城市(city): unknown
省份(region): unknown
国家(country): Viet Nam
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 14.241.244.189 | attackspam | (smtpauth) Failed SMTP AUTH login from 14.241.244.189 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-10-12 17:44:26 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49417: 535 Incorrect authentication data (set_id=pcp) 2020-10-12 17:44:33 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49417: 535 Incorrect authentication data (set_id=pcp) 2020-10-12 17:44:40 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49417: 535 Incorrect authentication data (set_id=q1w2e3r4) 2020-10-12 17:44:59 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49546: 535 Incorrect authentication data (set_id=pcp@bakof.com.br) 2020-10-12 17:45:18 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49546: 535 Incorrect authentication data (set_id=pcp@bakof.com.br) |
2020-10-14 02:19:35 |
| 14.241.244.189 | attack | (smtpauth) Failed SMTP AUTH login from 14.241.244.189 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-10-12 17:44:26 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49417: 535 Incorrect authentication data (set_id=pcp) 2020-10-12 17:44:33 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49417: 535 Incorrect authentication data (set_id=pcp) 2020-10-12 17:44:40 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49417: 535 Incorrect authentication data (set_id=q1w2e3r4) 2020-10-12 17:44:59 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49546: 535 Incorrect authentication data (set_id=pcp@bakof.com.br) 2020-10-12 17:45:18 dovecot_plain authenticator failed for (mail.bakof.com.br) [14.241.244.189]:49546: 535 Incorrect authentication data (set_id=pcp@bakof.com.br) |
2020-10-13 17:33:39 |
| 14.241.245.179 | attackbots | Invalid user go from 14.241.245.179 port 51334 |
2020-10-04 06:50:57 |
| 14.241.245.179 | attackbots | Invalid user go from 14.241.245.179 port 51334 |
2020-10-03 23:01:00 |
| 14.241.245.179 | attackbots | $f2bV_matches |
2020-10-03 14:44:08 |
| 14.241.245.179 | attackspambots | (sshd) Failed SSH login from 14.241.245.179 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 28 13:38:04 idl1-dfw sshd[2700869]: Invalid user a from 14.241.245.179 port 47152 Sep 28 13:38:06 idl1-dfw sshd[2700869]: Failed password for invalid user a from 14.241.245.179 port 47152 ssh2 Sep 28 13:50:04 idl1-dfw sshd[2709932]: Invalid user ppa from 14.241.245.179 port 40668 Sep 28 13:50:07 idl1-dfw sshd[2709932]: Failed password for invalid user ppa from 14.241.245.179 port 40668 ssh2 Sep 28 13:52:52 idl1-dfw sshd[2711916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 user=root |
2020-09-29 04:06:00 |
| 14.241.245.179 | attack | 2020-09-28T08:06:11.478823abusebot-6.cloudsearch.cf sshd[442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 user=root 2020-09-28T08:06:13.779991abusebot-6.cloudsearch.cf sshd[442]: Failed password for root from 14.241.245.179 port 43084 ssh2 2020-09-28T08:10:22.454084abusebot-6.cloudsearch.cf sshd[509]: Invalid user tony from 14.241.245.179 port 52944 2020-09-28T08:10:22.460701abusebot-6.cloudsearch.cf sshd[509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 2020-09-28T08:10:22.454084abusebot-6.cloudsearch.cf sshd[509]: Invalid user tony from 14.241.245.179 port 52944 2020-09-28T08:10:24.551282abusebot-6.cloudsearch.cf sshd[509]: Failed password for invalid user tony from 14.241.245.179 port 52944 ssh2 2020-09-28T08:14:29.820977abusebot-6.cloudsearch.cf sshd[573]: Invalid user hadoop from 14.241.245.179 port 34568 ... |
2020-09-28 20:19:15 |
| 14.241.245.179 | attackspam | Sep 28 04:17:34 web sshd[1115043]: Failed password for invalid user postgres from 14.241.245.179 port 60478 ssh2 Sep 28 04:25:01 web sshd[1115228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 user=root Sep 28 04:25:03 web sshd[1115228]: Failed password for root from 14.241.245.179 port 43682 ssh2 ... |
2020-09-28 12:24:36 |
| 14.241.251.162 | attack | Unauthorized connection attempt from IP address 14.241.251.162 on Port 445(SMB) |
2020-09-22 00:15:37 |
| 14.241.212.142 | attackbots | 20/9/20@13:00:56: FAIL: Alarm-Network address from=14.241.212.142 20/9/20@13:00:57: FAIL: Alarm-Network address from=14.241.212.142 ... |
