14.0.19.23 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): HTC International telecommunication joint stock company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorised access (Aug 2) SRC=14.0.19.23 LEN=52 TOS=0x10 PREC=0x40 TTL=119 ID=17342 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-02 14:34:19

相同子网IP讨论:

IP	类型	评论内容	时间
14.0.19.14	attackbots	Unauthorized connection attempt from IP address 14.0.19.14 on Port 445(SMB)	2020-06-17 19:08:39
14.0.19.146	attackbots	Unauthorized connection attempt from IP address 14.0.19.146 on Port 445(SMB)	2020-06-09 03:55:27
14.0.19.6	attackspambots	Unauthorized connection attempt from IP address 14.0.19.6 on Port 445(SMB)	2020-05-06 23:03:58
14.0.19.179	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-08 15:28:06
14.0.19.33	attackbots	1583470645 - 03/06/2020 05:57:25 Host: 14.0.19.33/14.0.19.33 Port: 445 TCP Blocked	2020-03-06 14:47:04
14.0.19.160	attackbots	445/tcp 445/tcp [2019-12-18/2020-02-12]2pkt	2020-02-12 16:37:43
14.0.19.159	attackspam	20/2/11@23:57:52: FAIL: Alarm-Network address from=14.0.19.159 ...	2020-02-12 13:52:27
14.0.19.179	attackbotsspam	Unauthorized connection attempt from IP address 14.0.19.179 on Port 445(SMB)	2019-12-30 23:22:28
14.0.19.150	attackbots	Unauthorised access (Nov 27) SRC=14.0.19.150 LEN=52 TTL=119 ID=8748 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 27) SRC=14.0.19.150 LEN=52 TTL=120 ID=14216 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-27 13:07:38
14.0.19.179	attackbots	Unauthorized connection attempt from IP address 14.0.19.179 on Port 445(SMB)	2019-10-10 00:49:10
14.0.19.6	attack	10/05/2019-23:48:15.614930 14.0.19.6 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-10-06 16:46:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.0.19.23
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40838
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.0.19.23.			IN	A

;; AUTHORITY SECTION:
.			440	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080200 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 02 14:34:14 CST 2020
;; MSG SIZE  rcvd: 114

HOST信息:

Host 23.19.0.14.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 23.19.0.14.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
182.61.43.202	attackspam	$f2bV_matches	2020-02-09 23:50:46
85.93.20.66	attack	21 attempts against mh-misbehave-ban on plane	2020-02-09 23:57:31
208.109.54.191	attackspambots	Feb 9 14:35:36 h1745522 sshd[6262]: Invalid user gituser from 208.109.54.191 port 60898 Feb 9 14:35:36 h1745522 sshd[6262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.109.54.191 Feb 9 14:35:36 h1745522 sshd[6262]: Invalid user gituser from 208.109.54.191 port 60898 Feb 9 14:35:39 h1745522 sshd[6262]: Failed password for invalid user gituser from 208.109.54.191 port 60898 ssh2 Feb 9 14:35:41 h1745522 sshd[6270]: Invalid user gituser from 208.109.54.191 port 33964 Feb 9 14:35:41 h1745522 sshd[6270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.109.54.191 Feb 9 14:35:41 h1745522 sshd[6270]: Invalid user gituser from 208.109.54.191 port 33964 Feb 9 14:35:43 h1745522 sshd[6270]: Failed password for invalid user gituser from 208.109.54.191 port 33964 ssh2 Feb 9 14:35:45 h1745522 sshd[6274]: Invalid user gituser from 208.109.54.191 port 35052 ...	2020-02-10 00:03:03
14.17.96.205	attackspam	44441/tcp [2020-02-09]1pkt	2020-02-09 23:42:47
164.68.112.32	attackspambots	53413/udp 53413/udp [2020-02-09]2pkt	2020-02-09 23:55:37
141.98.80.173	attackspam	Feb 9 17:39:34 ncomp sshd[14208]: Invalid user admin from 141.98.80.173 Feb 9 17:39:34 ncomp sshd[14208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.80.173 Feb 9 17:39:34 ncomp sshd[14208]: Invalid user admin from 141.98.80.173 Feb 9 17:39:36 ncomp sshd[14208]: Failed password for invalid user admin from 141.98.80.173 port 12707 ssh2	2020-02-09 23:58:22
106.12.221.86	attackbotsspam	Feb 9 05:24:33 sachi sshd\[4762\]: Invalid user xam from 106.12.221.86 Feb 9 05:24:33 sachi sshd\[4762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.221.86 Feb 9 05:24:35 sachi sshd\[4762\]: Failed password for invalid user xam from 106.12.221.86 port 36354 ssh2 Feb 9 05:27:08 sachi sshd\[4990\]: Invalid user fle from 106.12.221.86 Feb 9 05:27:08 sachi sshd\[4990\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.221.86	2020-02-09 23:48:07
139.193.183.30	attackspam	Feb 9 14:36:07 vmd38886 sshd\[12525\]: Invalid user tech from 139.193.183.30 port 57013 Feb 9 14:36:08 vmd38886 sshd\[12525\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.193.183.30 Feb 9 14:36:10 vmd38886 sshd\[12525\]: Failed password for invalid user tech from 139.193.183.30 port 57013 ssh2	2020-02-09 23:34:43
196.179.230.10	attackspam	Unauthorised access (Feb 9) SRC=196.179.230.10 LEN=48 TTL=113 ID=29611 DF TCP DPT=445 WINDOW=8192 SYN	2020-02-09 23:40:01
42.201.208.210	attackspam	Brute force attempt	2020-02-09 23:28:51
191.36.169.37	attackbots	Port probing on unauthorized port 23	2020-02-10 00:01:29
122.117.42.62	attackspam	Unauthorized connection attempt detected from IP address 122.117.42.62 to port 2323	2020-02-09 23:44:01
203.147.64.239	attackbotsspam	Brute force attempt	2020-02-09 23:39:29
162.243.128.119	attackbots	(sshd) Failed SSH login from 162.243.128.119 (US/United States/zg-0131a-196.stretchoid.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 9 14:31:00 ubnt-55d23 sshd[3640]: Did not receive identification string from 162.243.128.119 port 47632 Feb 9 14:36:08 ubnt-55d23 sshd[4515]: Did not receive identification string from 162.243.128.119 port 37050	2020-02-09 23:30:55
220.246.151.48	attackspam	5555/tcp [2020-02-09]1pkt	2020-02-09 23:18:49

最近上报的IP列表

228.130.74.172	64.143.53.48	130.43.42.117	20.204.184.56
189.205.16.55	175.107.202.15	215.112.147.186	138.84.124.213
198.230.122.235	107.132.112.187	218.211.236.116	216.4.172.180
20.69.222.85	151.147.24.113	49.149.223.38	185.19.28.178
165.227.21.45	37.111.7.109	106.75.148.228	194.87.138.218