城市(city): unknown
省份(region): unknown
国家(country): Viet Nam
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 14.161.12.119 | attackbotsspam | Tried sshing with brute force. |
2020-09-08 14:14:23 |
| 14.161.12.119 | attackspambots | Sep 7 20:51:54 abendstille sshd\[27160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 user=root Sep 7 20:51:56 abendstille sshd\[27160\]: Failed password for root from 14.161.12.119 port 59697 ssh2 Sep 7 20:55:25 abendstille sshd\[30570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 user=root Sep 7 20:55:26 abendstille sshd\[30570\]: Failed password for root from 14.161.12.119 port 52367 ssh2 Sep 7 20:58:55 abendstille sshd\[1398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 user=root ... |
2020-09-08 06:45:01 |
| 14.161.12.119 | attackbots | Sep 4 15:33:47 MainVPS sshd[32498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 user=root Sep 4 15:33:50 MainVPS sshd[32498]: Failed password for root from 14.161.12.119 port 54309 ssh2 Sep 4 15:37:50 MainVPS sshd[9040]: Invalid user whc from 14.161.12.119 port 43505 Sep 4 15:37:50 MainVPS sshd[9040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 Sep 4 15:37:50 MainVPS sshd[9040]: Invalid user whc from 14.161.12.119 port 43505 Sep 4 15:37:52 MainVPS sshd[9040]: Failed password for invalid user whc from 14.161.12.119 port 43505 ssh2 ... |
2020-09-05 02:36:21 |
| 14.161.12.119 | attackspam | Sep 4 12:15:24 itv-usvr-02 sshd[30676]: Invalid user admin from 14.161.12.119 port 43725 Sep 4 12:15:24 itv-usvr-02 sshd[30676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 Sep 4 12:15:24 itv-usvr-02 sshd[30676]: Invalid user admin from 14.161.12.119 port 43725 Sep 4 12:15:26 itv-usvr-02 sshd[30676]: Failed password for invalid user admin from 14.161.12.119 port 43725 ssh2 Sep 4 12:19:52 itv-usvr-02 sshd[30860]: Invalid user vinci from 14.161.12.119 port 43991 |
2020-09-04 18:03:45 |
| 14.161.12.249 | attackspam | Unauthorized connection attempt from IP address 14.161.12.249 on Port 445(SMB) |
2020-08-22 01:44:11 |
| 14.161.12.119 | attackbots | SSH login attempts. |
2020-05-28 13:09:07 |
| 14.161.12.119 | attackbotsspam | Invalid user jose from 14.161.12.119 port 55977 |
2020-05-16 23:13:01 |
| 14.161.12.119 | attackbotsspam | May 14 11:27:37 legacy sshd[14797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 May 14 11:27:39 legacy sshd[14797]: Failed password for invalid user diep from 14.161.12.119 port 59235 ssh2 May 14 11:32:53 legacy sshd[15116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 ... |
2020-05-14 17:41:07 |
| 14.161.12.119 | attackbotsspam | May 13 16:27:41 PorscheCustomer sshd[22447]: Failed password for invalid user rookie from 14.161.12.119 port 35919 ssh2 May 13 16:32:24 PorscheCustomer sshd[22557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 May 13 16:32:26 PorscheCustomer sshd[22557]: Failed password for invalid user taiwan from 14.161.12.119 port 36989 ssh2 ... |
2020-05-14 01:47:50 |
| 14.161.12.119 | attackbots | Invalid user jose from 14.161.12.119 port 55977 |
2020-05-12 16:53:29 |
| 14.161.12.119 | attackspam | 2020-05-08T14:07:28.427546shield sshd\[27478\]: Invalid user ping from 14.161.12.119 port 63181 2020-05-08T14:07:28.432081shield sshd\[27478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 2020-05-08T14:07:30.498698shield sshd\[27478\]: Failed password for invalid user ping from 14.161.12.119 port 63181 ssh2 2020-05-08T14:12:43.980402shield sshd\[28961\]: Invalid user testuser from 14.161.12.119 port 39297 2020-05-08T14:12:43.990364shield sshd\[28961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 |
2020-05-08 22:12:58 |
