城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.160.19 | attack | trying to access non-authorized port |
2020-03-14 05:16:20 |
| 142.93.160.19 | attack | firewall-block, port(s): 9000/tcp |
2020-02-21 05:30:50 |
| 142.93.160.19 | attack | Honeypot attack, port: 81, PTR: min-extra-scan-201-de-prod.binaryedge.ninja. |
2020-02-06 02:03:13 |
| 142.93.160.19 | attack | Port 22 Scan, PTR: min-extra-scan-201-de-prod.binaryedge.ninja. |
2020-01-15 15:36:23 |
| 142.93.160.56 | attackspambots | 6 failed attempt(s) in the last 24h |
2019-11-15 07:41:31 |
| 142.93.160.19 | attackspam | 523/tcp [2019-11-01]1pkt |
2019-11-01 14:27:53 |
| 142.93.160.178 | attack | Jun 26 13:10:34 srv-4 sshd\[6172\]: Invalid user user from 142.93.160.178 Jun 26 13:10:34 srv-4 sshd\[6172\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.160.178 Jun 26 13:10:36 srv-4 sshd\[6172\]: Failed password for invalid user user from 142.93.160.178 port 39046 ssh2 ... |
2019-06-26 19:44:47 |
| 142.93.160.178 | attackspam | Jun 25 08:58:49 dev sshd\[26379\]: Invalid user extension from 142.93.160.178 port 42474 Jun 25 08:58:49 dev sshd\[26379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.160.178 ... |
2019-06-25 19:11:01 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.160.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28913
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.93.160.193. IN A
;; AUTHORITY SECTION:
. 473 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400
;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 03:38:46 CST 2022
;; MSG SIZE rcvd: 107Host 193.160.93.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 193.160.93.142.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 118.89.26.127 | attackspam | Dec 16 10:04:38 v22018076622670303 sshd\[7905\]: Invalid user samtaney from 118.89.26.127 port 37540 Dec 16 10:04:38 v22018076622670303 sshd\[7905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.26.127 Dec 16 10:04:41 v22018076622670303 sshd\[7905\]: Failed password for invalid user samtaney from 118.89.26.127 port 37540 ssh2 ... |
2019-12-16 18:03:03 |
| 139.155.29.190 | attackspam | SSH Brute Force, server-1 sshd[31537]: Failed password for root from 139.155.29.190 port 43766 ssh2 |
2019-12-16 17:45:58 |
| 129.204.19.107 | attackbots | Dec 15 23:16:52 auw2 sshd\[8830\]: Invalid user hymans from 129.204.19.107 Dec 15 23:16:52 auw2 sshd\[8830\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.19.107 Dec 15 23:16:54 auw2 sshd\[8830\]: Failed password for invalid user hymans from 129.204.19.107 port 56446 ssh2 Dec 15 23:26:18 auw2 sshd\[9798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.19.107 user=root Dec 15 23:26:19 auw2 sshd\[9798\]: Failed password for root from 129.204.19.107 port 34538 ssh2 |
2019-12-16 17:43:30 |
| 112.133.248.109 | attack | 1576477615 - 12/16/2019 07:26:55 Host: 112.133.248.109/112.133.248.109 Port: 445 TCP Blocked |
2019-12-16 17:56:31 |
| 165.246.44.250 | attackbotsspam | --- report --- Dec 16 05:59:08 sshd: Connection from 165.246.44.250 port 35944 Dec 16 05:59:09 sshd: Invalid user info from 165.246.44.250 Dec 16 05:59:11 sshd: Failed password for invalid user info from 165.246.44.250 port 35944 ssh2 Dec 16 05:59:11 sshd: Received disconnect from 165.246.44.250: 11: Bye Bye [preauth] |
2019-12-16 17:43:12 |
| 98.128.139.96 | attack | Dec 16 06:13:59 linuxrulz sshd[6695]: Did not receive identification string from 98.128.139.96 port 58875 Dec 16 06:13:59 linuxrulz sshd[6696]: Did not receive identification string from 98.128.139.96 port 38765 Dec 16 06:17:24 linuxrulz sshd[7337]: Connection closed by 98.128.139.96 port 59701 [preauth] Dec 16 06:17:24 linuxrulz sshd[7338]: Connection closed by 98.128.139.96 port 39572 [preauth] Dec 16 06:34:50 linuxrulz sshd[9702]: Invalid user admin from 98.128.139.96 port 32917 Dec 16 06:34:50 linuxrulz sshd[9702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.128.139.96 Dec 16 06:34:50 linuxrulz sshd[9701]: Invalid user admin from 98.128.139.96 port 40996 Dec 16 06:34:50 linuxrulz sshd[9701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.128.139.96 Dec 16 06:34:52 linuxrulz sshd[9702]: Failed password for invalid user admin from 98.128.139.96 port 32917 ssh2 Dec 16 06:34:52 li........ ------------------------------- |
