城市(city): unknown
省份(region): unknown
国家(country): Russian Federation (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 5.42.21.72 | attackspambots | DATE:2020-02-13 14:48:56, IP:5.42.21.72, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2020-02-14 00:04:28 |
| 5.42.239.197 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.42.239.197/ SA - 1H : (12) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : SA NAME ASN : ASN35753 IP : 5.42.239.197 CIDR : 5.42.238.0/23 PREFIX COUNT : 230 UNIQUE IP COUNT : 194816 ATTACKS DETECTED ASN35753 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-18 23:53:44 INFO : Server 301 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery |
2019-11-19 07:40:51 |
| 5.42.226.10 | attackspam | 2019-07-23T05:56:25.288967abusebot-6.cloudsearch.cf sshd\[876\]: Invalid user ze from 5.42.226.10 port 52470 |
2019-07-23 14:17:13 |
| 5.42.226.10 | attackspam | Jul 16 08:53:36 srv-4 sshd\[8178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 user=root Jul 16 08:53:38 srv-4 sshd\[8178\]: Failed password for root from 5.42.226.10 port 48372 ssh2 Jul 16 08:59:07 srv-4 sshd\[8563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 user=root ... |
2019-07-16 14:15:53 |
| 5.42.226.10 | attackspam | Jul 15 23:07:35 srv-4 sshd\[30286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 user=daemon Jul 15 23:07:37 srv-4 sshd\[30286\]: Failed password for daemon from 5.42.226.10 port 33338 ssh2 Jul 15 23:13:01 srv-4 sshd\[30689\]: Invalid user train5 from 5.42.226.10 Jul 15 23:13:01 srv-4 sshd\[30689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 ... |
2019-07-16 04:29:37 |
| 5.42.226.10 | attackbots | Jul 9 23:35:09 unicornsoft sshd\[15257\]: Invalid user vnc from 5.42.226.10 Jul 9 23:35:09 unicornsoft sshd\[15257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 Jul 9 23:35:11 unicornsoft sshd\[15257\]: Failed password for invalid user vnc from 5.42.226.10 port 43006 ssh2 |
2019-07-10 08:10:45 |
| 5.42.226.10 | attack | Reported by AbuseIPDB proxy server. |
2019-07-08 02:00:13 |
| 5.42.226.10 | attackspambots | Jul 5 20:47:17 dedicated sshd[26725]: Invalid user daniel from 5.42.226.10 port 60224 |
2019-07-06 07:09:43 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.42.2.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;5.42.2.153. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021800 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 20:07:12 CST 2025
;; MSG SIZE rcvd: 103
153.2.42.5.in-addr.arpa domain name pointer 5-42-2-153.colomna.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
153.2.42.5.in-addr.arpa name = 5-42-2-153.colomna.net.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 200.89.178.191 | attack | ssh brute force |
2020-06-16 12:40:00 |
| 123.16.152.93 | attack | Unauthorized IMAP connection attempt |
2020-06-16 12:57:35 |
| 200.137.5.195 | attackspam | Jun 16 05:53:49 mail sshd[11611]: Failed password for root from 200.137.5.195 port 19217 ssh2 Jun 16 05:54:44 mail sshd[11649]: Invalid user insurgency from 200.137.5.195 port 23109 ... |
2020-06-16 12:45:56 |
