城市(city): unknown
省份(region): unknown
国家(country): Viet Nam
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 14.249.74.96 | attackspam | Unauthorized connection attempt from IP address 14.249.74.96 on Port 445(SMB) |
2020-04-14 19:35:02 |
| 14.249.74.206 | attackspam | unauthorized connection attempt |
2020-01-09 13:49:09 |
| 14.249.74.212 | attack | 1576252397 - 12/13/2019 16:53:17 Host: 14.249.74.212/14.249.74.212 Port: 445 TCP Blocked |
2019-12-14 06:57:40 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.249.74.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40862
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.249.74.27. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400
;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 15:50:45 CST 2025
;; MSG SIZE rcvd: 10527.74.249.14.in-addr.arpa domain name pointer static.vnpt.vn.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
27.74.249.14.in-addr.arpa name = static.vnpt.vn.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 85.185.82.97 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-09-04 04:23:44 |
| 157.44.221.0 | attackbots |
|
2020-09-04 04:28:21 |
| 222.186.42.7 | attackspam | Sep 3 20:34:02 rush sshd[21594]: Failed password for root from 222.186.42.7 port 32774 ssh2 Sep 3 20:34:11 rush sshd[21596]: Failed password for root from 222.186.42.7 port 56973 ssh2 Sep 3 20:34:13 rush sshd[21596]: Failed password for root from 222.186.42.7 port 56973 ssh2 ... |
2020-09-04 04:41:42 |
| 195.133.32.98 | attack | 2020-09-02T01:36:33.186086hostname sshd[35085]: Failed password for invalid user hank from 195.133.32.98 port 55234 ssh2 ... |
2020-09-04 04:40:53 |
| 167.172.195.99 | attackbots | SSH Brute Force |
2020-09-04 04:39:25 |
| 195.54.160.180 | attackbots | Sep 3 16:33:39 ny01 sshd[27617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.180 Sep 3 16:33:41 ny01 sshd[27617]: Failed password for invalid user admin from 195.54.160.180 port 35604 ssh2 Sep 3 16:33:42 ny01 sshd[27623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.180 |
2020-09-04 04:36:14 |
| 165.22.42.154 | attackbots |
|
2020-09-04 04:06:16 |
| 49.236.192.13 | attackbotsspam |
|
2020-09-04 04:24:45 |
| 60.175.90.102 | attack | Icarus honeypot on github |
2020-09-04 04:42:11 |
| 91.200.224.169 | attackbotsspam |
|
2020-09-04 04:22:53 |
| 158.140.180.125 | attackspambots |
|
2020-09-04 04:16:05 |
| 184.105.247.199 | attackbotsspam |
|
2020-09-04 04:20:27 |
| 71.6.232.9 | attack | srvr3: (mod_security) mod_security (id:920350) triggered by 71.6.232.9 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/03 15:39:46 [error] 365944#0: *1926 [client 71.6.232.9] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "15991403863.514882"] [ref "o0,11v21,11"], client: 71.6.232.9, [redacted] request: "GET / HTTP/1.1" [redacted] |
2020-09-04 04:07:01 |
| 158.177.128.27 | attack | Auto Detect Rule! proto TCP (SYN), 158.177.128.27:55912->gjan.info:1433, len 40 |
2020-09-04 04:15:42 |
| 221.120.237.146 | attack |
|
2020-09-04 04:26:43 |