| 14.161.12.119 | attackspambots | May 2 14:38:24 amit sshd\[4061\]: Invalid user vue from 14.161.12.119 May 2 14:38:24 amit sshd\[4061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 May 2 14:38:27 amit sshd\[4061\]: Failed password for invalid user vue from 14.161.12.119 port 50381 ssh2 ... |
2020-05-03 01:55:28 |
| 14.161.12.238 | attack | Mar 11 06:39:00 josie sshd[16415]: Did not receive identification string from 14.161.12.238 Mar 11 06:39:00 josie sshd[16417]: Did not receive identification string from 14.161.12.238 Mar 11 06:39:00 josie sshd[16419]: Did not receive identification string from 14.161.12.238 Mar 11 06:39:00 josie sshd[16418]: Did not receive identification string from 14.161.12.238 Mar 11 06:39:05 josie sshd[16459]: Invalid user system from 14.161.12.238 Mar 11 06:39:05 josie sshd[16460]: Invalid user system from 14.161.12.238 Mar 11 06:39:05 josie sshd[16464]: Invalid user system from 14.161.12.238 Mar 11 06:39:05 josie sshd[16463]: Invalid user system from 14.161.12.238 Mar 11 06:39:05 josie sshd[16459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.238 Mar 11 06:39:05 josie sshd[16460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.238 Mar 11 06:39:05 josie sshd[16464]: pam_unix(........ ------------------------------- |
2020-03-12 02:16:21 |
| 14.161.12.154 | attack | Unauthorized connection attempt detected from IP address 14.161.12.154 to port 445 |
2019-12-18 00:36:59 |
| 14.161.123.103 | attackbotsspam | Nov 24 15:31:46 mxgate1 postfix/postscreen[31810]: CONNECT from [14.161.123.103]:34604 to [176.31.12.44]:25 Nov 24 15:31:47 mxgate1 postfix/dnsblog[31995]: addr 14.161.123.103 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 24 15:31:47 mxgate1 postfix/dnsblog[31994]: addr 14.161.123.103 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 24 15:31:47 mxgate1 postfix/dnsblog[31994]: addr 14.161.123.103 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 24 15:31:47 mxgate1 postfix/dnsblog[31996]: addr 14.161.123.103 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 24 15:31:52 mxgate1 postfix/postscreen[31810]: DNSBL rank 4 for [14.161.123.103]:34604 Nov x@x Nov 24 15:31:53 mxgate1 postfix/postscreen[31810]: HANGUP after 1.3 from [14.161.123.103]:34604 in tests after SMTP handshake Nov 24 15:31:53 mxgate1 postfix/postscreen[31810]: DISCONNECT [14.161.123.103]:34604 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.161.123.103 |
2019-11-25 05:57:11 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.161.12.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40916
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.161.12.54. IN A
;; AUTHORITY SECTION:
. 301 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022011400 1800 900 604800 86400
;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 15 01:09:07 CST 2022
;; MSG SIZE rcvd: 10554.12.161.14.in-addr.arpa domain name pointer static.vnpt.vn.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
54.12.161.14.in-addr.arpa name = static.vnpt.vn.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 200.54.51.124 | attack | 5x Failed Password |
2020-07-12 18:58:13 |
| 174.101.133.151 | attack | Jul 12 10:49:15 internal-server-tf sshd\[24851\]: Invalid user pi from 174.101.133.151Jul 12 10:49:15 internal-server-tf sshd\[24850\]: Invalid user pi from 174.101.133.151 ... |
2020-07-12 19:05:10 |
| 157.245.163.0 | attack | TCP port : 11208 |
2020-07-12 19:08:49 |
| 51.77.212.179 | attackbotsspam | Jul 12 09:05:39 [host] sshd[25315]: Invalid user i Jul 12 09:05:39 [host] sshd[25315]: pam_unix(sshd: Jul 12 09:05:41 [host] sshd[25315]: Failed passwor |
2020-07-12 18:56:48 |
