城市(city): Ho Chi Minh City
省份(region): Ho Chi Minh
国家(country): Vietnam
运营商(isp): FPT Telecom Company
主机名(hostname): unknown
机构(organization): The Corporation for Financing & Promoting Technology
使用类型(Usage Type): Fixed Line ISP
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbots | Jul 7 09:27:01 www sshd\[17488\]: Invalid user andrei from 42.116.19.254 port 39376 ... |
2019-07-07 18:18:03 |
| attackbots | Jul 1 03:34:17 sanyalnet-cloud-vps2 sshd[9034]: Connection from 42.116.19.254 port 46645 on 45.62.253.138 port 22 Jul 1 03:34:33 sanyalnet-cloud-vps2 sshd[9034]: Invalid user pian from 42.116.19.254 port 46645 Jul 1 03:34:33 sanyalnet-cloud-vps2 sshd[9034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.19.254 Jul 1 03:34:35 sanyalnet-cloud-vps2 sshd[9034]: Failed password for invalid user pian from 42.116.19.254 port 46645 ssh2 Jul 1 03:34:35 sanyalnet-cloud-vps2 sshd[9034]: Received disconnect from 42.116.19.254 port 46645:11: Bye Bye [preauth] Jul 1 03:34:35 sanyalnet-cloud-vps2 sshd[9034]: Disconnected from 42.116.19.254 port 46645 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.116.19.254 |
2019-07-01 18:27:37 |
| attackbots | Jun 28 05:04:28 sshgateway sshd\[30157\]: Invalid user lost from 42.116.19.254 Jun 28 05:04:28 sshgateway sshd\[30157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.19.254 Jun 28 05:04:30 sshgateway sshd\[30157\]: Failed password for invalid user lost from 42.116.19.254 port 36615 ssh2 |
2019-06-28 21:36:30 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 42.116.195.146 | attackbotsspam | Attempted connection to port 445. |
2020-09-03 23:25:48 |
| 42.116.195.146 | attackbotsspam | Attempted connection to port 445. |
2020-09-03 14:58:30 |
| 42.116.195.146 | attackspam | Attempted connection to port 445. |
2020-09-03 07:11:22 |
| 42.116.19.78 | attack | WordPress brute force |
2020-06-26 06:01:40 |
| 42.116.190.55 | attackbots | Unauthorized connection attempt detected from IP address 42.116.190.55 to port 23 [J] |
2020-01-16 00:34:17 |
| 42.116.19.140 | attackbots | Unauthorized connection attempt from IP address 42.116.19.140 on Port 445(SMB) |
2019-11-02 02:38:45 |
| 42.116.19.140 | attackbots | Unauthorized connection attempt from IP address 42.116.19.140 on Port 445(SMB) |
2019-10-30 03:12:29 |
| 42.116.195.236 | attackspam | port scan and connect, tcp 23 (telnet) |
2019-09-15 00:41:58 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.116.19.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57460
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.116.19.254. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019041702 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 18 10:42:37 +08 2019
;; MSG SIZE rcvd: 117
Host 254.19.116.42.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.3
Address: 67.207.67.3#53
** server can't find 254.19.116.42.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 159.65.155.48 | attack | Mar 21 22:20:22 l03 sshd[17242]: Invalid user www from 159.65.155.48 port 52990 ... |
2020-03-22 07:38:05 |
| 189.7.203.133 | attack | Automatic report - Port Scan Attack |
2020-03-22 07:15:36 |
| 222.186.169.194 | attack | Mar 22 00:12:06 sso sshd[22180]: Failed password for root from 222.186.169.194 port 25732 ssh2 Mar 22 00:12:16 sso sshd[22180]: Failed password for root from 222.186.169.194 port 25732 ssh2 ... |
2020-03-22 07:27:14 |
| 24.142.36.105 | attackbots | Invalid user cron from 24.142.36.105 port 39746 |
2020-03-22 07:14:48 |
| 111.231.121.62 | attack | Mar 21 23:08:55 cdc sshd[10468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.121.62 Mar 21 23:08:57 cdc sshd[10468]: Failed password for invalid user tabatha from 111.231.121.62 port 35192 ssh2 |
2020-03-22 07:33:45 |
| 51.38.113.45 | attackbotsspam | Invalid user caidanwei from 51.38.113.45 port 51258 |
2020-03-22 07:20:17 |
| 91.243.167.131 | attackbotsspam | Automatic report - Port Scan Attack |
2020-03-22 07:00:07 |
| 118.24.149.248 | attackbots | Invalid user postgres from 118.24.149.248 port 39638 |
2020-03-22 07:39:53 |
| 106.13.65.175 | attack | Mar 21 22:13:45 ovpn sshd\[11964\]: Invalid user omura from 106.13.65.175 Mar 21 22:13:45 ovpn sshd\[11964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.65.175 Mar 21 22:13:47 ovpn sshd\[11964\]: Failed password for invalid user omura from 106.13.65.175 port 33116 ssh2 Mar 21 22:20:17 ovpn sshd\[13524\]: Invalid user hq from 106.13.65.175 Mar 21 22:20:17 ovpn sshd\[13524\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.65.175 |
2020-03-22 07:18:04 |
| 128.0.12.132 | attackspam | Unauthorized connection attempt detected from IP address 128.0.12.132 to port 5555 |
2020-03-22 07:40:53 |
| 10.132.72.92 | normal | Admin |
2020-03-22 07:30:01 |
| 89.243.254.207 | attackbots | Running T-Pot idnetified this IP having launched 230,784 attacks, majority based on scanning followed up by brute-forcing passwords and interactions with my honeypot. |
2020-03-22 07:40:22 |
| 200.122.249.203 | attackbotsspam | Mar 22 06:32:18 webhost01 sshd[4956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.122.249.203 Mar 22 06:32:21 webhost01 sshd[4956]: Failed password for invalid user onion from 200.122.249.203 port 53600 ssh2 ... |
2020-03-22 07:33:23 |
| 5.9.108.254 | attackbots | 20 attempts against mh-misbehave-ban on pluto |
2020-03-22 07:12:34 |
| 178.32.35.79 | attackspam | Invalid user saslauth from 178.32.35.79 port 39536 |
2020-03-22 07:06:25 |