City: unknown
Region: unknown
Country: Viet Nam
Internet Service Provider: Vietnam Posts and Telecommunications Group
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attackspambots | Unauthorized connection attempt detected from IP address 14.245.2.30 to port 445 |
2020-01-04 16:40:55 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 14.245.230.134 | attackbotsspam | Icarus honeypot on github |
2020-08-17 02:21:12 |
| 14.245.211.93 | attackspambots | 06/26/2020-23:55:13.260209 14.245.211.93 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433 |
2020-06-27 13:39:59 |
| 14.245.247.145 | attackbots | Unauthorized connection attempt from IP address 14.245.247.145 on Port 445(SMB) |
2020-05-03 20:51:37 |
| 14.245.242.66 | attack | Unauthorized connection attempt from IP address 14.245.242.66 on Port 445(SMB) |
2020-04-27 00:57:05 |
| 14.245.220.244 | attackbots | 445/tcp [2020-04-04]1pkt |
2020-04-05 04:44:56 |
| 14.245.29.167 | attackbotsspam | 445/tcp 445/tcp 445/tcp... [2020-02-01/03-23]6pkt,1pt.(tcp) |
2020-03-23 14:20:49 |
| 14.245.240.103 | attackbots | Lines containing failures of 14.245.240.103 auth.log:Feb 10 14:39:28 omfg sshd[29626]: Connection from 14.245.240.103 port 56141 on 78.46.60.16 port 22 auth.log:Feb 10 14:39:28 omfg sshd[29626]: Did not receive identification string from 14.245.240.103 auth.log:Feb 10 14:39:29 omfg sshd[29627]: Connection from 14.245.240.103 port 56124 on 78.46.60.41 port 22 auth.log:Feb 10 14:39:29 omfg sshd[29627]: Did not receive identification string from 14.245.240.103 auth.log:Feb 10 14:39:29 omfg sshd[29628]: Connection from 14.245.240.103 port 56139 on 78.46.60.50 port 22 auth.log:Feb 10 14:39:29 omfg sshd[29628]: Did not receive identification string from 14.245.240.103 auth.log:Feb 10 14:39:33 omfg sshd[29632]: Connection from 14.245.240.103 port 56062 on 78.46.60.50 port 22 auth.log:Feb 10 14:39:34 omfg sshd[29632]: Invalid user thostname0nich from 14.245.240.103 auth.log:Feb 10 14:39:34 omfg sshd[29632]: Connection closed by 14.245.240.103 port 56062 [preauth] ........ ------------------------------------------- |
2020-02-10 23:36:33 |
| 14.245.232.130 | attack | unauthorized connection attempt |
2020-01-22 17:52:47 |
| 14.245.212.200 | attack | unauthorized connection attempt |
2020-01-17 14:10:18 |
| 14.245.204.47 | attackbots | Unauthorized connection attempt from IP address 14.245.204.47 on Port 445(SMB) |
2020-01-17 01:28:09 |
| 14.245.2.184 | attackspam | Unauthorized connection attempt from IP address 14.245.2.184 on Port 445(SMB) |
2020-01-03 19:08:53 |
| 14.245.234.20 | attackbots | Automatic report - Port Scan Attack |
2019-11-18 20:12:29 |
| 14.245.247.105 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 16-11-2019 06:20:29. |
2019-11-16 20:25:13 |
| 14.245.209.218 | attackspambots | Lines containing failures of 14.245.209.218 Oct 21 03:49:13 omfg postfix/smtpd[23347]: warning: hostname static.vnpt.vn does not resolve to address 14.245.209.218 Oct 21 03:49:13 omfg postfix/smtpd[23347]: connect from unknown[14.245.209.218] Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.245.209.218 |
2019-10-23 07:09:00 |
| 14.245.200.48 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 28-09-2019 13:35:14. |
2019-09-28 21:17:46 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.245.2.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45669
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.245.2.30. IN A
;; AUTHORITY SECTION:
. 384 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400
;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 04 16:40:51 CST 2020
;; MSG SIZE rcvd: 11530.2.245.14.in-addr.arpa domain name pointer static.vnpt.vn.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
30.2.245.14.in-addr.arpa name = static.vnpt.vn.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 95.154.81.65 | attack | Mail sent to address hacked/leaked from Last.fm |
2019-08-14 08:49:12 |
| 114.118.6.133 | attack | Automatic report - SSH Brute-Force Attack |
2019-08-14 08:54:04 |
| 123.207.140.248 | attack | $f2bV_matches |
2019-08-14 08:39:15 |
| 170.130.187.42 | attackbots | Honeypot attack, port: 23, PTR: PTR record not found |
2019-08-14 08:32:34 |
| 157.230.112.34 | attack | Aug 13 18:52:09 sshgateway sshd\[17013\]: Invalid user azman from 157.230.112.34 Aug 13 18:52:09 sshgateway sshd\[17013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.112.34 Aug 13 18:52:11 sshgateway sshd\[17013\]: Failed password for invalid user azman from 157.230.112.34 port 58696 ssh2 |
2019-08-14 08:50:07 |
| 158.69.193.32 | attackbots | Brute-Force attack detected (158.69.193.32) and blocked. |
2019-08-14 09:04:29 |
| 153.36.242.143 | attack | 2019-08-14T07:43:45.943201enmeeting.mahidol.ac.th sshd\[602\]: User root from 153.36.242.143 not allowed because not listed in AllowUsers 2019-08-14T07:43:46.161097enmeeting.mahidol.ac.th sshd\[602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root 2019-08-14T07:43:47.845662enmeeting.mahidol.ac.th sshd\[602\]: Failed password for invalid user root from 153.36.242.143 port 40328 ssh2 ... |
2019-08-14 09:00:21 |
| 201.55.199.143 | attackspambots | Aug 13 21:02:58 XXX sshd[10524]: Invalid user Jewel from 201.55.199.143 port 47576 |
2019-08-14 08:32:13 |
| 107.170.241.152 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-08-14 08:33:22 |
| 81.22.45.106 | attackspambots | 08/13/2019-14:18:06.048015 81.22.45.106 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-08-14 08:52:21 |
| 118.200.41.41 | attack | Aug 14 07:22:40 webhost01 sshd[24359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.200.41.41 Aug 14 07:22:43 webhost01 sshd[24359]: Failed password for invalid user wildfly from 118.200.41.41 port 43432 ssh2 ... |
2019-08-14 08:53:43 |
| 216.10.217.244 | attackbotsspam | REQUESTED PAGE: /wp-login.php |
2019-08-14 08:55:28 |
| 78.133.136.142 | attack | Aug 14 07:54:14 lcl-usvr-01 sshd[22971]: Invalid user ofbiz from 78.133.136.142 Aug 14 07:54:14 lcl-usvr-01 sshd[22971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.133.136.142 Aug 14 07:54:14 lcl-usvr-01 sshd[22971]: Invalid user ofbiz from 78.133.136.142 Aug 14 07:54:16 lcl-usvr-01 sshd[22971]: Failed password for invalid user ofbiz from 78.133.136.142 port 56406 ssh2 Aug 14 08:03:41 lcl-usvr-01 sshd[25901]: Invalid user oracle from 78.133.136.142 |
2019-08-14 09:05:33 |
| 104.248.85.115 | attackspam | Aug 14 01:28:22 XXX sshd[23842]: Invalid user lehranstalt from 104.248.85.115 port 17281 |
2019-08-14 09:03:51 |
| 201.161.58.60 | attack | Aug 14 00:49:05 dedicated sshd[7027]: Invalid user download from 201.161.58.60 port 37838 |
2019-08-14 09:06:43 |