城市(city): Asunción
省份(region): Asuncion
国家(country): Paraguay
运营商(isp): E-Life Paraguay S.A.
主机名(hostname): unknown
机构(organization): E-life Paraguay S.A.
使用类型(Usage Type): Fixed Line ISP
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbotsspam | Oct 5 13:00:03 cp sshd[3971]: Failed password for root from 200.108.139.242 port 55076 ssh2 Oct 5 13:03:43 cp sshd[6376]: Failed password for root from 200.108.139.242 port 46112 ssh2 |
2020-10-06 02:36:18 |
| attack | 5x Failed Password |
2020-10-05 18:24:22 |
| attackbotsspam | SSH / Telnet Brute Force Attempts on Honeypot |
2020-10-04 08:16:25 |
| attack | 2020-10-03T23:04:24.374094hostname sshd[63591]: Invalid user testing from 200.108.139.242 port 55036 ... |
2020-10-04 00:42:33 |
| attack | Oct 3 04:07:43 lanister sshd[16240]: Invalid user jake from 200.108.139.242 Oct 3 04:07:43 lanister sshd[16240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 Oct 3 04:07:43 lanister sshd[16240]: Invalid user jake from 200.108.139.242 Oct 3 04:07:46 lanister sshd[16240]: Failed password for invalid user jake from 200.108.139.242 port 57422 ssh2 |
2020-10-03 16:32:07 |
| attackbots | Sep 6 12:32:33 plg sshd[16546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 Sep 6 12:32:36 plg sshd[16546]: Failed password for invalid user luthor from 200.108.139.242 port 59930 ssh2 Sep 6 12:35:41 plg sshd[16592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root Sep 6 12:35:42 plg sshd[16592]: Failed password for invalid user root from 200.108.139.242 port 53605 ssh2 Sep 6 12:38:49 plg sshd[16645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root Sep 6 12:38:51 plg sshd[16645]: Failed password for invalid user root from 200.108.139.242 port 47277 ssh2 Sep 6 12:41:59 plg sshd[16743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root ... |
2020-09-07 01:20:55 |
| attackspam | Sep 6 10:27:41 plg sshd[14702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root Sep 6 10:27:43 plg sshd[14702]: Failed password for invalid user root from 200.108.139.242 port 52592 ssh2 Sep 6 10:30:58 plg sshd[14743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root Sep 6 10:31:00 plg sshd[14743]: Failed password for invalid user root from 200.108.139.242 port 46263 ssh2 Sep 6 10:34:16 plg sshd[14781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root Sep 6 10:34:18 plg sshd[14781]: Failed password for invalid user root from 200.108.139.242 port 39935 ssh2 Sep 6 10:37:25 plg sshd[14809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root ... |
2020-09-06 16:42:25 |
| attack | 2020-09-05T13:09:15.437293morrigan.ad5gb.com sshd[1253523]: Failed password for root from 200.108.139.242 port 35145 ssh2 2020-09-05T13:09:16.074877morrigan.ad5gb.com sshd[1253523]: Disconnected from authenticating user root 200.108.139.242 port 35145 [preauth] |
2020-09-06 08:42:31 |
| attackbotsspam | (sshd) Failed SSH login from 200.108.139.242 (PY/Paraguay/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 3 09:45:10 server sshd[31869]: Invalid user git from 200.108.139.242 port 51073 Sep 3 09:45:12 server sshd[31869]: Failed password for invalid user git from 200.108.139.242 port 51073 ssh2 Sep 3 09:53:35 server sshd[1660]: Invalid user admin from 200.108.139.242 port 45010 Sep 3 09:53:38 server sshd[1660]: Failed password for invalid user admin from 200.108.139.242 port 45010 ssh2 Sep 3 09:58:22 server sshd[3032]: Invalid user server from 200.108.139.242 port 48578 |
2020-09-04 01:02:28 |
| attackspam | SSH / Telnet Brute Force Attempts on Honeypot |
2020-09-03 16:25:56 |
| attackspam | SSH / Telnet Brute Force Attempts on Honeypot |
2020-09-03 08:34:59 |
| attackbotsspam | Aug 25 11:48:51 XXX sshd[23405]: Invalid user backup from 200.108.139.242 port 33902 |
2020-08-25 20:54:33 |
| attackspam | Aug 19 03:55:54 IngegnereFirenze sshd[24555]: Failed password for invalid user postgres from 200.108.139.242 port 37062 ssh2 ... |
2020-08-19 12:46:41 |
