城市(city): unknown
省份(region): unknown
国家(country): Viet Nam
运营商(isp): FPT Telecom Company
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Fixed Line ISP
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackspam | Dec 2 16:36:07 server sshd\[10903\]: Invalid user pi from 42.119.14.140 Dec 2 16:36:07 server sshd\[10904\]: Invalid user pi from 42.119.14.140 Dec 2 16:36:07 server sshd\[10903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.119.14.140 Dec 2 16:36:07 server sshd\[10904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.119.14.140 Dec 2 16:36:09 server sshd\[10903\]: Failed password for invalid user pi from 42.119.14.140 port 43956 ssh2 ... |
2019-12-02 23:00:28 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 42.119.149.55 | attackbots | Attempted connection to port 445. |
2020-08-01 16:46:42 |
| 42.119.145.98 | attackspam | 1594179775 - 07/08/2020 05:42:55 Host: 42.119.145.98/42.119.145.98 Port: 445 TCP Blocked |
2020-07-08 16:55:18 |
| 42.119.149.26 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 15-04-2020 04:55:10. |
2020-04-15 15:24:36 |
| 42.119.14.203 | attackbots | Automatic report - Port Scan Attack |
2020-03-14 05:19:10 |
| 42.119.149.103 | attackbots | Email rejected due to spam filtering |
2020-03-10 16:45:45 |
| 42.119.14.199 | attackspam | Unauthorized connection attempt detected from IP address 42.119.14.199 to port 23 [T] |
2020-01-20 07:00:51 |
| 42.119.14.59 | attack | *Port Scan* detected from 42.119.14.59 (VN/Vietnam/-). 4 hits in the last 250 seconds |
2019-08-30 08:16:13 |
| 42.119.145.40 | attackspambots | Sun, 21 Jul 2019 07:36:07 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 22:50:22 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.119.14.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58735
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.119.14.140. IN A
;; AUTHORITY SECTION:
. 248 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019120200 1800 900 604800 86400
;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 02 23:00:23 CST 2019
;; MSG SIZE rcvd: 117Host 140.14.119.42.in-addr.arpa not found: 2(SERVFAIL);; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 140.14.119.42.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 159.138.149.42 | attack | Unauthorized access detected from banned ip |
2020-01-01 13:13:04 |
| 49.144.175.196 | attackbots | Jan 1 05:58:24 mail kernel: [2874445.649777] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=49.144.175.196 DST=91.205.173.180 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=4317 DF PROTO=TCP SPT=11209 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Jan 1 05:58:27 mail kernel: [2874448.705373] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=49.144.175.196 DST=91.205.173.180 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=5604 DF PROTO=TCP SPT=11209 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Jan 1 05:58:33 mail kernel: [2874454.705382] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=49.144.175.196 DST=91.205.173.180 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=8191 DF PROTO=TCP SPT=11209 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 |
2020-01-01 13:12:47 |
| 27.194.254.213 | attack | firewall-block, port(s): 23/tcp |
2020-01-01 08:59:58 |
| 198.108.67.53 | attack | Dec 31 23:49:38 debian-2gb-nbg1-2 kernel: \[91911.375830\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.108.67.53 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=37 ID=10199 PROTO=TCP SPT=8721 DPT=8200 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-01-01 09:13:12 |
| 72.76.221.125 | attackbotsspam | Automated report (2020-01-01T04:58:46+00:00). Scraper detected at this address. |
2020-01-01 13:08:45 |
| 106.13.4.150 | attackspambots | Jan 1 00:02:29 srv-ubuntu-dev3 sshd[101129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 user=root Jan 1 00:02:32 srv-ubuntu-dev3 sshd[101129]: Failed password for root from 106.13.4.150 port 33735 ssh2 Jan 1 00:05:40 srv-ubuntu-dev3 sshd[101331]: Invalid user kim from 106.13.4.150 Jan 1 00:05:40 srv-ubuntu-dev3 sshd[101331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Jan 1 00:05:40 srv-ubuntu-dev3 sshd[101331]: Invalid user kim from 106.13.4.150 Jan 1 00:05:42 srv-ubuntu-dev3 sshd[101331]: Failed password for invalid user kim from 106.13.4.150 port 55237 ssh2 Jan 1 00:08:52 srv-ubuntu-dev3 sshd[101630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 user=uucp Jan 1 00:08:55 srv-ubuntu-dev3 sshd[101630]: Failed password for uucp from 106.13.4.150 port 20200 ssh2 Jan 1 00:12:05 srv-ubuntu-dev3 sshd[102063]: In ... |
2020-01-01 09:12:47 |
| 77.199.87.64 | attackspam | SSH bruteforce (Triggered fail2ban) |
2020-01-01 09:20:48 |
| 46.38.144.179 | attackbots | Jan 1 01:57:27 relay postfix/smtpd\[28727\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 1 01:58:13 relay postfix/smtpd\[14388\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 1 02:00:45 relay postfix/smtpd\[28727\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 1 02:01:30 relay postfix/smtpd\[14396\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 1 02:04:02 relay postfix/smtpd\[5735\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-01-01 09:07:58 |
| 78.200.84.78 | attack | Dec 31 22:31:49 mars sshd[41029]: Invalid user glady from 78.200.84.78 Dec 31 22:31:51 mars sshd[41029]: Failed password for invalid user glady from 78.200.84.78 port 41632 ssh2 Dec 31 22:50:13 mars sshd[47921]: Invalid user smhostname from 78.200.84.78 Dec 31 22:50:16 mars sshd[47921]: Failed password for invalid user smhostname from 78.200.84.78 port 49404 ssh2 Dec 31 23:22:07 mars sshd[10798]: Invalid user guest from 78.200.84.78 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=78.200.84.78 |
2020-01-01 09:15:36 |
| 201.47.181.123 | attackspambots | Automatic report - Port Scan Attack |
2020-01-01 09:08:27 |
| 91.209.54.54 | attackspam | Jan 1 05:56:57 silence02 sshd[30292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.209.54.54 Jan 1 05:56:58 silence02 sshd[30292]: Failed password for invalid user ftp from 91.209.54.54 port 50124 ssh2 Jan 1 05:59:00 silence02 sshd[30386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.209.54.54 |
2020-01-01 13:00:15 |
| 54.36.87.150 | attackbotsspam | Port scan on 1 port(s): 445 |
2020-01-01 13:03:46 |
| 185.153.198.211 | attackbotsspam | 12/31/2019-23:58:58.965874 185.153.198.211 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-01-01 13:00:47 |
| 193.70.42.33 | attackspambots | Invalid user highspeed from 193.70.42.33 port 53524 |
2020-01-01 09:06:31 |
| 140.143.200.251 | attackspam | 2020-01-01T01:00:56.154840shield sshd\[21503\]: Invalid user 1 from 140.143.200.251 port 51300 2020-01-01T01:00:56.159392shield sshd\[21503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.200.251 2020-01-01T01:00:58.041501shield sshd\[21503\]: Failed password for invalid user 1 from 140.143.200.251 port 51300 ssh2 2020-01-01T01:04:17.811957shield sshd\[22034\]: Invalid user audagna from 140.143.200.251 port 50474 2020-01-01T01:04:17.817010shield sshd\[22034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.200.251 |
2020-01-01 09:14:34 |