52.85.114.140.in-addr.arpa domain name pointer speech.cs.nthu.edu.tw.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
52.85.114.140.in-addr.arpa name = speech.cs.nthu.edu.tw.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 95.188.216.245 | attackbots | Unauthorized connection attempt detected from IP address 95.188.216.245 to port 80 [T] |
2020-08-14 04:43:13 |
| 111.67.204.211 | attackspambots | [ssh] SSH attack |
2020-08-14 04:57:19 |
| 90.189.197.237 | attackbotsspam | Unauthorized connection attempt detected from IP address 90.189.197.237 to port 23 [T] |
2020-08-14 04:44:00 |
| 190.199.217.246 | attackspambots | Unauthorized connection attempt detected from IP address 190.199.217.246 to port 445 [T] |
2020-08-14 04:35:09 |
| 159.65.219.250 | attack | 159.65.219.250 - - [13/Aug/2020:22:46:10 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.219.250 - - [13/Aug/2020:22:46:11 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.219.250 - - [13/Aug/2020:22:46:11 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.219.250 - - [13/Aug/2020:22:46:12 +0200] "POST /wp-login.php HTTP/1.1" 200 1790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.219.250 - - [13/Aug/2020:22:46:12 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.219.250 - - [13/Aug/2020:22:46:13 +0200] "POST /wp-login.php HTTP/1.1" 200 1790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ... |
2020-08-14 05:07:06 |
| 176.59.36.203 | attackbots | Unauthorized connection attempt detected from IP address 176.59.36.203 to port 445 [T] |
2020-08-14 04:38:32 |
| 222.186.173.183 | attackspambots | Aug 13 18:05:32 firewall sshd[6987]: Failed password for root from 222.186.173.183 port 21448 ssh2 Aug 13 18:05:35 firewall sshd[6987]: Failed password for root from 222.186.173.183 port 21448 ssh2 Aug 13 18:05:39 firewall sshd[6987]: Failed password for root from 222.186.173.183 port 21448 ssh2 ... |
2020-08-14 05:06:15 |
| 51.91.212.80 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 41 - port: 6009 proto: tcp cat: Misc Attackbytes: 60 |
2020-08-14 04:47:54 |
| 188.42.62.62 | attackspambots | IDS admin |
2020-08-14 04:54:43 |
| 113.204.205.66 | attackbots | 2020-08-13T22:42:38.119390n23.at sshd[714083]: Failed password for root from 113.204.205.66 port 22632 ssh2 2020-08-13T22:46:16.684540n23.at sshd[717130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.204.205.66 user=root 2020-08-13T22:46:18.855757n23.at sshd[717130]: Failed password for root from 113.204.205.66 port 38242 ssh2 ... |
2020-08-14 05:04:44 |
| 51.254.175.65 | attackspambots | Unauthorized connection attempt detected from IP address 51.254.175.65 to port 3389 [T] |
2020-08-14 04:47:09 |
| 106.13.189.158 | attackspambots | Aug 13 22:38:45 inter-technics sshd[6724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.189.158 user=root Aug 13 22:38:47 inter-technics sshd[6724]: Failed password for root from 106.13.189.158 port 35514 ssh2 Aug 13 22:42:32 inter-technics sshd[7034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.189.158 user=root Aug 13 22:42:34 inter-technics sshd[7034]: Failed password for root from 106.13.189.158 port 34345 ssh2 Aug 13 22:46:20 inter-technics sshd[7292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.189.158 user=root Aug 13 22:46:22 inter-technics sshd[7292]: Failed password for root from 106.13.189.158 port 33165 ssh2 ... |
2020-08-14 05:03:43 |
| 52.141.17.229 | attack | Unauthorized connection attempt detected from IP address 52.141.17.229 to port 23 [T] |
2020-08-14 04:46:46 |
| 106.12.125.241 | attack | 2020-08-13T22:36:50.568038vps773228.ovh.net sshd[11100]: Failed password for root from 106.12.125.241 port 42660 ssh2 2020-08-13T22:41:42.095960vps773228.ovh.net sshd[11178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.125.241 user=root 2020-08-13T22:41:43.985684vps773228.ovh.net sshd[11178]: Failed password for root from 106.12.125.241 port 49066 ssh2 2020-08-13T22:46:29.488071vps773228.ovh.net sshd[11257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.125.241 user=root 2020-08-13T22:46:31.443394vps773228.ovh.net sshd[11257]: Failed password for root from 106.12.125.241 port 55476 ssh2 ... |
2020-08-14 04:52:52 |
| 180.190.61.14 | attackspam | Unauthorized connection attempt detected from IP address 180.190.61.14 to port 1433 [T] |
2020-08-14 04:38:02 |