| 103.125.191.80 | attack | Jul 12 10:02:50 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=103.125.191.80 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=52561 PROTO=TCP SPT=51291 DPT=1167 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 12 10:06:37 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=103.125.191.80 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=31195 PROTO=TCP SPT=51291 DPT=1173 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 12 10:10:57 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=103.125.191.80 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=63853 PROTO=TCP SPT=51291 DPT=1169 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 12 10:19:31 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=103.125.191.80 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=2734 PROTO=TCP SPT=51291 DPT=1175 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 12 10:35:23 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00: |
2020-07-12 19:03:38 |
| 180.76.138.132 | attackbotsspam | Jul 12 12:48:36 eventyay sshd[5798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.138.132 Jul 12 12:48:38 eventyay sshd[5798]: Failed password for invalid user nagasawa from 180.76.138.132 port 41570 ssh2 Jul 12 12:58:09 eventyay sshd[5986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.138.132 ... |
2020-07-12 19:02:24 |
| 5.196.70.107 | attackspambots | Jul 12 12:03:24 vps687878 sshd\[23651\]: Invalid user teng from 5.196.70.107 port 47244 Jul 12 12:03:24 vps687878 sshd\[23651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.70.107 Jul 12 12:03:26 vps687878 sshd\[23651\]: Failed password for invalid user teng from 5.196.70.107 port 47244 ssh2 Jul 12 12:12:08 vps687878 sshd\[24556\]: Invalid user git from 5.196.70.107 port 40904 Jul 12 12:12:08 vps687878 sshd\[24556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.70.107 ... |
2020-07-12 18:39:36 |
| 45.117.81.170 | attackbotsspam | 2020-07-12T02:53:27.4392791495-001 sshd[52553]: Invalid user kuangyongcui from 45.117.81.170 port 58454 2020-07-12T02:53:29.5213451495-001 sshd[52553]: Failed password for invalid user kuangyongcui from 45.117.81.170 port 58454 ssh2 2020-07-12T02:55:59.6661141495-001 sshd[52621]: Invalid user admin from 45.117.81.170 port 39120 2020-07-12T02:55:59.6710041495-001 sshd[52621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.117.81.170 2020-07-12T02:55:59.6661141495-001 sshd[52621]: Invalid user admin from 45.117.81.170 port 39120 2020-07-12T02:56:01.2832041495-001 sshd[52621]: Failed password for invalid user admin from 45.117.81.170 port 39120 ssh2 ... |
2020-07-12 18:37:27 |
| 198.211.108.68 | attackspambots | ENG,WP GET /wp-login.php |
2020-07-12 18:36:17 |
| 74.82.47.43 | attack | srv02 Mass scanning activity detected Target: 53413 .. |
2020-07-12 19:09:09 |
| 82.221.131.71 | attackbotsspam | srv02 SSH BruteForce Attacks 22 .. |
2020-07-12 18:39:51 |
| 124.160.42.66 | attack | Jul 12 08:38:56 ArkNodeAT sshd\[29799\]: Invalid user sudislav from 124.160.42.66 Jul 12 08:38:56 ArkNodeAT sshd\[29799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.160.42.66 Jul 12 08:38:58 ArkNodeAT sshd\[29799\]: Failed password for invalid user sudislav from 124.160.42.66 port 37879 ssh2 |
2020-07-12 18:42:22 |
| 121.22.5.83 | attack | Invalid user areynolds from 121.22.5.83 port 56898 |
2020-07-12 18:49:58 |
| 223.197.151.55 | attack | Jul 12 09:17:58 scw-focused-cartwright sshd[27521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.151.55 Jul 12 09:18:00 scw-focused-cartwright sshd[27521]: Failed password for invalid user ts3 from 223.197.151.55 port 54127 ssh2 |
2020-07-12 18:47:54 |
| 192.99.4.63 | attackspam | 192.99.4.63 - - [12/Jul/2020:09:31:32 +0000] "GET /wp-login.php HTTP/1.1" 403 556 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" |
2020-07-12 19:09:58 |