城市(city): unknown
省份(region): unknown
国家(country): unknown
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.130.58 | attack | Invalid user licm from 142.93.130.58 port 41768 |
2020-09-16 19:29:17 |
| 142.93.130.58 | attack | Sep 15 13:58:41 jane sshd[29119]: Failed password for root from 142.93.130.58 port 42294 ssh2 ... |
2020-09-15 20:49:16 |
| 142.93.130.58 | attackspambots | srv02 Mass scanning activity detected Target: 26326 .. |
2020-09-15 12:48:52 |
| 142.93.130.58 | attackspam | Sep 14 13:49:56 mockhub sshd[340546]: Failed password for root from 142.93.130.58 port 59176 ssh2 Sep 14 13:53:36 mockhub sshd[340784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.130.58 user=root Sep 14 13:53:38 mockhub sshd[340784]: Failed password for root from 142.93.130.58 port 42642 ssh2 ... |
2020-09-15 04:58:16 |
| 142.93.130.58 | attack | Sep 7 14:24:32 nuernberg-4g-01 sshd[422]: Failed password for root from 142.93.130.58 port 44126 ssh2 Sep 7 14:27:50 nuernberg-4g-01 sshd[1518]: Failed password for root from 142.93.130.58 port 48178 ssh2 Sep 7 14:31:12 nuernberg-4g-01 sshd[2669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.130.58 |
2020-09-07 21:32:34 |
| 142.93.130.58 | attack | Port scan: Attack repeated for 24 hours |
2020-09-07 13:17:50 |
| 142.93.130.58 | attackbots | srv02 Mass scanning activity detected Target: 29750 .. |
2020-09-07 05:53:38 |
| 142.93.130.58 | attackspambots | Aug 23 06:46:14 home sshd[3547347]: Failed password for root from 142.93.130.58 port 54758 ssh2 Aug 23 06:50:02 home sshd[3548659]: Invalid user epm from 142.93.130.58 port 35312 Aug 23 06:50:02 home sshd[3548659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.130.58 Aug 23 06:50:02 home sshd[3548659]: Invalid user epm from 142.93.130.58 port 35312 Aug 23 06:50:04 home sshd[3548659]: Failed password for invalid user epm from 142.93.130.58 port 35312 ssh2 ... |
2020-08-23 12:53:24 |
| 142.93.130.58 | attackbotsspam | Fail2Ban Ban Triggered |
2020-08-18 19:34:21 |
| 142.93.130.169 | attackbotsspam | Unauthorized access detected from black listed ip! |
2020-08-16 05:35:05 |
| 142.93.130.58 | attackspam | Triggered by Fail2Ban at Ares web server |
2020-08-11 23:20:25 |
| 142.93.130.58 | attack | Aug 7 06:59:07 mertcangokgoz-v4-main kernel: [389683.851455] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:5a:6b:04:d2:74:7f:6e:37:e3:08:00 SRC=142.93.130.58 DST=94.130.96.165 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=49083 PROTO=TCP SPT=44570 DPT=1166 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-08-07 12:07:03 |
| 142.93.130.58 | attackbots | firewall-block, port(s): 9578/tcp |
2020-08-06 08:27:50 |
| 142.93.130.58 | attackspambots |
|
2020-08-06 00:49:05 |
| 142.93.130.58 | attackbots | Invalid user samuele from 142.93.130.58 port 49480 |
2020-07-27 20:52:14 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.130.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4867
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.93.130.100. IN A
;; AUTHORITY SECTION:
. 292 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400
;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:42:56 CST 2022
;; MSG SIZE rcvd: 107Host 100.130.93.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 100.130.93.142.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 218.92.0.223 | attack | Jul 30 02:10:51 eventyay sshd[16527]: Failed password for root from 218.92.0.223 port 58167 ssh2 Jul 30 02:10:54 eventyay sshd[16527]: Failed password for root from 218.92.0.223 port 58167 ssh2 Jul 30 02:10:58 eventyay sshd[16527]: Failed password for root from 218.92.0.223 port 58167 ssh2 Jul 30 02:11:01 eventyay sshd[16527]: Failed password for root from 218.92.0.223 port 58167 ssh2 ... |
2020-07-30 08:21:04 |
| 106.12.121.179 | attackspam | Jul 30 06:52:14 journals sshd\[4329\]: Invalid user qize from 106.12.121.179 Jul 30 06:52:14 journals sshd\[4329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.121.179 Jul 30 06:52:16 journals sshd\[4329\]: Failed password for invalid user qize from 106.12.121.179 port 57152 ssh2 Jul 30 06:56:21 journals sshd\[5016\]: Invalid user krishna from 106.12.121.179 Jul 30 06:56:21 journals sshd\[5016\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.121.179 ... |
2020-07-30 12:09:01 |
| 104.248.16.41 | attack | Multiport scan 37 ports : 1098 1692 2786 2981 3422 4175 4957 6439 8868 9367 9568 9846 10666 13545 14029 14330 14655 15207 15422 15901 16130 17278 20034 20683 21605 24053 24811 25975 26932 26951 27055 28946 30143 30211 31796 32348 32385 |
2020-07-30 08:22:22 |
