14.160.24.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Attempt to attack host OS, exploiting network vulnerabilities, on 02-11-2019 03:55:15.	2019-11-02 12:25:41

相同子网IP讨论:

IP	类型	评论内容	时间
14.160.24.96	attackspambots	Unauthorized connection attempt from IP address 14.160.24.96 on Port 445(SMB)	2020-08-30 21:33:44
14.160.24.237	attackbots	Port scan: Attack repeated for 24 hours	2020-08-28 12:33:13
14.160.24.104	attackbotsspam	Unauthorized connection attempt from IP address 14.160.24.104 on Port 445(SMB)	2020-08-26 06:04:41
14.160.24.96	attack	Unauthorized connection attempt from IP address 14.160.24.96 on Port 445(SMB)	2020-08-24 08:54:38
14.160.24.248	attackspam	1597924963 - 08/20/2020 14:02:43 Host: 14.160.24.248/14.160.24.248 Port: 445 TCP Blocked	2020-08-21 01:28:35
14.160.24.5	attack	Dovecot Invalid User Login Attempt.	2020-08-12 08:10:13
14.160.24.57	attackbotsspam	Attempted Brute Force (dovecot)	2020-07-26 14:51:26
14.160.24.95	attackbots	Unauthorized connection attempt from IP address 14.160.24.95 on Port 445(SMB)	2020-07-04 06:40:43
14.160.24.32	attackbotsspam	(sshd) Failed SSH login from 14.160.24.32 (VN/Vietnam/static.vnpt.vn): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 1 06:00:58 amsweb01 sshd[22174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.24.32 user=root Jun 1 06:01:01 amsweb01 sshd[22174]: Failed password for root from 14.160.24.32 port 57796 ssh2 Jun 1 06:10:40 amsweb01 sshd[23115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.24.32 user=root Jun 1 06:10:42 amsweb01 sshd[23115]: Failed password for root from 14.160.24.32 port 33978 ssh2 Jun 1 06:48:02 amsweb01 sshd[29368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.24.32 user=root	2020-06-01 17:52:25
14.160.24.32	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-25 16:24:31
14.160.24.32	attackbots	2020-05-24T07:44:47.804567ollin.zadara.org sshd[5413]: Invalid user enp from 14.160.24.32 port 48872 2020-05-24T07:44:49.227302ollin.zadara.org sshd[5413]: Failed password for invalid user enp from 14.160.24.32 port 48872 ssh2 ...	2020-05-24 18:15:32
14.160.24.32	attack	Fail2Ban - SSH Bruteforce Attempt	2020-05-10 17:58:37
14.160.24.32	attack	2020-05-06T14:51:35.670217linuxbox-skyline sshd[222044]: Invalid user iz from 14.160.24.32 port 35698 ...	2020-05-07 05:16:23
14.160.24.32	attackspam	Apr 18 23:24:38 h2829583 sshd[16992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.24.32	2020-04-19 07:06:38
14.160.241.158	attack	2020-03-2307:34:451jGGfc-0004xO-8Q\<=info@whatsup2013.chH=\(localhost\)[14.186.43.242]:49712P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3595id=313482D1DA0E20934F4A03BB7FA3DD33@whatsup2013.chT="iamChristina"foralex25272@gmail.comstevedd618139@gmail.com2020-03-2307:35:251jGGgH-00051w-0h\<=info@whatsup2013.chH=\(localhost\)[185.185.69.245]:48438P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3753id=1411A7F4FF2B05B66A6F269E5A7AC22C@whatsup2013.chT="iamChristina"foralexsalacu@gmail.comkennethlovejoy75@gmail.com2020-03-2307:35:031jGGfq-0004u4-HB\<=info@whatsup2013.chH=\(localhost\)[113.161.48.167]:38477P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3710id=494CFAA9A27658EB37327BC3070581DB@whatsup2013.chT="iamChristina"forbustosjulia736@gmail.comgalikteri@yahoo.com2020-03-2307:36:101jGGgy-000562-Lv\<=info@whatsup2013.chH=\(localhost\)[14.160.241.158]:52166P=esmtpsaX=TLS1.2:ECDHE-	2020-03-23 17:30:26