| attack | 2020-08-16T15:31:24.274094abusebot-5.cloudsearch.cf sshd[21331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root 2020-08-16T15:31:26.214830abusebot-5.cloudsearch.cf sshd[21331]: Failed password for root from 200.108.139.242 port 60908 ssh2 2020-08-16T15:36:12.942414abusebot-5.cloudsearch.cf sshd[21341]: Invalid user karla from 200.108.139.242 port 36474 2020-08-16T15:36:12.947602abusebot-5.cloudsearch.cf sshd[21341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 2020-08-16T15:36:12.942414abusebot-5.cloudsearch.cf sshd[21341]: Invalid user karla from 200.108.139.242 port 36474 2020-08-16T15:36:14.757841abusebot-5.cloudsearch.cf sshd[21341]: Failed password for invalid user karla from 200.108.139.242 port 36474 ssh2 2020-08-16T15:40:55.819254abusebot-5.cloudsearch.cf sshd[21401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhos ... |
2020-08-17 01:55:43 |
| attackspambots | Ssh brute force |
2020-08-08 08:23:26 |
| attackspam | Aug 5 09:19:05 server sshd[5368]: Failed password for root from 200.108.139.242 port 47476 ssh2 Aug 5 09:24:15 server sshd[13213]: Failed password for root from 200.108.139.242 port 53237 ssh2 Aug 5 09:29:25 server sshd[20255]: Failed password for root from 200.108.139.242 port 58996 ssh2 |
2020-08-05 16:01:06 |
| attack | Jul 16 05:55:18 nextcloud sshd\[24546\]: Invalid user uftp from 200.108.139.242 Jul 16 05:55:18 nextcloud sshd\[24546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 Jul 16 05:55:20 nextcloud sshd\[24546\]: Failed password for invalid user uftp from 200.108.139.242 port 35026 ssh2 |
2020-07-16 12:38:33 |
| attackspam | $f2bV_matches |
2020-07-07 14:12:14 |
| attack | Invalid user ubnt from 200.108.139.242 port 34303 |
2020-06-20 18:44:45 |
| attackbots | Jun 16 08:41:48 server sshd[30290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 Jun 16 08:41:50 server sshd[30290]: Failed password for invalid user ts3 from 200.108.139.242 port 44358 ssh2 Jun 16 08:45:51 server sshd[30630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 ... |
2020-06-16 15:58:11 |
| attack | May 28 22:03:47 santamaria sshd\[25413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root May 28 22:03:49 santamaria sshd\[25413\]: Failed password for root from 200.108.139.242 port 39514 ssh2 May 28 22:08:15 santamaria sshd\[25459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root ... |
2020-05-29 06:12:47 |
| attackspam | 2020-05-27T10:10:10.260286vps751288.ovh.net sshd\[25101\]: Invalid user yellow from 200.108.139.242 port 35761 2020-05-27T10:10:10.268724vps751288.ovh.net sshd\[25101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 2020-05-27T10:10:12.026494vps751288.ovh.net sshd\[25101\]: Failed password for invalid user yellow from 200.108.139.242 port 35761 ssh2 2020-05-27T10:13:47.658919vps751288.ovh.net sshd\[25173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 user=root 2020-05-27T10:13:49.873495vps751288.ovh.net sshd\[25173\]: Failed password for root from 200.108.139.242 port 32860 ssh2 |
2020-05-27 17:09:36 |
| attackbotsspam | May 14 12:31:51 *** sshd[16159]: Invalid user aeltie from 200.108.139.242 |
2020-05-14 22:29:10 |
| attack | May 5 06:20:46 vps46666688 sshd[27391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 May 5 06:20:48 vps46666688 sshd[27391]: Failed password for invalid user lisp from 200.108.139.242 port 58021 ssh2 ... |
2020-05-05 17:51:03 |
| attackspam | Apr 16 03:50:45 game-panel sshd[29059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 Apr 16 03:50:47 game-panel sshd[29059]: Failed password for invalid user oracle from 200.108.139.242 port 41812 ssh2 Apr 16 03:55:17 game-panel sshd[29249]: Failed password for root from 200.108.139.242 port 45610 ssh2 |
2020-04-16 13:08:50 |
| attackbotsspam | Apr 11 06:34:07 rotator sshd\[2604\]: Failed password for root from 200.108.139.242 port 48619 ssh2Apr 11 06:36:29 rotator sshd\[3414\]: Failed password for root from 200.108.139.242 port 35055 ssh2Apr 11 06:38:29 rotator sshd\[3461\]: Failed password for root from 200.108.139.242 port 49069 ssh2Apr 11 06:40:26 rotator sshd\[4256\]: Invalid user mysql from 200.108.139.242Apr 11 06:40:28 rotator sshd\[4256\]: Failed password for invalid user mysql from 200.108.139.242 port 34862 ssh2Apr 11 06:42:31 rotator sshd\[4298\]: Failed password for root from 200.108.139.242 port 48878 ssh2 ... |
2020-04-11 13:39:59 |
