城市(city): Ho Chi Minh City
省份(region): Ho Chi Minh
国家(country): Vietnam
运营商(isp): FPT Telecom Company
主机名(hostname): unknown
机构(organization): The Corporation for Financing & Promoting Technology
使用类型(Usage Type): Fixed Line ISP
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbots | Jul 7 09:27:01 www sshd\[17488\]: Invalid user andrei from 42.116.19.254 port 39376 ... |
2019-07-07 18:18:03 |
| attackbots | Jul 1 03:34:17 sanyalnet-cloud-vps2 sshd[9034]: Connection from 42.116.19.254 port 46645 on 45.62.253.138 port 22 Jul 1 03:34:33 sanyalnet-cloud-vps2 sshd[9034]: Invalid user pian from 42.116.19.254 port 46645 Jul 1 03:34:33 sanyalnet-cloud-vps2 sshd[9034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.19.254 Jul 1 03:34:35 sanyalnet-cloud-vps2 sshd[9034]: Failed password for invalid user pian from 42.116.19.254 port 46645 ssh2 Jul 1 03:34:35 sanyalnet-cloud-vps2 sshd[9034]: Received disconnect from 42.116.19.254 port 46645:11: Bye Bye [preauth] Jul 1 03:34:35 sanyalnet-cloud-vps2 sshd[9034]: Disconnected from 42.116.19.254 port 46645 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.116.19.254 |
2019-07-01 18:27:37 |
| attackbots | Jun 28 05:04:28 sshgateway sshd\[30157\]: Invalid user lost from 42.116.19.254 Jun 28 05:04:28 sshgateway sshd\[30157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.19.254 Jun 28 05:04:30 sshgateway sshd\[30157\]: Failed password for invalid user lost from 42.116.19.254 port 36615 ssh2 |
2019-06-28 21:36:30 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 42.116.195.146 | attackbotsspam | Attempted connection to port 445. |
2020-09-03 23:25:48 |
| 42.116.195.146 | attackbotsspam | Attempted connection to port 445. |
2020-09-03 14:58:30 |
| 42.116.195.146 | attackspam | Attempted connection to port 445. |
2020-09-03 07:11:22 |
| 42.116.19.78 | attack | WordPress brute force |
2020-06-26 06:01:40 |
| 42.116.190.55 | attackbots | Unauthorized connection attempt detected from IP address 42.116.190.55 to port 23 [J] |
2020-01-16 00:34:17 |
| 42.116.19.140 | attackbots | Unauthorized connection attempt from IP address 42.116.19.140 on Port 445(SMB) |
2019-11-02 02:38:45 |
| 42.116.19.140 | attackbots | Unauthorized connection attempt from IP address 42.116.19.140 on Port 445(SMB) |
2019-10-30 03:12:29 |
| 42.116.195.236 | attackspam | port scan and connect, tcp 23 (telnet) |
2019-09-15 00:41:58 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.116.19.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57460
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.116.19.254. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019041702 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 18 10:42:37 +08 2019
;; MSG SIZE rcvd: 117
Host 254.19.116.42.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.3
Address: 67.207.67.3#53
** server can't find 254.19.116.42.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 111.231.121.62 | attack | SSH bruteforce (Triggered fail2ban) |
2019-12-04 20:08:51 |
| 209.209.231.38 | attackspambots | Automatic report - Port Scan |
2019-12-04 20:01:45 |
| 198.98.52.141 | attackbotsspam | Dec 4 11:20:39 gitlab-ci sshd\[27984\]: Invalid user admin from 198.98.52.141Dec 4 11:20:39 gitlab-ci sshd\[27983\]: Invalid user tomcat from 198.98.52.141 ... |
2019-12-04 19:48:31 |
| 185.176.27.2 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-04 19:47:04 |
| 195.69.222.71 | attackbotsspam | Dec 4 13:20:47 sauna sshd[33319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.69.222.71 Dec 4 13:20:49 sauna sshd[33319]: Failed password for invalid user petro from 195.69.222.71 port 40762 ssh2 ... |
2019-12-04 19:39:40 |
| 217.61.61.246 | attackbotsspam | 12/04/2019-06:20:33.069154 217.61.61.246 Protocol: 17 ET SCAN Sipvicious User-Agent Detected (friendly-scanner) |
2019-12-04 19:55:59 |
| 167.99.202.143 | attackbots | $f2bV_matches |
2019-12-04 20:07:54 |
| 110.44.126.83 | attack | (sshd) Failed SSH login from 110.44.126.83 (NP/Nepal/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Dec 4 11:12:13 andromeda sshd[984]: Invalid user holzman from 110.44.126.83 port 56442 Dec 4 11:12:15 andromeda sshd[984]: Failed password for invalid user holzman from 110.44.126.83 port 56442 ssh2 Dec 4 11:20:17 andromeda sshd[1995]: Invalid user yoyo from 110.44.126.83 port 55638 |
2019-12-04 20:10:34 |
| 125.231.56.195 | attackbotsspam | firewall-block, port(s): 23/tcp |
2019-12-04 20:02:24 |
| 159.203.201.16 | attackbotsspam | 12/04/2019-06:43:43.847883 159.203.201.16 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-12-04 20:04:37 |
| 201.184.169.106 | attackbots | Dec 4 14:04:42 server sshd\[10828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.184.169.106 user=root Dec 4 14:04:44 server sshd\[10828\]: Failed password for root from 201.184.169.106 port 35664 ssh2 Dec 4 14:13:54 server sshd\[13355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.184.169.106 user=root Dec 4 14:13:56 server sshd\[13355\]: Failed password for root from 201.184.169.106 port 53568 ssh2 Dec 4 14:20:38 server sshd\[15451\]: Invalid user joey from 201.184.169.106 ... |
2019-12-04 19:50:38 |
| 159.203.201.177 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-04 19:42:21 |
| 61.183.178.194 | attackbotsspam | Dec 4 01:11:32 tdfoods sshd\[13104\]: Invalid user polashock from 61.183.178.194 Dec 4 01:11:32 tdfoods sshd\[13104\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.178.194 Dec 4 01:11:35 tdfoods sshd\[13104\]: Failed password for invalid user polashock from 61.183.178.194 port 9433 ssh2 Dec 4 01:20:34 tdfoods sshd\[13959\]: Invalid user abcd from 61.183.178.194 Dec 4 01:20:34 tdfoods sshd\[13959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.178.194 |
2019-12-04 19:53:48 |
| 47.103.35.67 | attack | Unauthorised access (Dec 4) SRC=47.103.35.67 LEN=40 TTL=44 ID=28898 TCP DPT=8080 WINDOW=3397 SYN Unauthorised access (Dec 4) SRC=47.103.35.67 LEN=40 TTL=44 ID=39651 TCP DPT=8080 WINDOW=34510 SYN Unauthorised access (Dec 4) SRC=47.103.35.67 LEN=40 TTL=44 ID=43166 TCP DPT=8080 WINDOW=8558 SYN Unauthorised access (Dec 4) SRC=47.103.35.67 LEN=40 TTL=44 ID=52343 TCP DPT=8080 WINDOW=34510 SYN Unauthorised access (Dec 1) SRC=47.103.35.67 LEN=40 TTL=44 ID=11323 TCP DPT=8080 WINDOW=3397 SYN |
2019-12-04 19:41:53 |
| 123.136.161.146 | attack | 2019-12-04T11:52:39.788334abusebot-2.cloudsearch.cf sshd\[15948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146 user=root |
2019-12-04 20:09:32 |