City: unknown
Region: unknown
Country: Viet Nam
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.166.147.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2255
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.166.147.252. IN A
;; AUTHORITY SECTION:
. 282 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400
;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 05:50:19 CST 2022
;; MSG SIZE rcvd: 107252.147.166.14.in-addr.arpa domain name pointer static.vnpt.vn.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
252.147.166.14.in-addr.arpa name = static.vnpt.vn.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.234.218.83 | attackbots | Aug 15 02:42:40 web01.agentur-b-2.de postfix/smtpd[3367138]: warning: unknown[185.234.218.83]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 02:42:40 web01.agentur-b-2.de postfix/smtpd[3367138]: lost connection after AUTH from unknown[185.234.218.83] Aug 15 02:43:46 web01.agentur-b-2.de postfix/smtpd[3367138]: warning: unknown[185.234.218.83]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 02:43:46 web01.agentur-b-2.de postfix/smtpd[3367138]: lost connection after AUTH from unknown[185.234.218.83] Aug 15 02:49:25 web01.agentur-b-2.de postfix/smtpd[3370668]: warning: unknown[185.234.218.83]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-08-15 12:35:48 |
| 212.70.149.82 | attackbotsspam | Aug 15 06:15:08 srv01 postfix/smtpd\[32254\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:15:15 srv01 postfix/smtpd\[32529\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:15:16 srv01 postfix/smtpd\[32638\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:15:16 srv01 postfix/smtpd\[32637\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:15:37 srv01 postfix/smtpd\[32529\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-08-15 12:28:15 |
| 187.141.128.42 | attack | 2020-08-15T04:02:19.672296abusebot-2.cloudsearch.cf sshd[13415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.141.128.42 user=root 2020-08-15T04:02:21.116795abusebot-2.cloudsearch.cf sshd[13415]: Failed password for root from 187.141.128.42 port 42240 ssh2 2020-08-15T04:05:04.840991abusebot-2.cloudsearch.cf sshd[13435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.141.128.42 user=root 2020-08-15T04:05:06.937861abusebot-2.cloudsearch.cf sshd[13435]: Failed password for root from 187.141.128.42 port 44202 ssh2 2020-08-15T04:07:58.376946abusebot-2.cloudsearch.cf sshd[13458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.141.128.42 user=root 2020-08-15T04:08:00.694444abusebot-2.cloudsearch.cf sshd[13458]: Failed password for root from 187.141.128.42 port 47394 ssh2 2020-08-15T04:10:40.542950abusebot-2.cloudsearch.cf sshd[13470]: pam_unix(sshd:auth): ... |
2020-08-15 12:11:54 |
| 138.122.96.140 | attackspambots | Aug 15 02:28:12 mail.srvfarm.net postfix/smtpd[966773]: warning: unknown[138.122.96.140]: SASL PLAIN authentication failed: Aug 15 02:28:12 mail.srvfarm.net postfix/smtpd[966773]: lost connection after AUTH from unknown[138.122.96.140] Aug 15 02:28:47 mail.srvfarm.net postfix/smtps/smtpd[950235]: warning: unknown[138.122.96.140]: SASL PLAIN authentication failed: Aug 15 02:28:48 mail.srvfarm.net postfix/smtps/smtpd[950235]: lost connection after AUTH from unknown[138.122.96.140] Aug 15 02:35:23 mail.srvfarm.net postfix/smtpd[965952]: warning: unknown[138.122.96.140]: SASL PLAIN authentication failed: |
2020-08-15 12:42:11 |
| 172.82.239.21 | attack | Aug 15 02:49:17 mail.srvfarm.net postfix/smtpd[970999]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Aug 15 02:51:26 mail.srvfarm.net postfix/smtpd[971000]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Aug 15 02:52:28 mail.srvfarm.net postfix/smtpd[972858]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Aug 15 02:54:33 mail.srvfarm.net postfix/smtpd[972893]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Aug 15 02:55:45 mail.srvfarm.net postfix/smtpd[972706]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] |
2020-08-15 12:39:08 |
