城市(city): unknown
省份(region): unknown
国家(country): Hong Kong
运营商(isp): PCCW IMS Ltd
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackspam | Aug 17 14:05:17 ns382633 sshd\[27311\]: Invalid user client1 from 42.200.142.45 port 45067 Aug 17 14:05:17 ns382633 sshd\[27311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.142.45 Aug 17 14:05:20 ns382633 sshd\[27311\]: Failed password for invalid user client1 from 42.200.142.45 port 45067 ssh2 Aug 17 14:20:42 ns382633 sshd\[30110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.142.45 user=root Aug 17 14:20:45 ns382633 sshd\[30110\]: Failed password for root from 42.200.142.45 port 56052 ssh2 |
2020-08-17 23:41:15 |
| attackspambots | "fail2ban match" |
2020-07-14 08:01:03 |
| attackspambots | Jun 25 22:41:09 web9 sshd\[17797\]: Invalid user tushar from 42.200.142.45 Jun 25 22:41:09 web9 sshd\[17797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.142.45 Jun 25 22:41:11 web9 sshd\[17797\]: Failed password for invalid user tushar from 42.200.142.45 port 36266 ssh2 Jun 25 22:42:57 web9 sshd\[18073\]: Invalid user tec from 42.200.142.45 Jun 25 22:42:57 web9 sshd\[18073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.142.45 |
2020-06-26 16:48:11 |
| attack | k+ssh-bruteforce |
2020-06-12 12:43:35 |
| attackspam | 2020-06-09T12:44:01.609852abusebot-4.cloudsearch.cf sshd[10549]: Invalid user webdata from 42.200.142.45 port 54285 2020-06-09T12:44:01.620637abusebot-4.cloudsearch.cf sshd[10549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-142-45.static.imsbiz.com 2020-06-09T12:44:01.609852abusebot-4.cloudsearch.cf sshd[10549]: Invalid user webdata from 42.200.142.45 port 54285 2020-06-09T12:44:03.538857abusebot-4.cloudsearch.cf sshd[10549]: Failed password for invalid user webdata from 42.200.142.45 port 54285 ssh2 2020-06-09T12:48:05.319774abusebot-4.cloudsearch.cf sshd[10751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-142-45.static.imsbiz.com user=root 2020-06-09T12:48:07.076413abusebot-4.cloudsearch.cf sshd[10751]: Failed password for root from 42.200.142.45 port 56524 ssh2 2020-06-09T12:51:56.466813abusebot-4.cloudsearch.cf sshd[10989]: pam_unix(sshd:auth): authentication failure; logname= ui ... |
2020-06-10 02:26:03 |
| attackspam | Repeated brute force against a port |
2020-06-08 12:54:45 |
| attackbotsspam | May 31 11:02:00 ns381471 sshd[19696]: Failed password for root from 42.200.142.45 port 45164 ssh2 |
2020-05-31 17:21:56 |
| attack | Invalid user jessey from 42.200.142.45 port 51125 |
2020-05-27 06:10:35 |
| attackspambots | Brute force attempt |
2020-05-25 17:51:40 |
| attack | Invalid user prashant from 42.200.142.45 port 54213 |
2020-05-17 02:31:50 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.200.142.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19740
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.200.142.45. IN A
;; AUTHORITY SECTION:
. 460 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020051601 1800 900 604800 86400
;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 17 02:31:46 CST 2020
;; MSG SIZE rcvd: 11745.142.200.42.in-addr.arpa domain name pointer 42-200-142-45.static.imsbiz.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
45.142.200.42.in-addr.arpa name = 42-200-142-45.static.imsbiz.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 178.214.250.82 | attack | Unauthorized connection attempt from IP address 178.214.250.82 on Port 445(SMB) |
2020-04-08 04:37:15 |
| 49.234.77.54 | attack | (sshd) Failed SSH login from 49.234.77.54 (CN/China/-): 5 in the last 3600 secs |
