城市(city): unknown
省份(region): unknown
国家(country): Hong Kong
运营商(isp): Hengda Network Limited
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Commercial
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbots | Unauthorized connection attempt detected from IP address 202.53.139.58 to port 80 [J] |
2020-01-31 01:17:12 |
| attackspambots | $f2bV_matches |
2019-12-27 01:14:11 |
| attackspam | $f2bV_matches |
2019-11-29 18:13:08 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 202.53.139.150 | attack | Scanning and Vuln Attempts |
2019-10-15 15:04:32 |
| 202.53.139.65 | attackbotsspam | PHP DIESCAN Information Disclosure Vulnerability |
2019-07-23 15:03:11 |
| 202.53.139.49 | attack | 202.53.139.49 - - [06/Apr/2019:13:57:37 +0800] "GET /phpma/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 202.53.139.49 - - [06/Apr/2019:13:57:37 +0800] "GET /phpmyadmin/phpmyadmin/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 202.53.139.49 - - [06/Apr/2019:13:57:37 +0800] "GET /phpMyAdmin/phpMyAdmin/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 202.53.139.49 - - [06/Apr/2019:13:57:37 +0800] "GET /phpMyAbmin/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 202.53.139.49 - - [06/Apr/2019:13:57:37 +0800] "GET /phpMyAdmin__/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 202.53.139.49 - - [06/Apr/2019:13:57:37 +0800] "GET /phpMyAdmin+++---/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" |
2019-04-06 13:59:10 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.53.139.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.53.139.58. IN A
;; AUTHORITY SECTION:
. 474 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019112900 1800 900 604800 86400
;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 29 18:13:05 CST 2019
;; MSG SIZE rcvd: 117Host 58.139.53.202.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 58.139.53.202.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 81.22.45.203 | attackbotsspam | 08/29/2019-07:16:07.442192 81.22.45.203 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-08-29 20:35:13 |
| 106.52.106.61 | attackspambots | Aug 29 02:47:00 hiderm sshd\[20551\]: Invalid user marco from 106.52.106.61 Aug 29 02:47:00 hiderm sshd\[20551\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61 Aug 29 02:47:02 hiderm sshd\[20551\]: Failed password for invalid user marco from 106.52.106.61 port 56236 ssh2 Aug 29 02:49:56 hiderm sshd\[20802\]: Invalid user jessie from 106.52.106.61 Aug 29 02:49:56 hiderm sshd\[20802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61 |
2019-08-29 21:11:42 |
| 91.204.188.50 | attackspambots | Invalid user aw from 91.204.188.50 port 34258 |
2019-08-29 20:39:50 |
| 154.8.232.149 | attackspambots | Aug 29 00:16:34 aiointranet sshd\[24605\]: Invalid user linux1 from 154.8.232.149 Aug 29 00:16:34 aiointranet sshd\[24605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.232.149 Aug 29 00:16:36 aiointranet sshd\[24605\]: Failed password for invalid user linux1 from 154.8.232.149 port 53850 ssh2 Aug 29 00:19:09 aiointranet sshd\[24816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.232.149 user=root Aug 29 00:19:11 aiointranet sshd\[24816\]: Failed password for root from 154.8.232.149 port 36051 ssh2 |
2019-08-29 21:13:00 |
| 222.186.42.241 | attackspam | Aug 29 15:18:25 dev0-dcde-rnet sshd[19948]: Failed password for root from 222.186.42.241 port 36382 ssh2 Aug 29 15:18:34 dev0-dcde-rnet sshd[19950]: Failed password for root from 222.186.42.241 port 41934 ssh2 |
2019-08-29 21:23:09 |
| 152.249.245.68 | attack | Aug 29 02:55:33 hanapaa sshd\[26262\]: Invalid user nagios from 152.249.245.68 Aug 29 02:55:33 hanapaa sshd\[26262\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.249.245.68 Aug 29 02:55:35 hanapaa sshd\[26262\]: Failed password for invalid user nagios from 152.249.245.68 port 40304 ssh2 Aug 29 03:01:09 hanapaa sshd\[26679\]: Invalid user smg from 152.249.245.68 Aug 29 03:01:09 hanapaa sshd\[26679\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.249.245.68 |
2019-08-29 21:06:48 |
| 119.53.243.50 | attackspam | Unauthorised access (Aug 29) SRC=119.53.243.50 LEN=40 TTL=49 ID=38932 TCP DPT=8080 WINDOW=14765 SYN Unauthorised access (Aug 29) SRC=119.53.243.50 LEN=40 TTL=49 ID=59301 TCP DPT=8080 WINDOW=64117 SYN |
2019-08-29 21:07:35 |
| 115.236.100.114 | attackbotsspam | $f2bV_matches |
2019-08-29 20:44:47 |
| 128.199.255.227 | attack | Aug 29 13:21:40 mail sshd\[9228\]: Invalid user jira from 128.199.255.227 port 59698 Aug 29 13:21:40 mail sshd\[9228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.255.227 ... |
2019-08-29 20:35:49 |
| 106.12.198.21 | attackspambots | Aug 29 15:33:03 plex sshd[30043]: Invalid user kpalma from 106.12.198.21 port 35870 |
2019-08-29 21:37:15 |
| 118.170.108.207 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-08-29 21:08:43 |
| 204.48.31.143 | attackspambots | Aug 29 11:43:57 debian sshd\[12791\]: Invalid user text from 204.48.31.143 port 45940 Aug 29 11:43:57 debian sshd\[12791\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.31.143 ... |
2019-08-29 21:24:31 |
| 118.24.210.254 | attackbots | Aug 29 15:30:13 yabzik sshd[21959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.210.254 Aug 29 15:30:14 yabzik sshd[21959]: Failed password for invalid user wave from 118.24.210.254 port 35640 ssh2 Aug 29 15:33:10 yabzik sshd[22885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.210.254 |
2019-08-29 20:39:18 |
| 178.128.75.154 | attackspam | Aug 29 09:03:31 TORMINT sshd\[3050\]: Invalid user pa from 178.128.75.154 Aug 29 09:03:31 TORMINT sshd\[3050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.75.154 Aug 29 09:03:34 TORMINT sshd\[3050\]: Failed password for invalid user pa from 178.128.75.154 port 57938 ssh2 ... |
2019-08-29 21:05:20 |
| 181.63.245.127 | attackspam | Aug 29 02:03:52 aiointranet sshd\[1341\]: Invalid user geometry from 181.63.245.127 Aug 29 02:03:52 aiointranet sshd\[1341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.63.245.127 Aug 29 02:03:53 aiointranet sshd\[1341\]: Failed password for invalid user geometry from 181.63.245.127 port 57026 ssh2 Aug 29 02:09:46 aiointranet sshd\[1918\]: Invalid user ftp_user from 181.63.245.127 Aug 29 02:09:46 aiointranet sshd\[1918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.63.245.127 |
2019-08-29 21:15:51 |