| 170.83.189.161 | attackbots | Aug 15 02:42:40 mail.srvfarm.net postfix/smtps/smtpd[967570]: warning: unknown[170.83.189.161]: SASL PLAIN authentication failed: Aug 15 02:42:41 mail.srvfarm.net postfix/smtps/smtpd[967570]: lost connection after AUTH from unknown[170.83.189.161] Aug 15 02:44:33 mail.srvfarm.net postfix/smtpd[965228]: warning: unknown[170.83.189.161]: SASL PLAIN authentication failed: Aug 15 02:44:34 mail.srvfarm.net postfix/smtpd[965228]: lost connection after AUTH from unknown[170.83.189.161] Aug 15 02:50:23 mail.srvfarm.net postfix/smtpd[971316]: warning: unknown[170.83.189.161]: SASL PLAIN authentication failed: |
2020-08-15 12:39:32 |
| 106.52.139.223 | attackbotsspam | Aug 15 04:22:08 serwer sshd\[20837\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.139.223 user=root Aug 15 04:22:10 serwer sshd\[20837\]: Failed password for root from 106.52.139.223 port 54090 ssh2 Aug 15 04:25:36 serwer sshd\[22870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.139.223 user=root ... |
2020-08-15 12:18:20 |
| 186.122.148.9 | attack | frenzy |
2020-08-15 12:34:35 |
| 172.82.239.22 | attack | Aug 15 02:49:17 mail.srvfarm.net postfix/smtpd[966773]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 15 02:51:26 mail.srvfarm.net postfix/smtpd[970941]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 15 02:52:28 mail.srvfarm.net postfix/smtpd[971000]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 15 02:54:34 mail.srvfarm.net postfix/smtpd[972706]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 15 02:55:46 mail.srvfarm.net postfix/smtpd[972632]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] |
2020-08-15 12:25:21 |
| 51.178.184.226 | attackspam | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-08-15 12:06:35 |
| 222.186.190.2 | attackspam | Aug 14 18:09:28 tdfoods sshd\[31962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Aug 14 18:09:30 tdfoods sshd\[31962\]: Failed password for root from 222.186.190.2 port 51680 ssh2 Aug 14 18:09:39 tdfoods sshd\[31962\]: Failed password for root from 222.186.190.2 port 51680 ssh2 Aug 14 18:09:43 tdfoods sshd\[31962\]: Failed password for root from 222.186.190.2 port 51680 ssh2 Aug 14 18:09:47 tdfoods sshd\[31980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root |
2020-08-15 12:16:31 |
| 195.223.171.66 | attack | D-Link DSL-2750B Remote Command Execution Vulnerability , PTR: host-195-223-171-66.business.telecomitalia.it. |
2020-08-15 12:17:41 |
| 191.53.198.61 | attackbotsspam | Aug 15 02:38:40 mail.srvfarm.net postfix/smtpd[965947]: warning: unknown[191.53.198.61]: SASL PLAIN authentication failed: Aug 15 02:38:41 mail.srvfarm.net postfix/smtpd[965947]: lost connection after AUTH from unknown[191.53.198.61] Aug 15 02:39:54 mail.srvfarm.net postfix/smtps/smtpd[967570]: warning: unknown[191.53.198.61]: SASL PLAIN authentication failed: Aug 15 02:39:55 mail.srvfarm.net postfix/smtps/smtpd[967570]: lost connection after AUTH from unknown[191.53.198.61] Aug 15 02:44:22 mail.srvfarm.net postfix/smtpd[965955]: warning: unknown[191.53.198.61]: SASL PLAIN authentication failed: |
2020-08-15 12:31:55 |
| 92.118.161.45 | attack | " " |
2020-08-15 12:10:57 |
| 193.169.253.137 | attack | Aug 5 22:47:54 h2027339 /var/qmail/bin/relaylock[18162]: /var/qmail/bin/relaylock: mail from 193.169.253.137:64290 (not defined) Aug 5 22:47:54 h2027339 smtp_auth: SMTP connect from unknown [193.169.253.137] Aug x@x Aug 8 12:06:06 h2027339 /var/qmail/bin/relaylock[20227]: /var/qmail/bin/relaylock: mail from 193.169.253.137:52920 (not defined) Aug 8 12:06:06 h2027339 smtp_auth: SMTP connect from unknown [193.169.253.137] Aug x@x Aug 8 13:43:41 h2027339 /var/qmail/bin/relaylock[20591]: /var/qmail/bin/relaylock: mail from 193.169.253.137:65406 (not defined) Aug 8 13:43:41 h2027339 smtp_auth: SMTP connect from unknown [193.169.253.137] Aug x@x Aug 8 15:05:06 h2027339 /var/qmail/bin/relaylock[20877]: /var/qmail/bin/relaylock: mail from 193.169.253.137:56297 (not defined) Aug 8 15:05:06 h2027339 smtp_auth: SMTP connect from unknown [193.169.253.137] Aug x@x Aug 8 16:27:13 h2027339 /var/qmail/bin/relaylock[20986]: /var/qmail/bin/relaylock: mail from 193.169.253.137:55........ ------------------------------- |
2020-08-15 12:30:57 |