城市(city): unknown
省份(region): unknown
国家(country): Viet Nam
运营商(isp): FPT Telecom Company
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Fixed Line ISP
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | Unauthorized connection attempt from IP address 42.112.81.138 on Port 445(SMB) |
2020-08-13 19:51:23 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 42.112.81.69 | attackspam | Unauthorized connection attempt from IP address 42.112.81.69 on Port 445(SMB) |
2020-05-05 23:59:10 |
| 42.112.81.82 | attackbots | Unauthorized connection attempt from IP address 42.112.81.82 on Port 445(SMB) |
2019-06-25 20:31:29 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.81.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59286
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.81.138. IN A
;; AUTHORITY SECTION:
. 520 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020081300 1800 900 604800 86400
;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 13 19:51:13 CST 2020
;; MSG SIZE rcvd: 117
Host 138.81.112.42.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 138.81.112.42.in-addr.arpa: SERVFAIL
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 119.196.83.18 | attackspambots | Aug 4 08:23:52 nextcloud sshd\[4178\]: Invalid user ftpuser from 119.196.83.18 Aug 4 08:23:52 nextcloud sshd\[4178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.196.83.18 Aug 4 08:23:54 nextcloud sshd\[4178\]: Failed password for invalid user ftpuser from 119.196.83.18 port 60904 ssh2 ... |
2019-08-04 15:08:26 |
| 85.104.2.36 | attackspambots | Automatic report - Port Scan Attack |
2019-08-04 14:20:49 |
| 106.52.126.205 | attack | Aug 4 03:36:07 site1 sshd\[56144\]: Invalid user tomcat from 106.52.126.205Aug 4 03:36:08 site1 sshd\[56144\]: Failed password for invalid user tomcat from 106.52.126.205 port 40056 ssh2Aug 4 03:40:54 site1 sshd\[56621\]: Invalid user webin from 106.52.126.205Aug 4 03:40:57 site1 sshd\[56621\]: Failed password for invalid user webin from 106.52.126.205 port 35850 ssh2Aug 4 03:45:43 site1 sshd\[57655\]: Invalid user zaky from 106.52.126.205Aug 4 03:45:45 site1 sshd\[57655\]: Failed password for invalid user zaky from 106.52.126.205 port 59883 ssh2 ... |
2019-08-04 14:56:33 |
| 107.155.49.126 | attackspambots | Aug 4 06:59:59 srv03 sshd\[29492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.155.49.126 user=root Aug 4 07:00:02 srv03 sshd\[29492\]: Failed password for root from 107.155.49.126 port 53750 ssh2 Aug 4 07:00:05 srv03 sshd\[29494\]: Invalid user administrator from 107.155.49.126 port 54304 Aug 4 07:00:05 srv03 sshd\[29494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.155.49.126 |
2019-08-04 14:57:33 |
| 77.208.126.140 | attackspam | Automatic report - Port Scan Attack |
2019-08-04 15:12:01 |
| 18.136.119.98 | attack | Aug 1 15:19:51 indra sshd[605315]: Invalid user mhal from 18.136.119.98 Aug 1 15:19:51 indra sshd[605315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-18-136-119-98.ap-southeast-1.compute.amazonaws.com Aug 1 15:19:53 indra sshd[605315]: Failed password for invalid user mhal from 18.136.119.98 port 47966 ssh2 Aug 1 15:19:53 indra sshd[605315]: Received disconnect from 18.136.119.98: 11: Bye Bye [preauth] Aug 1 15:32:34 indra sshd[607832]: Invalid user kaiju from 18.136.119.98 Aug 1 15:32:34 indra sshd[607832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-18-136-119-98.ap-southeast-1.compute.amazonaws.com Aug 1 15:32:36 indra sshd[607832]: Failed password for invalid user kaiju from 18.136.119.98 port 40094 ssh2 Aug 1 15:32:36 indra sshd[607832]: Received disconnect from 18.136.119.98: 11: Bye Bye [preauth] Aug 1 15:37:48 indra sshd[608736]: Invalid user damon from 18........ ------------------------------- |
2019-08-04 14:10:00 |
| 117.71.53.105 | attack | SSH-BruteForce |
2019-08-04 15:06:26 |
| 94.177.199.45 | attack | Automatic report - Banned IP Access |
2019-08-04 15:05:19 |
| 5.132.115.161 | attackspam | Aug 4 08:08:13 vps65 sshd\[21359\]: Invalid user sysadmin from 5.132.115.161 port 36120 Aug 4 08:08:13 vps65 sshd\[21359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.132.115.161 ... |
2019-08-04 15:09:58 |
| 193.201.224.220 | attackbots | Automatic report - Banned IP Access |
2019-08-04 14:14:14 |
| 148.64.101.190 | attackbotsspam | NAME : NET-MONKEYBRAINS-15 CIDR : 148.64.96.0/20 SYN Flood DDoS Attack USA - California - block certain countries :) IP: 148.64.101.190 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl |
2019-08-04 15:17:00 |
| 27.104.160.123 | attackspam | Aug 4 12:01:43 itv-usvr-01 sshd[6230]: Invalid user admin from 27.104.160.123 Aug 4 12:01:44 itv-usvr-01 sshd[6230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.104.160.123 Aug 4 12:01:43 itv-usvr-01 sshd[6230]: Invalid user admin from 27.104.160.123 Aug 4 12:01:45 itv-usvr-01 sshd[6230]: Failed password for invalid user admin from 27.104.160.123 port 49582 ssh2 Aug 4 12:01:46 itv-usvr-01 sshd[6232]: Invalid user admin from 27.104.160.123 |
2019-08-04 14:50:38 |
| 125.22.76.76 | attackbotsspam | Aug 4 05:43:36 db sshd\[9446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.22.76.76 user=root Aug 4 05:43:38 db sshd\[9446\]: Failed password for root from 125.22.76.76 port 12645 ssh2 Aug 4 05:53:13 db sshd\[9597\]: Invalid user nagios from 125.22.76.76 Aug 4 05:53:13 db sshd\[9597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.22.76.76 Aug 4 05:53:14 db sshd\[9597\]: Failed password for invalid user nagios from 125.22.76.76 port 40395 ssh2 ... |
2019-08-04 14:24:08 |
| 1.24.225.74 | attackspambots | Aug 3 04:05:02 h2022099 sshd[4238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.24.225.74 user=r.r Aug 3 04:05:04 h2022099 sshd[4238]: Failed password for r.r from 1.24.225.74 port 37718 ssh2 Aug 3 04:05:06 h2022099 sshd[4238]: Failed password for r.r from 1.24.225.74 port 37718 ssh2 Aug 3 04:05:14 h2022099 sshd[4238]: Failed password for r.r from 1.24.225.74 port 37718 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=1.24.225.74 |
2019-08-04 14:47:26 |
| 23.129.64.189 | attackbots | Aug 4 08:08:56 ns37 sshd[19700]: Failed password for root from 23.129.64.189 port 19741 ssh2 Aug 4 08:08:58 ns37 sshd[19700]: Failed password for root from 23.129.64.189 port 19741 ssh2 Aug 4 08:09:01 ns37 sshd[19700]: Failed password for root from 23.129.64.189 port 19741 ssh2 Aug 4 08:09:04 ns37 sshd[19700]: Failed password for root from 23.129.64.189 port 19741 ssh2 |
2019-08-04 15:15:07 |