| 218.92.0.172 | attack | 2020-06-16T07:57:01.601779afi-git.jinr.ru sshd[22142]: Failed password for root from 218.92.0.172 port 55775 ssh2 2020-06-16T07:57:05.100070afi-git.jinr.ru sshd[22142]: Failed password for root from 218.92.0.172 port 55775 ssh2 2020-06-16T07:57:08.482976afi-git.jinr.ru sshd[22142]: Failed password for root from 218.92.0.172 port 55775 ssh2 2020-06-16T07:57:08.483140afi-git.jinr.ru sshd[22142]: error: maximum authentication attempts exceeded for root from 218.92.0.172 port 55775 ssh2 [preauth] 2020-06-16T07:57:08.483154afi-git.jinr.ru sshd[22142]: Disconnecting: Too many authentication failures [preauth] ... |
2020-06-16 13:12:02 |
| 2001:41d0:2:d544:: | attackbotsspam | MYH,DEF GET /wp-login.php |
2020-06-16 12:56:40 |
| 58.69.251.165 | attack | Brute forcing RDP port 3389 |
2020-06-16 12:55:51 |
| 95.167.39.12 | attack | Jun 16 06:25:51 meumeu sshd[627732]: Invalid user gera from 95.167.39.12 port 44564 Jun 16 06:25:51 meumeu sshd[627732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.39.12 Jun 16 06:25:51 meumeu sshd[627732]: Invalid user gera from 95.167.39.12 port 44564 Jun 16 06:25:53 meumeu sshd[627732]: Failed password for invalid user gera from 95.167.39.12 port 44564 ssh2 Jun 16 06:29:11 meumeu sshd[627842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.39.12 user=root Jun 16 06:29:13 meumeu sshd[627842]: Failed password for root from 95.167.39.12 port 43190 ssh2 Jun 16 06:32:24 meumeu sshd[627944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.39.12 user=minecraft Jun 16 06:32:27 meumeu sshd[627944]: Failed password for minecraft from 95.167.39.12 port 41816 ssh2 Jun 16 06:35:26 meumeu sshd[628056]: Invalid user import from 95.167.39.12 port 40452 ... |
2020-06-16 12:43:21 |
| 66.17.108.146 | attackspambots | Brute forcing email accounts |
2020-06-16 12:31:43 |
| 14.29.64.91 | attackspam | 2020-06-16T05:54:54+0200 Failed SSH Authentication/Brute Force Attack. (Server 9) |
2020-06-16 12:36:08 |
| 202.70.72.217 | attack | $f2bV_matches |
2020-06-16 13:05:29 |
| 95.85.26.23 | attackbots | Jun 16 04:44:56 django-0 sshd\[8141\]: Invalid user worker from 95.85.26.23Jun 16 04:44:58 django-0 sshd\[8141\]: Failed password for invalid user worker from 95.85.26.23 port 40530 ssh2Jun 16 04:48:10 django-0 sshd\[8225\]: Invalid user cid from 95.85.26.23 ... |
2020-06-16 12:57:55 |
| 51.75.122.213 | attackbotsspam | Jun 16 04:55:54 gestao sshd[12262]: Failed password for root from 51.75.122.213 port 46710 ssh2 Jun 16 04:59:00 gestao sshd[12414]: Failed password for root from 51.75.122.213 port 49598 ssh2 Jun 16 05:01:59 gestao sshd[12539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.122.213 ... |
2020-06-16 12:32:10 |
| 195.123.237.226 | attackbotsspam | Failed password for invalid user lab from 195.123.237.226 port 56994 ssh2 |
2020-06-16 13:02:22 |
| 142.93.211.52 | attackspambots | Jun 16 05:54:36 debian-2gb-nbg1-2 kernel: \[14538380.792052\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.211.52 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=56604 PROTO=TCP SPT=52723 DPT=4151 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-06-16 12:51:47 |
| 45.10.24.238 | attack | Jun 15 20:49:36 dignus sshd[30678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.10.24.238 Jun 15 20:49:38 dignus sshd[30678]: Failed password for invalid user 1 from 45.10.24.238 port 59484 ssh2 Jun 15 20:54:42 dignus sshd[31222]: Invalid user bbs from 45.10.24.238 port 40160 Jun 15 20:54:42 dignus sshd[31222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.10.24.238 Jun 15 20:54:44 dignus sshd[31222]: Failed password for invalid user bbs from 45.10.24.238 port 40160 ssh2 ... |
2020-06-16 12:45:33 |