City: unknown
Region: unknown
Country: China
Internet Service Provider: Shanghai Haojin Technology Development Co. Ltd.
Hostname: unknown
Organization: unknown
Usage Type: Commercial
| Type | Details | Datetime |
|---|---|---|
| attack | Dec 23 16:37:59 our-server-hostname postfix/smtpd[29275]: connect from unknown[103.242.168.20] Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.242.168.20 |
2019-12-23 17:18:50 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.242.168.14 | attackspambots | 2020-08-19T03:53:33.599584randservbullet-proofcloud-66.localdomain sshd[3842]: Invalid user nagios from 103.242.168.14 port 47160 2020-08-19T03:53:33.606851randservbullet-proofcloud-66.localdomain sshd[3842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.168.14 2020-08-19T03:53:33.599584randservbullet-proofcloud-66.localdomain sshd[3842]: Invalid user nagios from 103.242.168.14 port 47160 2020-08-19T03:53:35.702157randservbullet-proofcloud-66.localdomain sshd[3842]: Failed password for invalid user nagios from 103.242.168.14 port 47160 ssh2 ... |
2020-08-19 14:37:01 |
| 103.242.168.14 | attack | Ssh brute force |
2020-08-19 08:58:33 |
| 103.242.168.4 | attackbots | Unauthorized connection attempt detected from IP address 103.242.168.4 to port 445 [T] |
2020-08-16 20:08:15 |
| 103.242.168.14 | attack | Aug 14 03:41:49 IngegnereFirenze sshd[9547]: User root from 103.242.168.14 not allowed because not listed in AllowUsers ... |
2020-08-14 12:52:42 |
| 103.242.168.14 | attack | Aug 11 07:17:16 home sshd[1840741]: Failed password for root from 103.242.168.14 port 57564 ssh2 Aug 11 07:19:03 home sshd[1841369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.168.14 user=root Aug 11 07:19:05 home sshd[1841369]: Failed password for root from 103.242.168.14 port 38001 ssh2 Aug 11 07:20:52 home sshd[1841841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.168.14 user=root Aug 11 07:20:54 home sshd[1841841]: Failed password for root from 103.242.168.14 port 46671 ssh2 ... |
2020-08-11 13:35:51 |
| 103.242.168.14 | attackbots | Aug 10 15:10:03 ip40 sshd[24235]: Failed password for root from 103.242.168.14 port 40503 ssh2 ... |
2020-08-10 21:35:37 |
| 103.242.168.14 | attackspam | Banned for a week because repeated abuses, for example SSH, but not only |
2020-08-05 04:29:33 |
| 103.242.168.4 | attackspambots | Unauthorized connection attempt from IP address 103.242.168.4 on Port 445(SMB) |
2020-07-14 21:54:39 |
| 103.242.168.14 | attack | Jul 3 19:59:25 webhost01 sshd[27554]: Failed password for root from 103.242.168.14 port 58512 ssh2 Jul 3 20:03:31 webhost01 sshd[27600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.168.14 ... |
2020-07-03 22:05:10 |
| 103.242.168.14 | attackspambots | Multiple SSH authentication failures from 103.242.168.14 |
2020-07-01 14:16:20 |
| 103.242.168.14 | attack | Jun 4 13:54:33 server770 sshd[29265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.168.14 user=r.r Jun 4 13:54:35 server770 sshd[29265]: Failed password for r.r from 103.242.168.14 port 38759 ssh2 Jun 4 13:54:36 server770 sshd[29265]: Received disconnect from 103.242.168.14 port 38759:11: Bye Bye [preauth] Jun 4 13:54:36 server770 sshd[29265]: Disconnected from 103.242.168.14 port 38759 [preauth] Jun 4 14:00:26 server770 sshd[29357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.168.14 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.242.168.14 |
2020-06-05 00:26:03 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.242.168.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17187
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.242.168.20. IN A
