14.161.20.223 - IPInfo

基本信息:

城市(city): Ho Chi Minh City

省份(region): Ho Chi Minh

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	failed_logins	2020-04-26 05:04:15
attackbotsspam	Dovecot Invalid User Login Attempt.	2020-04-19 07:29:45

相同子网IP讨论:

IP	类型	评论内容	时间
14.161.207.55	attackspambots	Automatic report - Port Scan Attack	2020-02-21 03:07:52
14.161.20.194	attackspambots	2019-07-07 04:51:53 H=\(p-avr1j0ip.zaimvdolg.com\) \[14.161.20.194\]:40860 I=\[193.107.88.166\]:25 sender verify fail for \: Unrouteable address 2019-07-07 04:51:53 H=\(p-avr1j0ip.zaimvdolg.com\) \[14.161.20.194\]:40860 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-07-07 04:51:53 H=\(p-avr1j0ip.zaimvdolg.com\) \[14.161.20.194\]:40860 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-02-04 23:20:58
14.161.20.206	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 15-10-2019 04:50:20.	2019-10-15 14:58:57
14.161.20.105	attackbotsspam	Unauthorized connection attempt from IP address 14.161.20.105 on Port 445(SMB)	2019-10-03 00:49:33
14.161.20.152	attack	Excessive Port-Scanning	2019-08-07 02:22:20
14.161.20.40	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-06 02:55:25,383 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.161.20.40)	2019-07-06 12:55:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.161.20.223
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61056
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.161.20.223.			IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041801 1800 900 604800 86400

;; Query time: 146 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 19 07:29:34 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 223.20.161.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 223.20.161.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
85.95.150.143	attack	DATE:2020-06-15 05:54:13,IP:85.95.150.143,MATCHES:10,PORT:ssh	2020-06-15 14:14:37
178.62.224.96	attackbotsspam	odoo8 ...	2020-06-15 13:55:58
92.63.194.240	attack	Unauthorized connection attempt detected from IP address 92.63.194.240 to port 3393 [T]	2020-06-15 13:38:15
222.186.30.57	attackspam	Jun 15 01:40:08 NPSTNNYC01T sshd[6028]: Failed password for root from 222.186.30.57 port 28169 ssh2 Jun 15 01:40:16 NPSTNNYC01T sshd[6037]: Failed password for root from 222.186.30.57 port 63992 ssh2 Jun 15 01:40:19 NPSTNNYC01T sshd[6037]: Failed password for root from 222.186.30.57 port 63992 ssh2 ...	2020-06-15 13:45:01
106.12.126.114	attackbotsspam	2020-06-15 05:54:32,369 fail2ban.actions: WARNING [ssh] Ban 106.12.126.114	2020-06-15 13:51:22
187.191.96.60	attack	Jun 15 07:58:28 sso sshd[30553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.191.96.60 Jun 15 07:58:30 sso sshd[30553]: Failed password for invalid user admin from 187.191.96.60 port 38454 ssh2 ...	2020-06-15 14:16:21
60.30.98.194	attackspam	Jun 15 04:43:20 django-0 sshd\[25946\]: Invalid user johannes from 60.30.98.194Jun 15 04:43:22 django-0 sshd\[25946\]: Failed password for invalid user johannes from 60.30.98.194 port 62578 ssh2Jun 15 04:46:59 django-0 sshd\[26102\]: Invalid user paco from 60.30.98.194 ...	2020-06-15 13:54:00
144.217.95.97	attackbotsspam	web-1 [ssh] SSH Attack	2020-06-15 13:54:18
60.50.29.149	attack	Jun 14 19:27:39 web1 sshd\[20000\]: Invalid user bruce from 60.50.29.149 Jun 14 19:27:39 web1 sshd\[20000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.50.29.149 Jun 14 19:27:41 web1 sshd\[20000\]: Failed password for invalid user bruce from 60.50.29.149 port 35948 ssh2 Jun 14 19:31:34 web1 sshd\[20427\]: Invalid user wz from 60.50.29.149 Jun 14 19:31:34 web1 sshd\[20427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.50.29.149	2020-06-15 13:40:58
113.190.213.223	attackbotsspam	Unauthorised access (Jun 15) SRC=113.190.213.223 LEN=52 TTL=112 ID=28548 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-15 13:45:26
179.190.96.250	attackspam	Jun 15 00:54:17 ws19vmsma01 sshd[148250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.190.96.250 Jun 15 00:54:20 ws19vmsma01 sshd[148250]: Failed password for invalid user amssys from 179.190.96.250 port 44449 ssh2 ...	2020-06-15 13:44:21
111.230.141.124	attackspam	web-1 [ssh] SSH Attack	2020-06-15 13:57:18
43.255.141.93	attack	DATE:2020-06-15 05:54:22, IP:43.255.141.93, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-06-15 14:04:43
45.141.158.4	attack	UDP 45.141.158.4:55331 -> port 123, len 36	2020-06-15 13:46:29
49.232.165.42	attackspam	Jun 15 08:50:04 gw1 sshd[16963]: Failed password for root from 49.232.165.42 port 58764 ssh2 ...	2020-06-15 14:05:13

最近上报的IP列表

219.130.137.197	181.41.51.78	219.40.37.72	186.13.194.22
86.253.137.2	177.147.208.28	109.138.186.214	5.48.17.195
97.177.75.235	188.149.209.147	114.35.250.107	150.201.63.170
108.250.232.48	32.98.223.104	68.46.196.163	85.203.44.78
120.188.79.128	171.243.77.214	49.161.177.232	45.40.217.228