14.160.20.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 14.160.20.22 on Port 445(SMB)	2019-09-04 10:14:08
attackspam	445/tcp [2019-07-03]1pkt	2019-07-03 19:56:59

相同子网IP讨论:

IP	类型	评论内容	时间
14.160.20.194	attack	(imapd) Failed IMAP login from 14.160.20.194 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 28 16:39:57 ir1 dovecot[3110802]: imap-login: Disconnected (auth failed, 1 attempts in 20 secs): user=, method=PLAIN, rip=14.160.20.194, lip=5.63.12.44, TLS, session=	2020-08-28 20:17:05
14.160.20.194	attackspambots	'IP reached maximum auth failures for a one day block'	2020-08-21 04:44:27
14.160.20.58	attackbotsspam	2020-05-2205:45:551jbyd5-000501-Uq\<=info@whatsup2013.chH=$localhost$[14.160.20.58]:58185P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3252id=6164D2818A5E7132EEEBA21ADE661FE4@whatsup2013.chT="Ireallyhopeintheforeseeablefutureweshallfrequentlythinkabouteachother"formoneybags@456.com2020-05-2205:49:491jbygu-0005He-3h\<=info@whatsup2013.chH=$localhost$[171.35.170.208]:44970P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3178id=7471C7949F4B6427FBFEB70FCB00F5A5@whatsup2013.chT="Iwouldreallylikeasturdy\	2020-05-22 18:19:21
14.160.20.50	attackspambots	Unauthorized connection attempt from IP address 14.160.20.50 on Port 445(SMB)	2020-01-24 23:13:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.160.20.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12877
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.160.20.22.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070300 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 03 19:56:52 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

22.20.160.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
22.20.160.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
220.178.67.247	attackbots	" "	2020-10-14 02:57:12
193.112.16.245	attackbots	Oct 13 16:32:15 sigma sshd\[14618\]: Invalid user vic from 193.112.16.245Oct 13 16:32:17 sigma sshd\[14618\]: Failed password for invalid user vic from 193.112.16.245 port 36826 ssh2 ...	2020-10-14 03:10:19
122.51.159.186	attack	2020-10-13T17:54:36.700844abusebot-3.cloudsearch.cf sshd[21252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.159.186 user=root 2020-10-13T17:54:38.989982abusebot-3.cloudsearch.cf sshd[21252]: Failed password for root from 122.51.159.186 port 58790 ssh2 2020-10-13T17:56:49.373756abusebot-3.cloudsearch.cf sshd[21258]: Invalid user node02 from 122.51.159.186 port 58160 2020-10-13T17:56:49.380571abusebot-3.cloudsearch.cf sshd[21258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.159.186 2020-10-13T17:56:49.373756abusebot-3.cloudsearch.cf sshd[21258]: Invalid user node02 from 122.51.159.186 port 58160 2020-10-13T17:56:51.594289abusebot-3.cloudsearch.cf sshd[21258]: Failed password for invalid user node02 from 122.51.159.186 port 58160 ssh2 2020-10-13T17:58:42.360727abusebot-3.cloudsearch.cf sshd[21353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1 ...	2020-10-14 02:55:43
173.30.96.81	attack	Oct 13 14:54:20 eventyay sshd[5997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.30.96.81 Oct 13 14:54:22 eventyay sshd[5997]: Failed password for invalid user customer from 173.30.96.81 port 53808 ssh2 Oct 13 14:58:32 eventyay sshd[6392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.30.96.81 ...	2020-10-14 03:07:05
213.60.19.18	attack	$f2bV_matches	2020-10-14 03:17:30
152.136.130.29	attack	2020-10-13T18:19:08.426355shield sshd\[23234\]: Invalid user marleth from 152.136.130.29 port 55868 2020-10-13T18:19:08.435405shield sshd\[23234\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.130.29 2020-10-13T18:19:10.468565shield sshd\[23234\]: Failed password for invalid user marleth from 152.136.130.29 port 55868 ssh2 2020-10-13T18:22:40.072469shield sshd\[23617\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.130.29 user=root 2020-10-13T18:22:42.208904shield sshd\[23617\]: Failed password for root from 152.136.130.29 port 52248 ssh2	2020-10-14 03:20:43
165.227.50.84	attackbots	2020-10-13T16:05:54.185448paragon sshd[927957]: Invalid user yaysa from 165.227.50.84 port 45788 2020-10-13T16:05:54.189215paragon sshd[927957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.50.84 2020-10-13T16:05:54.185448paragon sshd[927957]: Invalid user yaysa from 165.227.50.84 port 45788 2020-10-13T16:05:55.919872paragon sshd[927957]: Failed password for invalid user yaysa from 165.227.50.84 port 45788 ssh2 2020-10-13T16:08:45.163856paragon sshd[928045]: Invalid user cipy from 165.227.50.84 port 36492 ...	2020-10-14 03:03:56
139.155.82.119	attackspam	Oct 13 16:41:09 serwer sshd\[8687\]: Invalid user romero from 139.155.82.119 port 45912 Oct 13 16:41:09 serwer sshd\[8687\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Oct 13 16:41:11 serwer sshd\[8687\]: Failed password for invalid user romero from 139.155.82.119 port 45912 ssh2 ...	2020-10-14 03:27:21
192.144.204.6	attackspam	Oct 13 19:04:35 email sshd\[4383\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.204.6 user=root Oct 13 19:04:37 email sshd\[4383\]: Failed password for root from 192.144.204.6 port 54318 ssh2 Oct 13 19:07:04 email sshd\[4894\]: Invalid user leo from 192.144.204.6 Oct 13 19:07:04 email sshd\[4894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.204.6 Oct 13 19:07:06 email sshd\[4894\]: Failed password for invalid user leo from 192.144.204.6 port 53096 ssh2 ...	2020-10-14 03:21:12
198.245.49.18	attack	4 ongeldige inlogpogingen (1 buitensluiting(en)) vanaf IP: 198.245.49.18	2020-10-14 02:56:51
51.116.115.198	attack	DATE:2020-10-12 22:44:46, IP:51.116.115.198, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2020-10-14 02:59:04
85.209.0.102	attackbots	Oct 13 21:08:22 sshgateway sshd\[2667\]: Invalid user admin from 85.209.0.102 Oct 13 21:08:22 sshgateway sshd\[2667\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.102 Oct 13 21:08:22 sshgateway sshd\[2668\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.102 user=root	2020-10-14 03:09:54
102.182.92.124	attackspambots	WordPress Bruteforce on Authentication page	2020-10-14 03:05:36
191.53.52.220	attackspam	Attempted Brute Force (dovecot)	2020-10-14 03:05:10
222.186.31.166	attackbots	Oct 13 20:54:59 vps647732 sshd[29417]: Failed password for root from 222.186.31.166 port 52319 ssh2 Oct 13 20:55:01 vps647732 sshd[29417]: Failed password for root from 222.186.31.166 port 52319 ssh2 ...	2020-10-14 02:55:14

最近上报的IP列表

80.114.71.120	228.31.181.119	24.30.21.115	89.211.189.134
73.70.189.227	114.97.208.117	78.217.209.3	58.35.167.5
66.77.129.115	139.17.152.143	79.220.80.248	93.81.195.214
211.198.82.203	150.60.134.78	23.247.2.43	31.167.18.91
185.42.215.160	182.34.56.174	55.46.79.153	84.201.178.158