2019-12-16 18:05:29 |
| 45.224.105.61 | attack | Lines containing failures of 45.224.105.61 Dec 16 06:48:25 shared10 sshd[1316]: Invalid user admin from 45.224.105.61 port 58373 Dec 16 06:48:25 shared10 sshd[1316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.224.105.61 Dec 16 06:48:27 shared10 sshd[1316]: Failed password for invalid user admin from 45.224.105.61 port 58373 ssh2 Dec 16 06:48:28 shared10 sshd[1316]: Connection closed by invalid user admin 45.224.105.61 port 58373 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.224.105.61 |
2019-12-16 17:57:14 |
| 40.92.67.15 | attack | Dec 16 10:48:44 debian-2gb-vpn-nbg1-1 kernel: [860894.682784] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.67.15 DST=78.46.192.101 LEN=52 TOS=0x02 PREC=0x00 TTL=110 ID=5528 DF PROTO=TCP SPT=8965 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 |
2019-12-16 18:11:06 |
| 103.74.123.38 | attackbots | Dec 16 09:42:25 MK-Soft-Root2 sshd[18226]: Failed password for root from 103.74.123.38 port 41698 ssh2 ... |
2019-12-16 17:46:35 |
| 182.75.248.254 | attackbotsspam | Dec 15 23:39:54 eddieflores sshd\[19264\]: Invalid user yoshimitsu from 182.75.248.254 Dec 15 23:39:54 eddieflores sshd\[19264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.248.254 Dec 15 23:39:55 eddieflores sshd\[19264\]: Failed password for invalid user yoshimitsu from 182.75.248.254 port 43168 ssh2 Dec 15 23:46:27 eddieflores sshd\[19854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.248.254 user=root Dec 15 23:46:29 eddieflores sshd\[19854\]: Failed password for root from 182.75.248.254 port 50214 ssh2 |
2019-12-16 17:57:58 |
| 187.39.111.80 | attack | Dec 16 06:38:30 ws12vmsma01 sshd[16600]: Invalid user aspasia from 187.39.111.80 Dec 16 06:38:33 ws12vmsma01 sshd[16600]: Failed password for invalid user aspasia from 187.39.111.80 port 59304 ssh2 Dec 16 06:45:09 ws12vmsma01 sshd[17468]: Invalid user guest from 187.39.111.80 ... |
2019-12-16 18:04:54 |
| 14.169.186.118 | attack | IP: 14.169.186.118 ASN: AS45899 VNPT Corp Port: Message Submission 587 Found in one or more Blacklists Date: 16/12/2019 10:07:48 AM UTC |
2019-12-16 18:11:33 |
| 197.245.40.233 | attackbotsspam | IP: 197.245.40.233 ASN: AS11845 Vox-Telecom Port: IMAP over TLS protocol 993 Found in one or more Blacklists Date: 16/12/2019 6:27:09 AM UTC |
2019-12-16 17:44:13 |
| 168.232.188.78 | attack | Dec 16 14:09:13 our-server-hostname postfix/smtpd[30874]: connect from unknown[168.232.188.78] Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec 16 14:09:26 our-server-hostname postfix/smtpd[30874]: lost connection after RCPT from unknown[168.232.188.78] Dec 16 14:09:26 our-server-hostname postfix/smtpd[30874]: disconnect from unknown[168.232.188.78] Dec 16 16:08:27 our-server-hostname postfix/smtpd[18740]: connect from unknown[168.232.188.78] Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec 16 16:08:46 our-server-hostname postfix/smtpd[18740]: lost connection after RCPT from unknown[168.232.188.78] Dec 16 16:08:46 our-server-hostname postfix/smtpd[18740]: disconnect from unknown[168.232.188.78] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=168.232.188.78 |
2019-12-16 17:41:06 |
| 51.254.33.188 | attack | Dec 15 21:51:47 kapalua sshd\[20232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.ip-51-254-33.eu user=root Dec 15 21:51:49 kapalua sshd\[20232\]: Failed password for root from 51.254.33.188 port 54554 ssh2 Dec 15 21:56:51 kapalua sshd\[20723\]: Invalid user lingw from 51.254.33.188 Dec 15 21:56:51 kapalua sshd\[20723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.ip-51-254-33.eu Dec 15 21:56:53 kapalua sshd\[20723\]: Failed password for invalid user lingw from 51.254.33.188 port 59858 ssh2 |
2019-12-16 18:02:12 |