| attack | Apr 8 15:51:51 ip-172-31-61-156 sshd[12311]: Failed password for invalid user sahil from 200.108.139.242 port 37393 ssh2 Apr 8 15:56:29 ip-172-31-61-156 sshd[12575]: Invalid user user from 200.108.139.242 Apr 8 15:56:29 ip-172-31-61-156 sshd[12575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 Apr 8 15:56:29 ip-172-31-61-156 sshd[12575]: Invalid user user from 200.108.139.242 Apr 8 15:56:30 ip-172-31-61-156 sshd[12575]: Failed password for invalid user user from 200.108.139.242 port 40078 ssh2 ... |
2020-04-09 01:39:14 |
| attackspambots | 2020-03-11T10:38:50.623687shield sshd\[4361\]: Invalid user QWE!@\#ZXC from 200.108.139.242 port 38617 2020-03-11T10:38:50.629550shield sshd\[4361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 2020-03-11T10:38:52.710017shield sshd\[4361\]: Failed password for invalid user QWE!@\#ZXC from 200.108.139.242 port 38617 ssh2 2020-03-11T10:43:08.563699shield sshd\[5124\]: Invalid user miro from 200.108.139.242 port 41344 2020-03-11T10:43:08.567314shield sshd\[5124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 |
2020-03-11 23:36:10 |
| attackspam | Feb 26 19:17:01 MK-Soft-Root1 sshd[29898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 Feb 26 19:17:03 MK-Soft-Root1 sshd[29898]: Failed password for invalid user trung from 200.108.139.242 port 43572 ssh2 ... |
2020-02-27 02:41:52 |
| attackbotsspam | Jan 9 10:07:58 vps46666688 sshd[21006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 Jan 9 10:08:00 vps46666688 sshd[21006]: Failed password for invalid user bib from 200.108.139.242 port 41663 ssh2 ... |
2020-01-09 23:59:17 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.108.139.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.108.139.242. IN A
;; AUTHORITY SECTION:
. 1426 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019032800 1800 900 604800 86400
;; Query time: 209 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 29 02:20:36 CST 2019
;; MSG SIZE rcvd: 119
Host 242.139.108.200.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 242.139.108.200.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.244.74.169 | attackbotsspam | SSH Brute Force |
2020-09-11 21:46:38 |
| 185.153.198.229 | attack |
|
2020-09-11 21:34:47 |
| 172.105.43.21 | attackbotsspam |
|
2020-09-11 21:52:03 |
| 106.54.169.15 | attackbotsspam | port scan and connect, tcp 1433 (ms-sql-s) |
2020-09-11 21:30:45 |
| 51.255.172.77 | attackbots | $f2bV_matches |
2020-09-11 21:49:38 |
| 95.181.172.39 | attackspam | 1599757045 - 09/10/2020 18:57:25 Host: 95.181.172.39/95.181.172.39 Port: 623 TCP Blocked ... |
2020-09-11 21:52:16 |
| 116.75.118.164 | attackspambots | " " |
2020-09-11 21:45:28 |
| 109.87.18.16 | attackspambots | Sep 10 20:00:45 ssh2 sshd[16392]: User root from 109.87.18.16 not allowed because not listed in AllowUsers Sep 10 20:00:45 ssh2 sshd[16392]: Failed password for invalid user root from 109.87.18.16 port 51926 ssh2 Sep 10 20:00:46 ssh2 sshd[16392]: Connection closed by invalid user root 109.87.18.16 port 51926 [preauth] ... |
2020-09-11 21:43:26 |
| 132.145.242.238 | attackspambots | $f2bV_matches |
2020-09-11 21:58:43 |
| 114.34.241.158 | attackspambots | Telnet Server BruteForce Attack |
2020-09-11 22:01:29 |
| 142.93.242.246 | attack | Listed on rbldns-ru also zen-spamhaus and abuseat-org / proto=6 . srcport=51117 . dstport=2451 . (890) |
2020-09-11 21:29:36 |
| 181.225.79.66 | attackbots | Sep 11 07:00:55 ssh2 sshd[92341]: Invalid user pi from 181.225.79.66 port 36326 Sep 11 07:00:55 ssh2 sshd[92341]: Failed password for invalid user pi from 181.225.79.66 port 36326 ssh2 Sep 11 07:00:55 ssh2 sshd[92341]: Connection closed by invalid user pi 181.225.79.66 port 36326 [preauth] ... |
2020-09-11 21:36:28 |
| 103.25.21.34 | attackbotsspam | fail2ban -- 103.25.21.34 ... |
2020-09-11 22:04:51 |
| 112.120.156.177 | attack | SSH Bruteforce Attempt on Honeypot |
2020-09-11 22:00:30 |
| 178.128.61.101 | attackspambots | 2020-09-11T13:46:08.445172shield sshd\[24282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.61.101 user=root 2020-09-11T13:46:10.904483shield sshd\[24282\]: Failed password for root from 178.128.61.101 port 34904 ssh2 2020-09-11T13:50:38.143020shield sshd\[25637\]: Invalid user admin from 178.128.61.101 port 45218 2020-09-11T13:50:38.151707shield sshd\[25637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.61.101 2020-09-11T13:50:39.677473shield sshd\[25637\]: Failed password for invalid user admin from 178.128.61.101 port 45218 ssh2 |
2020-09-11 21:57:34 |