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.160.24.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22775
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.160.24.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060600 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 06 17:29:41 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

42.24.160.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
42.24.160.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
220.165.15.228	attack	Invalid user uriel from 220.165.15.228 port 47586	2020-05-16 12:44:53
75.109.235.58	attackspam	[ 🇳🇱 ] REQUEST: /cgi-bin/mainfunction.cgi	2020-05-16 12:14:28
116.228.160.22	attack	2020-05-15T21:59:27.022705ionos.janbro.de sshd[56629]: Invalid user canada from 116.228.160.22 port 50075 2020-05-15T21:59:29.103604ionos.janbro.de sshd[56629]: Failed password for invalid user canada from 116.228.160.22 port 50075 ssh2 2020-05-15T22:05:33.809990ionos.janbro.de sshd[56672]: Invalid user phpmy from 116.228.160.22 port 37754 2020-05-15T22:05:34.057997ionos.janbro.de sshd[56672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.228.160.22 2020-05-15T22:05:33.809990ionos.janbro.de sshd[56672]: Invalid user phpmy from 116.228.160.22 port 37754 2020-05-15T22:05:36.262156ionos.janbro.de sshd[56672]: Failed password for invalid user phpmy from 116.228.160.22 port 37754 ssh2 2020-05-15T22:08:06.293238ionos.janbro.de sshd[56700]: Invalid user musikbot from 116.228.160.22 port 59826 2020-05-15T22:08:06.479999ionos.janbro.de sshd[56700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.228.160.22 ...	2020-05-16 12:11:12
66.68.187.145	attackbots	DATE:2020-05-16 04:25:21, IP:66.68.187.145, PORT:ssh SSH brute force auth (docker-dc)	2020-05-16 12:27:19
49.145.233.9	attackbots	Wordpress login attempts	2020-05-16 12:10:04
129.150.177.146	attackbotsspam	frenzy	2020-05-16 12:07:12
183.136.225.44	attack	port scan and connect, tcp 23 (telnet)	2020-05-16 12:24:25
106.13.178.233	attackspambots	05/15/2020-22:14:40.248177 106.13.178.233 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-16 12:36:11
115.77.43.135	attack	20/5/4@03:37:21: FAIL: Alarm-Network address from=115.77.43.135 ...	2020-05-16 12:21:03
106.13.174.144	attack	...	2020-05-16 12:26:51
106.12.115.110	attackbots	Scanned 3 times in the last 24 hours on port 22	2020-05-16 12:43:35
219.153.31.186	attack	May 16 04:31:54 server sshd[3356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.153.31.186 May 16 04:31:57 server sshd[3356]: Failed password for invalid user falcon from 219.153.31.186 port 56237 ssh2 May 16 04:36:19 server sshd[3730]: Failed password for root from 219.153.31.186 port 56912 ssh2 ...	2020-05-16 12:21:52
45.124.86.130	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-05-16 12:28:57
114.32.200.162	attackbots	TCP (SYN) 114.32.200.162:46793 -> port 81, len 44	2020-05-16 12:08:08
106.12.55.118	attackspam	Invalid user metin from 106.12.55.118 port 41746	2020-05-16 12:44:26

最近上报的IP列表

117.7.230.5	224.191.70.103	106.0.5.87	218.64.216.60
103.216.81.25	196.188.104.50	119.29.129.76	188.198.100.189
94.100.221.158	45.252.248.22	200.94.151.78	187.12.167.85
190.109.168.99	37.43.221.89	73.233.175.47	36.90.19.35
165.43.216.157	2001:41d0:203:545c::	51.91.19.92	202.120.39.132