2020-04-08 04:56:01 |
| 180.183.154.57 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 07-04-2020 13:45:10. |
2020-04-08 04:51:08 |
| 80.210.62.166 | attackbotsspam | Unauthorized connection attempt from IP address 80.210.62.166 on Port 445(SMB) |
2020-04-08 04:24:46 |
| 218.255.139.66 | attackbotsspam | Apr 7 21:57:00 vpn01 sshd[12206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.255.139.66 Apr 7 21:57:02 vpn01 sshd[12206]: Failed password for invalid user ubuntu from 218.255.139.66 port 57810 ssh2 ... |
2020-04-08 04:52:55 |
| 196.203.53.145 | attackbotsspam | Unauthorized connection attempt from IP address 196.203.53.145 on Port 445(SMB) |
2020-04-08 04:41:39 |
| 140.238.215.112 | attackspambots | Apr 7 19:49:50 pkdns2 sshd\[34597\]: Invalid user test from 140.238.215.112Apr 7 19:49:52 pkdns2 sshd\[34597\]: Failed password for invalid user test from 140.238.215.112 port 35172 ssh2Apr 7 19:53:40 pkdns2 sshd\[34790\]: Invalid user lili from 140.238.215.112Apr 7 19:53:42 pkdns2 sshd\[34790\]: Failed password for invalid user lili from 140.238.215.112 port 46090 ssh2Apr 7 19:57:27 pkdns2 sshd\[34988\]: Invalid user subversion from 140.238.215.112Apr 7 19:57:29 pkdns2 sshd\[34988\]: Failed password for invalid user subversion from 140.238.215.112 port 56990 ssh2 ... |
2020-04-08 04:48:25 |
| 202.184.97.44 | attackbotsspam | Attempted connection to port 5900. |
2020-04-08 04:20:31 |
| 188.166.244.121 | attack | Apr 7 23:05:25 www sshd\[63882\]: Invalid user ftp_test from 188.166.244.121 Apr 7 23:05:25 www sshd\[63882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.244.121 Apr 7 23:05:28 www sshd\[63882\]: Failed password for invalid user ftp_test from 188.166.244.121 port 58481 ssh2 ... |
2020-04-08 04:27:13 |
| 85.175.171.113 | attackbots | Unauthorized connection attempt from IP address 85.175.171.113 on Port 445(SMB) |
2020-04-08 04:50:25 |
| 36.108.175.68 | attackbotsspam | 2020-04-07T20:35:18.825559abusebot-8.cloudsearch.cf sshd[32730]: Invalid user postgres from 36.108.175.68 port 40226 2020-04-07T20:35:18.836057abusebot-8.cloudsearch.cf sshd[32730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.108.175.68 2020-04-07T20:35:18.825559abusebot-8.cloudsearch.cf sshd[32730]: Invalid user postgres from 36.108.175.68 port 40226 2020-04-07T20:35:20.796770abusebot-8.cloudsearch.cf sshd[32730]: Failed password for invalid user postgres from 36.108.175.68 port 40226 ssh2 2020-04-07T20:39:25.912338abusebot-8.cloudsearch.cf sshd[529]: Invalid user baptiste from 36.108.175.68 port 43410 2020-04-07T20:39:25.922439abusebot-8.cloudsearch.cf sshd[529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.108.175.68 2020-04-07T20:39:25.912338abusebot-8.cloudsearch.cf sshd[529]: Invalid user baptiste from 36.108.175.68 port 43410 2020-04-07T20:39:27.792579abusebot-8.cloudsearch.cf sshd[529]: ... |
2020-04-08 04:54:39 |
| 138.99.7.54 | attackspam | Apr 7 19:32:31 cloud sshd[1753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 Apr 7 19:32:32 cloud sshd[1753]: Failed password for invalid user ubuntu from 138.99.7.54 port 54398 ssh2 |
2020-04-08 04:43:54 |
| 154.92.195.201 | attackspam | SSH invalid-user multiple login attempts |
2020-04-08 04:56:47 |
| 143.92.60.14 | attack | Web Server Attack |
2020-04-08 04:53:40 |
| 129.205.112.253 | attackspam | Apr 7 22:50:18 [host] sshd[23980]: Invalid user t Apr 7 22:50:18 [host] sshd[23980]: pam_unix(sshd: Apr 7 22:50:20 [host] sshd[23980]: Failed passwor |
2020-04-08 04:57:34 |