| 104.129.194.244 | attackbots | Jul 30 00:07:24 plg sshd[4971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.244 Jul 30 00:07:26 plg sshd[4971]: Failed password for invalid user liangmm from 104.129.194.244 port 28077 ssh2 Jul 30 00:10:19 plg sshd[5158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.244 Jul 30 00:10:21 plg sshd[5158]: Failed password for invalid user luoyun from 104.129.194.244 port 10750 ssh2 Jul 30 00:13:24 plg sshd[5212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.244 Jul 30 00:13:26 plg sshd[5212]: Failed password for invalid user linqj from 104.129.194.244 port 49342 ssh2 Jul 30 00:16:16 plg sshd[5256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.244 ... |
2020-07-30 08:23:49 |
| 172.104.108.109 | attack | [Thu Jul 30 10:56:16.226586 2020] [:error] [pid 28485:tid 139696478869248] [client 172.104.108.109:42200] [client 172.104.108.109] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XyJE4M@uTJFGYTjqSIaxkQAAAqU"] ... |
2020-07-30 12:14:53 |
| 193.117.238.4 | attackspam | Jul 30 05:56:18 vps647732 sshd[21052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.117.238.4 Jul 30 05:56:20 vps647732 sshd[21052]: Failed password for invalid user liangzheming from 193.117.238.4 port 64560 ssh2 ... |
2020-07-30 12:11:06 |
| 222.186.175.167 | attack | Jul 30 06:04:11 vps639187 sshd\[425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root Jul 30 06:04:12 vps639187 sshd\[425\]: Failed password for root from 222.186.175.167 port 15834 ssh2 Jul 30 06:04:16 vps639187 sshd\[425\]: Failed password for root from 222.186.175.167 port 15834 ssh2 ... |
2020-07-30 12:04:24 |
| 112.167.227.126 | attack | blogonese.net 112.167.227.126 [30/Jul/2020:05:56:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4261 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" blogonese.net 112.167.227.126 [30/Jul/2020:05:56:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4261 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" |
2020-07-30 12:17:52 |
| 49.247.128.68 | attackbotsspam | Jul 30 05:51:30 OPSO sshd\[978\]: Invalid user ygcao from 49.247.128.68 port 41194 Jul 30 05:51:30 OPSO sshd\[978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.128.68 Jul 30 05:51:32 OPSO sshd\[978\]: Failed password for invalid user ygcao from 49.247.128.68 port 41194 ssh2 Jul 30 05:56:23 OPSO sshd\[1753\]: Invalid user wenqing from 49.247.128.68 port 54612 Jul 30 05:56:23 OPSO sshd\[1753\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.128.68 |
2020-07-30 12:07:23 |
| 101.78.229.4 | attack | Invalid user rs from 101.78.229.4 port 37314 |
2020-07-30 08:08:09 |
| 106.12.14.130 | attackbots | Jul 29 20:17:42 ny01 sshd[17236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Jul 29 20:17:44 ny01 sshd[17236]: Failed password for invalid user chenjing from 106.12.14.130 port 42434 ssh2 Jul 29 20:19:21 ny01 sshd[17442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 |
2020-07-30 08:23:29 |
| 35.200.185.127 | attackbots | Jul 30 00:37:58 vps sshd[1156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.200.185.127 Jul 30 00:38:00 vps sshd[1156]: Failed password for invalid user danish from 35.200.185.127 port 48376 ssh2 Jul 30 00:48:14 vps sshd[1723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.200.185.127 ... |
2020-07-30 08:13:04 |
| 49.235.144.143 | attackspambots | Jul 30 05:51:15 vps sshd[146952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.144.143 Jul 30 05:51:17 vps sshd[146952]: Failed password for invalid user yousnow from 49.235.144.143 port 34972 ssh2 Jul 30 05:56:22 vps sshd[169081]: Invalid user wusifan from 49.235.144.143 port 60914 Jul 30 05:56:22 vps sshd[169081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.144.143 Jul 30 05:56:24 vps sshd[169081]: Failed password for invalid user wusifan from 49.235.144.143 port 60914 ssh2 ... |
2020-07-30 12:08:31 |
| 88.156.122.72 | attack | Ssh brute force |
2020-07-30 08:24:15 |
| 87.251.74.6 | attackspambots | 2020-07-30T06:08:48.631360vps751288.ovh.net sshd\[23157\]: Invalid user from 87.251.74.6 port 59174 2020-07-30T06:08:48.654795vps751288.ovh.net sshd\[23156\]: Invalid user admin from 87.251.74.6 port 61882 2020-07-30T06:08:49.086737vps751288.ovh.net sshd\[23157\]: Failed none for invalid user from 87.251.74.6 port 59174 ssh2 2020-07-30T06:08:49.088269vps751288.ovh.net sshd\[23156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.251.74.6 2020-07-30T06:08:51.294402vps751288.ovh.net sshd\[23156\]: Failed password for invalid user admin from 87.251.74.6 port 61882 ssh2 |
2020-07-30 12:09:15 |