城市(city): unknown
省份(region): unknown
国家(country): Canada
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.44.139.12 | attackspam | SSH Brute-Forcing (server2) |
2020-09-14 01:23:11 |
| 142.44.139.12 | attack | (sshd) Failed SSH login from 142.44.139.12 (CA/Canada/ns552097.ip-142-44-139.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 07:45:47 amsweb01 sshd[6776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.139.12 user=root Sep 13 07:45:49 amsweb01 sshd[6776]: Failed password for root from 142.44.139.12 port 39114 ssh2 Sep 13 07:45:51 amsweb01 sshd[6776]: Failed password for root from 142.44.139.12 port 39114 ssh2 Sep 13 07:45:54 amsweb01 sshd[6776]: Failed password for root from 142.44.139.12 port 39114 ssh2 Sep 13 07:45:56 amsweb01 sshd[6776]: Failed password for root from 142.44.139.12 port 39114 ssh2 |
2020-09-13 17:15:49 |
| 142.44.139.12 | attackbots | Sep 1 23:36:35 itv-usvr-01 sshd[17505]: Invalid user admin from 142.44.139.12 |
2020-09-02 01:44:02 |
| 142.44.139.12 | attack | $f2bV_matches |
2020-08-24 16:07:44 |
| 142.44.139.12 | attackspam | SSH |
2020-08-13 12:08:12 |
| 142.44.139.12 | attackbots | 20 attempts against mh-misbehave-ban on lake |
2020-07-18 23:52:00 |
| 142.44.139.12 | attackbotsspam | srv02 SSH BruteForce Attacks 22 .. |
2020-07-13 15:55:50 |
| 142.44.139.12 | attackbotsspam | 2020-07-11 06:56:05.758995-0500 localhost sshd[31053]: Failed password for root from 142.44.139.12 port 34692 ssh2 |
2020-07-11 22:59:19 |
| 142.44.139.12 | attackspam | Jun 27 12:20:53 IngegnereFirenze sshd[30688]: User sshd from 142.44.139.12 not allowed because not listed in AllowUsers ... |
2020-06-27 22:16:02 |
| 142.44.139.146 | attack | Jun 23 18:29:54 debian-2gb-nbg1-2 kernel: \[15188463.973612\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.44.139.146 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=20047 PROTO=TCP SPT=47313 DPT=23 WINDOW=41929 RES=0x00 SYN URGP=0 |
2020-06-24 01:03:35 |
| 142.44.139.146 | attackbotsspam | SSH login attempts. |
2020-06-19 13:33:08 |
| 142.44.139.146 | attackbots | 20/6/18@08:09:06: FAIL: IoT-Telnet address from=142.44.139.146 20/6/18@08:09:06: FAIL: IoT-Telnet address from=142.44.139.146 20/6/18@08:09:06: FAIL: IoT-Telnet address from=142.44.139.146 20/6/18@08:09:06: FAIL: IoT-Telnet address from=142.44.139.146 20/6/18@08:09:06: FAIL: IoT-Telnet address from=142.44.139.146 20/6/18@08:09:06: FAIL: IoT-Telnet address from=142.44.139.146 ... |
2020-06-18 21:24:40 |
| 142.44.139.146 | attackspambots | Telnet Server BruteForce Attack |
2020-06-10 22:15:07 |
| 142.44.139.12 | attackbotsspam | Jun 7 20:38:38 [Censored Hostname] sshd[13436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.139.12 Jun 7 20:38:40 [Censored Hostname] sshd[13436]: Failed password for invalid user advance from 142.44.139.12 port 52840 ssh2[...] |
2020-06-08 02:46:55 |
| 142.44.139.12 | attackbotsspam | Jun 7 12:37:05 [Censored Hostname] sshd[8225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.139.12 Jun 7 12:37:07 [Censored Hostname] sshd[8225]: Failed password for invalid user admin from 142.44.139.12 port 44494 ssh2[...] |
2020-06-07 19:14:58 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.44.139.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52151
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.44.139.57. IN A
;; AUTHORITY SECTION:
. 593 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400
;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:04:43 CST 2022
;; MSG SIZE rcvd: 10657.139.44.142.in-addr.arpa domain name pointer ns551542.ip-142-44-139.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
