14.160.23.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): VNPT Corp

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	postfix (unknown user, SPF fail or relay access denied)	2019-12-20 14:11:09
attackbots	2019-08-22 23:59:20 H=(static.vnpt.vn) [14.160.23.139]:36511 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/14.160.23.139) 2019-08-22 23:59:20 H=(static.vnpt.vn) [14.160.23.139]:36511 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/14.160.23.139) 2019-08-22 23:59:22 H=(static.vnpt.vn) [14.160.23.139]:36511 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4, 127.0.0.11) (https://www.spamhaus.org/query/ip/14.160.23.139) ...	2019-08-23 19:26:24

类型

评论内容

时间

attack

postfix (unknown user, SPF fail or relay access denied)

2019-12-20 14:11:09

attackbots

2019-08-22 23:59:20 H=(static.vnpt.vn) [14.160.23.139]:36511 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/14.160.23.139)
2019-08-22 23:59:20 H=(static.vnpt.vn) [14.160.23.139]:36511 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/14.160.23.139)
2019-08-22 23:59:22 H=(static.vnpt.vn) [14.160.23.139]:36511 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4, 127.0.0.11) (https://www.spamhaus.org/query/ip/14.160.23.139)
...

2019-08-23 19:26:24

相同子网IP讨论:

IP	类型	评论内容	时间
14.160.23.159	attack	Attempt to login to microsoft account	2021-12-23 22:06:51
14.160.23.170	attackbots	failed_logins	2020-08-06 08:40:06
14.160.23.141	attack	1595567805 - 07/24/2020 07:16:45 Host: 14.160.23.141/14.160.23.141 Port: 445 TCP Blocked	2020-07-24 18:35:57
14.160.23.170	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-07-24 15:05:26
14.160.23.170	attack	Dovecot Invalid User Login Attempt.	2020-06-27 02:11:27
14.160.23.159	attack	SMB Server BruteForce Attack	2020-06-25 18:38:54
14.160.23.170	attackbots	Dovecot Invalid User Login Attempt.	2020-05-08 01:25:19
14.160.23.211	attack	Unauthorized connection attempt from IP address 14.160.23.211 on Port 445(SMB)	2020-03-09 18:18:14
14.160.232.165	attack	Honeypot attack, port: 5555, PTR: static.vnpt.vn.	2020-03-07 23:57:24
14.160.238.45	attackbotsspam	Feb 18 05:00:38 host2 sshd[2732]: Address 14.160.238.45 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 18 05:00:38 host2 sshd[2732]: Invalid user admin from 14.160.238.45 Feb 18 05:00:38 host2 sshd[2732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.238.45 Feb 18 05:00:40 host2 sshd[2732]: Failed password for invalid user admin from 14.160.238.45 port 53658 ssh2 Feb 18 05:00:41 host2 sshd[2732]: Connection closed by 14.160.238.45 [preauth] Feb 18 05:00:48 host2 sshd[3490]: Address 14.160.238.45 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 18 05:00:48 host2 sshd[3490]: Invalid user admin from 14.160.238.45 Feb 18 05:00:48 host2 sshd[3490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.238.45 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.160.238.45	2020-02-19 02:54:54
14.160.236.218	attack	" "	2020-02-12 02:51:58

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.160.23.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10608
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.160.23.139.			IN	A

;; AUTHORITY SECTION:
.			2804	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050601 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue May 07 01:31:10 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

139.23.160.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
139.23.160.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.54.121.117	attack	Sep 14 09:09:44 ns381471 sshd[12303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 Sep 14 09:09:46 ns381471 sshd[12303]: Failed password for invalid user skwarok from 106.54.121.117 port 48672 ssh2	2020-09-14 17:10:03
162.243.232.174	attackbots	Sep 14 04:07:58 lanister sshd[9718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.232.174 user=root Sep 14 04:08:01 lanister sshd[9718]: Failed password for root from 162.243.232.174 port 56321 ssh2 Sep 14 04:13:12 lanister sshd[9839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.232.174 user=root Sep 14 04:13:13 lanister sshd[9839]: Failed password for root from 162.243.232.174 port 46334 ssh2	2020-09-14 17:28:31
69.162.124.230	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-14 17:42:25
218.75.110.51	attackspambots	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-14 17:18:44
194.44.230.32	attackspam	RDP brute-forcing	2020-09-14 17:43:46
202.134.160.99	attackspambots	Sep 14 11:16:26 nuernberg-4g-01 sshd[25295]: Failed password for root from 202.134.160.99 port 38858 ssh2 Sep 14 11:20:56 nuernberg-4g-01 sshd[26820]: Failed password for root from 202.134.160.99 port 51512 ssh2	2020-09-14 17:35:19
211.159.153.62	attack	Sep 14 10:10:56 sip sshd[27308]: Failed password for root from 211.159.153.62 port 56374 ssh2 Sep 14 10:23:01 sip sshd[30602]: Failed password for root from 211.159.153.62 port 54698 ssh2	2020-09-14 17:07:08
190.5.242.114	attack	Sep 13 21:49:14 melroy-server sshd[23839]: Failed password for root from 190.5.242.114 port 43343 ssh2 ...	2020-09-14 17:37:09
94.183.31.11	attack	Sep 12 19:08:28 vayu sshd[453153]: reveeclipse mapping checking getaddrinfo for 94-183-31-11.[vicserver]el.ir [94.183.31.11] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 12 19:08:28 vayu sshd[453153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.183.31.11 user=r.r Sep 12 19:08:30 vayu sshd[453153]: Failed password for r.r from 94.183.31.11 port 42478 ssh2 Sep 12 19:08:31 vayu sshd[453153]: Received disconnect from 94.183.31.11: 11: Bye Bye [preauth] Sep 12 19:33:01 vayu sshd[460919]: reveeclipse mapping checking getaddrinfo for 94-183-31-11.[vicserver]el.ir [94.183.31.11] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 12 19:33:01 vayu sshd[460919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.183.31.11 user=r.r Sep 12 19:33:03 vayu sshd[460919]: Failed password for r.r from 94.183.31.11 port 45996 ssh2 Sep 12 19:33:08 vayu sshd[460919]: Received disconnect from 94.183.31.11: 11: Bye Bye [p........ -------------------------------	2020-09-14 17:14:00
64.225.25.59	attack	[f2b] sshd bruteforce, retries: 1	2020-09-14 17:14:16
91.199.223.110	attackbotsspam	TCP (SYN) 91.199.223.110:59867 -> port 19457, len 44	2020-09-14 17:13:09
139.99.114.230	attack	SIP/5060 Probe, BF, Hack -	2020-09-14 17:20:03
5.32.95.42	attackspam	Invalid user devops from 5.32.95.42 port 31861	2020-09-14 17:34:10
82.221.146.3	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-14 17:10:30
93.141.46.196	attackspambots	Sep 13 18:53:06 sd-69548 sshd[1701099]: Invalid user admin from 93.141.46.196 port 64406 Sep 13 18:53:07 sd-69548 sshd[1701099]: Connection closed by invalid user admin 93.141.46.196 port 64406 [preauth] ...	2020-09-14 17:30:02

最近上报的IP列表

209.97.186.86	49.76.14.175	188.114.30.125	89.86.175.106
89.120.27.33	181.167.114.85	105.230.56.172	116.212.131.90
148.231.113.228	102.118.117.203	189.36.145.109	1.246.27.161
39.187.135.188	210.211.101.200	79.166.146.234	126.40.96.92
200.6.188.2	5.189.160.21	121.118.240.12	96.114.188.117