城市(city): Ho Chi Minh City
省份(region): Ho Chi Minh
国家(country): Vietnam
运营商(isp): Vietnam Posts and Telecommunications Group
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | Jul 4 23:30:34 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:34 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:37 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL PLAIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL LOGIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL CRAM-MD5 authentication failed: authentication failure Jul 4 23:30:39 offspring postfix/smtpd[11628]: disconnect from unknown[14.169.255.42] Jul 4 23:30:39 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:39 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:42 offspring postfix/smtpd[11628]: warning: unknown[1........ ------------------------------- |
2020-07-05 07:19:00 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 14.169.255.216 | attackbots | smtp probe/invalid login attempt |
2020-01-02 13:21:23 |
| 14.169.255.16 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/14.169.255.16/ VN - 1H : (45) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : VN NAME ASN : ASN45899 IP : 14.169.255.16 CIDR : 14.169.224.0/19 PREFIX COUNT : 2411 UNIQUE IP COUNT : 7209216 ATTACKS DETECTED ASN45899 : 1H - 9 3H - 10 6H - 12 12H - 16 24H - 24 DateTime : 2019-11-12 23:36:42 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-13 06:51:33 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.255.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26832
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.169.255.42. IN A
;; AUTHORITY SECTION:
. 545 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020070401 1800 900 604800 86400
;; Query time: 267 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 05 07:18:57 CST 2020
;; MSG SIZE rcvd: 117
42.255.169.14.in-addr.arpa domain name pointer static.vnpt.vn.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
42.255.169.14.in-addr.arpa name = static.vnpt.vn.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 185.195.24.120 | attack | 2020-06-18T06:56:30.592510sd-86998 sshd[22240]: Invalid user wizard from 185.195.24.120 port 54471 2020-06-18T06:56:30.597803sd-86998 sshd[22240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.195.24.120 2020-06-18T06:56:30.592510sd-86998 sshd[22240]: Invalid user wizard from 185.195.24.120 port 54471 2020-06-18T06:56:32.865851sd-86998 sshd[22240]: Failed password for invalid user wizard from 185.195.24.120 port 54471 ssh2 2020-06-18T07:02:23.683303sd-86998 sshd[23144]: Invalid user wwz from 185.195.24.120 port 54398 ... |
2020-06-18 14:08:11 |
| 92.63.196.3 | attackbotsspam | Jun 18 08:04:42 debian-2gb-nbg1-2 kernel: \[14718977.566629\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.63.196.3 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=11185 PROTO=TCP SPT=47615 DPT=3370 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-06-18 14:15:58 |
| 84.51.52.138 | attackbotsspam | 20/6/18@01:02:11: FAIL: Alarm-Network address from=84.51.52.138 ... |
2020-06-18 13:58:07 |
| 49.248.215.5 | attack | Invalid user ann from 49.248.215.5 port 58744 |
2020-06-18 13:43:39 |
| 85.209.0.237 | attackbotsspam | Automatic report - Port Scan |
2020-06-18 13:43:11 |
| 138.19.115.47 | attackbotsspam | SSH Brute Force |
2020-06-18 13:59:24 |
| 122.51.241.109 | attackbotsspam | Jun 18 08:11:53 lukav-desktop sshd\[17443\]: Invalid user support from 122.51.241.109 Jun 18 08:11:53 lukav-desktop sshd\[17443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.241.109 Jun 18 08:11:55 lukav-desktop sshd\[17443\]: Failed password for invalid user support from 122.51.241.109 port 42812 ssh2 Jun 18 08:16:32 lukav-desktop sshd\[9851\]: Invalid user sinus1 from 122.51.241.109 Jun 18 08:16:32 lukav-desktop sshd\[9851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.241.109 |
2020-06-18 13:53:56 |
| 185.86.164.107 | attackspambots | Website administration hacking try |
2020-06-18 14:13:20 |
| 165.227.179.138 | attackspambots | 2020-06-18T05:57:10.783114shield sshd\[1904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 user=root 2020-06-18T05:57:12.424600shield sshd\[1904\]: Failed password for root from 165.227.179.138 port 46488 ssh2 2020-06-18T06:00:17.842510shield sshd\[2518\]: Invalid user mhq from 165.227.179.138 port 46136 2020-06-18T06:00:17.846206shield sshd\[2518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 2020-06-18T06:00:19.492658shield sshd\[2518\]: Failed password for invalid user mhq from 165.227.179.138 port 46136 ssh2 |
2020-06-18 14:18:38 |
| 219.144.67.60 | attack | Jun 18 07:55:48 lukav-desktop sshd\[31730\]: Invalid user wwwroot from 219.144.67.60 Jun 18 07:55:48 lukav-desktop sshd\[31730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.144.67.60 Jun 18 07:55:50 lukav-desktop sshd\[31730\]: Failed password for invalid user wwwroot from 219.144.67.60 port 36490 ssh2 Jun 18 07:59:33 lukav-desktop sshd\[31794\]: Invalid user vianney from 219.144.67.60 Jun 18 07:59:33 lukav-desktop sshd\[31794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.144.67.60 |
2020-06-18 13:50:17 |
| 51.38.129.120 | attackbotsspam | 2020-06-18T06:55:19.604761vps751288.ovh.net sshd\[18705\]: Invalid user backup from 51.38.129.120 port 33406 2020-06-18T06:55:19.614495vps751288.ovh.net sshd\[18705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.ip-51-38-129.eu 2020-06-18T06:55:21.806512vps751288.ovh.net sshd\[18705\]: Failed password for invalid user backup from 51.38.129.120 port 33406 ssh2 2020-06-18T06:58:37.243775vps751288.ovh.net sshd\[18770\]: Invalid user sysadmin from 51.38.129.120 port 60678 2020-06-18T06:58:37.255371vps751288.ovh.net sshd\[18770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.ip-51-38-129.eu |
2020-06-18 13:52:54 |
| 206.189.187.13 | attackbotsspam | windhundgang.de 206.189.187.13 [18/Jun/2020:07:20:31 +0200] "POST /wp-login.php HTTP/1.1" 200 8455 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" windhundgang.de 206.189.187.13 [18/Jun/2020:07:20:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4185 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-06-18 14:12:23 |
| 49.232.17.36 | attackspambots | Jun 18 07:33:28 OPSO sshd\[2487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.17.36 user=root Jun 18 07:33:30 OPSO sshd\[2487\]: Failed password for root from 49.232.17.36 port 54524 ssh2 Jun 18 07:37:14 OPSO sshd\[3392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.17.36 user=root Jun 18 07:37:15 OPSO sshd\[3392\]: Failed password for root from 49.232.17.36 port 38054 ssh2 Jun 18 07:41:00 OPSO sshd\[4083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.17.36 user=root |
2020-06-18 14:08:31 |
| 80.82.64.213 | attackspam | Attempt to log in with non-existing username: admin |
2020-06-18 13:42:01 |
| 121.147.156.9 | attackbotsspam | Invalid user fx from 121.147.156.9 port 44172 |
2020-06-18 13:57:42 |