57.139.44.142.in-addr.arpa name = ns551542.ip-142-44-139.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 177.8.244.38 | attackbotsspam | ssh brute force |
2019-10-17 16:30:13 |
| 188.225.76.207 | attackspam | firewall-block, port(s): 51389/tcp, 54389/tcp, 60389/tcp, 61389/tcp |
2019-10-17 16:20:22 |
| 106.13.222.115 | attack | Oct 16 05:19:07 extapp sshd[30155]: Failed password for r.r from 106.13.222.115 port 39864 ssh2 Oct 16 05:24:39 extapp sshd[32342]: Invalid user cameron from 106.13.222.115 Oct 16 05:24:41 extapp sshd[32342]: Failed password for invalid user cameron from 106.13.222.115 port 50030 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.222.115 |
2019-10-17 16:13:19 |
| 47.52.54.176 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/47.52.54.176/ GB - 1H : (84) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN45102 IP : 47.52.54.176 CIDR : 47.52.0.0/17 PREFIX COUNT : 293 UNIQUE IP COUNT : 1368320 WYKRYTE ATAKI Z ASN45102 : 1H - 1 3H - 1 6H - 1 12H - 5 24H - 10 DateTime : 2019-10-17 05:50:56 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery |
2019-10-17 16:14:25 |
| 210.71.232.236 | attackbots | Oct 16 18:03:25 web9 sshd\[14499\]: Invalid user right from 210.71.232.236 Oct 16 18:03:25 web9 sshd\[14499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.71.232.236 Oct 16 18:03:27 web9 sshd\[14499\]: Failed password for invalid user right from 210.71.232.236 port 36688 ssh2 Oct 16 18:07:45 web9 sshd\[15150\]: Invalid user ventral from 210.71.232.236 Oct 16 18:07:45 web9 sshd\[15150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.71.232.236 |
2019-10-17 16:18:31 |
| 117.50.49.74 | attack | Automatic report - SSH Brute-Force Attack |
2019-10-17 16:04:52 |
| 123.136.161.146 | attackbots | 2019-10-17T07:57:10.476421shield sshd\[31999\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146 user=root 2019-10-17T07:57:12.829556shield sshd\[31999\]: Failed password for root from 123.136.161.146 port 56008 ssh2 2019-10-17T08:01:35.739271shield sshd\[32350\]: Invalid user thaiset from 123.136.161.146 port 58796 2019-10-17T08:01:35.743642shield sshd\[32350\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146 2019-10-17T08:01:37.479040shield sshd\[32350\]: Failed password for invalid user thaiset from 123.136.161.146 port 58796 ssh2 |
2019-10-17 16:16:32 |
| 175.19.159.242 | attack | 175.19.159.242 - - \[17/Oct/2019:05:51:08 +0200\] "GET http://m.search.yahoo.com/ HTTP/1.1" 200 381 "http://m.search.yahoo.com/" "Mozilla/4.0 \(compatible\; MSIE 6.0\; Windows NT 5.1\)" |
2019-10-17 16:08:09 |
| 159.65.9.28 | attackbotsspam | Oct 17 07:02:07 XXXXXX sshd[37477]: Invalid user othello from 159.65.9.28 port 54476 |
2019-10-17 16:06:32 |
| 202.88.241.107 | attack | $f2bV_matches_ltvn |
2019-10-17 16:05:42 |
| 45.227.255.173 | attackbots | Invalid user test from 45.227.255.173 port 24711 |
2019-10-17 16:06:56 |
| 46.1.231.135 | attackbotsspam | Honeypot attack, port: 81, PTR: PTR record not found |
2019-10-17 16:40:29 |
| 91.148.141.78 | attackspambots | helo= |
2019-10-17 16:07:40 |
| 106.75.174.87 | attackbotsspam | Invalid user k from 106.75.174.87 port 50924 |
2019-10-17 16:22:59 |
| 73.252.161.153 | attack | Oct 17 07:45:56 DAAP sshd[16959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.252.161.153 user=root Oct 17 07:45:58 DAAP sshd[16959]: Failed password for root from 73.252.161.153 port 46782 ssh2 Oct 17 07:52:07 DAAP sshd[17008]: Invalid user lk from 73.252.161.153 port 43158 Oct 17 07:52:07 DAAP sshd[17008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.252.161.153 Oct 17 07:52:07 DAAP sshd[17008]: Invalid user lk from 73.252.161.153 port 43158 Oct 17 07:52:09 DAAP sshd[17008]: Failed password for invalid user lk from 73.252.161.153 port 43158 ssh2 ... |
2019-10-17 16:25:47 |