2020-09-21 23:54:46 |
| 14.241.251.162 | attackbotsspam | Unauthorized connection attempt from IP address 14.241.251.162 on Port 445(SMB) |
2020-09-21 15:56:44 |
| 14.241.212.142 | attackspam | 20/9/20@13:00:56: FAIL: Alarm-Network address from=14.241.212.142 20/9/20@13:00:57: FAIL: Alarm-Network address from=14.241.212.142 ... |
2020-09-21 15:37:11 |
| 14.241.251.162 | attack | Unauthorized connection attempt from IP address 14.241.251.162 on Port 445(SMB) |
2020-09-21 07:50:38 |
| 14.241.212.142 | attackspam | 20/9/20@13:00:56: FAIL: Alarm-Network address from=14.241.212.142 20/9/20@13:00:57: FAIL: Alarm-Network address from=14.241.212.142 ... |
2020-09-21 07:31:16 |
| 14.241.250.254 | attackbots | Sep 12 02:09:13 dax sshd[23818]: warning: /etc/hosts.deny, line 15136: host name/address mismatch: 14.241.250.254 != static.vnpt.vn Sep 12 02:09:14 dax sshd[23818]: Address 14.241.250.254 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 12 02:09:14 dax sshd[23818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.250.254 user=r.r Sep 12 02:09:16 dax sshd[23818]: Failed password for r.r from 14.241.250.254 port 53982 ssh2 Sep 12 02:09:16 dax sshd[23818]: Received disconnect from 14.241.250.254: 11: Bye Bye [preauth] Sep 12 02:16:48 dax sshd[24974]: warning: /etc/hosts.deny, line 15136: host name/address mismatch: 14.241.250.254 != static.vnpt.vn Sep 12 02:16:54 dax sshd[24974]: Address 14.241.250.254 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 12 02:16:54 dax sshd[24974]: pam_unix(sshd:auth): authentication failure; logna........ ------------------------------- |
2020-09-14 21:49:44 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.241.2.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57119
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.241.2.130. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012300 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 16:30:31 CST 2025
;; MSG SIZE rcvd: 105
130.2.241.14.in-addr.arpa domain name pointer static.vnpt.vn.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
130.2.241.14.in-addr.arpa name = static.vnpt.vn.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 133.130.98.177 | attackbotsspam | Invalid user natasa from 133.130.98.177 port 41374 |
2020-01-22 00:35:55 |
| 51.38.186.207 | attack | Invalid user student from 51.38.186.207 port 34858 |
2020-01-22 01:03:29 |
| 58.82.183.95 | attackbots | Jan 21 17:44:53 nginx sshd[84464]: Invalid user user from 58.82.183.95 Jan 21 17:44:54 nginx sshd[84464]: Received disconnect from 58.82.183.95 port 35030:11: Normal Shutdown, Thank you for playing [preauth] |
2020-01-22 01:02:01 |
| 128.199.126.89 | attack | Unauthorized connection attempt detected from IP address 128.199.126.89 to port 2220 [J] |
2020-01-22 00:37:30 |
| 139.199.20.202 | attackspam | Invalid user catherine from 139.199.20.202 port 46940 |
2020-01-22 00:33:50 |
| 36.108.175.68 | attackbots | Unauthorized connection attempt detected from IP address 36.108.175.68 to port 2220 [J] |
2020-01-22 01:08:17 |
| 51.255.168.127 | attackbots | Invalid user admins from 51.255.168.127 port 44862 |
2020-01-22 01:02:57 |
| 104.248.34.192 | attackspam | Unauthorized connection attempt detected from IP address 104.248.34.192 to port 2220 [J] |
2020-01-22 00:53:16 |
| 106.12.49.118 | attack | Invalid user meneses from 106.12.49.118 port 49916 |
2020-01-22 00:52:45 |
| 116.97.234.250 | attack | Invalid user admin from 116.97.234.250 port 58772 |
2020-01-22 00:43:45 |
| 121.46.27.20 | attackspambots | Unauthorized connection attempt detected from IP address 121.46.27.20 to port 22 [J] |
2020-01-22 00:40:57 |
| 138.197.113.240 | attackbotsspam | Invalid user cip from 138.197.113.240 port 56122 |
2020-01-22 00:34:04 |
| 121.202.46.255 | attackspam | Invalid user admin from 121.202.46.255 port 23864 |
2020-01-22 00:40:14 |
| 81.133.142.45 | attackspambots | Unauthorized connection attempt detected from IP address 81.133.142.45 to port 2220 [J] |
2020-01-22 00:58:27 |
| 138.68.165.102 | attack | Unauthorized connection attempt detected from IP address 138.68.165.102 to port 2220 [J] |
2020-01-22 00:34:37 |