;; AUTHORITY SECTION:
. 578 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019122300 1800 900 604800 86400
;; Query time: 178 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 23 17:18:45 CST 2019
;; MSG SIZE rcvd: 118Host 20.168.242.103.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 20.168.242.103.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 141.98.10.198 | attackspambots | 5x Failed Password |
2020-08-11 04:06:01 |
| 211.80.102.182 | attackbots | Aug 10 16:38:11 vps1 sshd[11679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.80.102.182 Aug 10 16:38:12 vps1 sshd[11679]: Failed password for invalid user Parisa from 211.80.102.182 port 3539 ssh2 Aug 10 16:41:26 vps1 sshd[11744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.80.102.182 Aug 10 16:41:28 vps1 sshd[11744]: Failed password for invalid user qwerasdf147 from 211.80.102.182 port 28412 ssh2 Aug 10 16:44:44 vps1 sshd[11780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.80.102.182 Aug 10 16:44:47 vps1 sshd[11780]: Failed password for invalid user 1qaz@4rfv from 211.80.102.182 port 37408 ssh2 ... |
2020-08-11 04:13:46 |
| 218.92.0.165 | attackbotsspam | Aug 10 16:47:16 vps46666688 sshd[13210]: Failed password for root from 218.92.0.165 port 36981 ssh2 Aug 10 16:47:20 vps46666688 sshd[13210]: Failed password for root from 218.92.0.165 port 36981 ssh2 ... |
2020-08-11 04:00:26 |
| 180.76.242.171 | attackspambots | detected by Fail2Ban |
2020-08-11 04:30:52 |
| 46.41.101.97 | attackspam | Unauthorized connection attempt from IP address 46.41.101.97 on Port 445(SMB) |
2020-08-11 04:23:23 |
| 190.207.115.5 | attackspam | Unauthorized connection attempt from IP address 190.207.115.5 on Port 445(SMB) |
2020-08-11 04:03:33 |
| 105.112.121.56 | attackbots | Unauthorized connection attempt from IP address 105.112.121.56 on Port 445(SMB) |
2020-08-11 04:01:02 |
| 200.29.105.12 | attack | Bruteforce detected by fail2ban |
2020-08-11 04:26:06 |
| 192.99.210.162 | attack | SSH brute-force attempt |
2020-08-11 04:05:03 |
| 161.132.174.86 | attack | Unauthorized connection attempt from IP address 161.132.174.86 on Port 445(SMB) |
2020-08-11 04:14:26 |
| 93.87.129.179 | attackbotsspam | 1597060843 - 08/10/2020 14:00:43 Host: 93.87.129.179/93.87.129.179 Port: 445 TCP Blocked |
2020-08-11 04:06:55 |
| 111.229.96.67 | attackspam | Aug 10 18:01:25 inter-technics sshd[6803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.96.67 user=root Aug 10 18:01:27 inter-technics sshd[6803]: Failed password for root from 111.229.96.67 port 55012 ssh2 Aug 10 18:05:06 inter-technics sshd[7001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.96.67 user=root Aug 10 18:05:08 inter-technics sshd[7001]: Failed password for root from 111.229.96.67 port 36570 ssh2 Aug 10 18:08:50 inter-technics sshd[7275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.96.67 user=root Aug 10 18:08:51 inter-technics sshd[7275]: Failed password for root from 111.229.96.67 port 46364 ssh2 ... |
2020-08-11 04:28:23 |
| 72.167.224.135 | attackspambots | Aug 10 18:50:02 server sshd[62033]: Failed password for root from 72.167.224.135 port 37264 ssh2 Aug 10 18:54:17 server sshd[63461]: Failed password for root from 72.167.224.135 port 48256 ssh2 Aug 10 18:58:23 server sshd[64790]: Failed password for root from 72.167.224.135 port 59244 ssh2 |
2020-08-11 03:55:32 |
| 152.32.229.70 | attackspambots | Banned for a week because repeated abuses, for example SSH, but not only |
2020-08-11 04:16:11 |
| 35.230.162.59 | attackspam | 10.08.2020 17:12:03 - Wordpress fail Detected by ELinOX-ALM |
2020-08-11 04:10:57 |