14.161.20.223 - IPInfo

基本信息:

城市(city): Ho Chi Minh City

省份(region): Ho Chi Minh

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	failed_logins	2020-04-26 05:04:15
attackbotsspam	Dovecot Invalid User Login Attempt.	2020-04-19 07:29:45

相同子网IP讨论:

IP	类型	评论内容	时间
14.161.207.55	attackspambots	Automatic report - Port Scan Attack	2020-02-21 03:07:52
14.161.20.194	attackspambots	2019-07-07 04:51:53 H=$p-avr1j0ip.zaimvdolg.com$ \[14.161.20.194\]:40860 I=\[193.107.88.166\]:25 sender verify fail for \: Unrouteable address 2019-07-07 04:51:53 H=$p-avr1j0ip.zaimvdolg.com$ \[14.161.20.194\]:40860 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-07-07 04:51:53 H=$p-avr1j0ip.zaimvdolg.com$ \[14.161.20.194\]:40860 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-02-04 23:20:58
14.161.20.206	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 15-10-2019 04:50:20.	2019-10-15 14:58:57
14.161.20.105	attackbotsspam	Unauthorized connection attempt from IP address 14.161.20.105 on Port 445(SMB)	2019-10-03 00:49:33
14.161.20.152	attack	Excessive Port-Scanning	2019-08-07 02:22:20
14.161.20.40	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-06 02:55:25,383 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.161.20.40)	2019-07-06 12:55:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.161.20.223
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61056
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.161.20.223.			IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041801 1800 900 604800 86400

;; Query time: 146 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 19 07:29:34 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 223.20.161.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 223.20.161.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
188.226.226.82	attackbots	Sep 22 06:15:25 meumeu sshd[28379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.226.82 Sep 22 06:15:27 meumeu sshd[28379]: Failed password for invalid user Administrator from 188.226.226.82 port 58160 ssh2 Sep 22 06:19:53 meumeu sshd[538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.226.82 ...	2019-09-22 12:36:24
66.7.148.40	attackbotsspam	2019-09-22T03:34:25.621592MailD postfix/smtpd[10666]: warning: unknown[66.7.148.40]: SASL LOGIN authentication failed: authentication failure 2019-09-22T04:07:29.197271MailD postfix/smtpd[12743]: warning: unknown[66.7.148.40]: SASL LOGIN authentication failed: authentication failure 2019-09-22T05:57:57.661450MailD postfix/smtpd[20606]: warning: unknown[66.7.148.40]: SASL LOGIN authentication failed: authentication failure	2019-09-22 12:08:35
222.186.15.204	attack	2019-09-22T04:18:24.055729abusebot-3.cloudsearch.cf sshd\[4400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.204 user=root	2019-09-22 12:20:54
103.229.125.200	attackspam	Sep 22 05:53:07 markkoudstaal sshd[4640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.229.125.200 Sep 22 05:53:09 markkoudstaal sshd[4640]: Failed password for invalid user testuser from 103.229.125.200 port 43269 ssh2 Sep 22 05:57:47 markkoudstaal sshd[5055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.229.125.200	2019-09-22 12:15:40
220.76.163.31	attackspam	Telnetd brute force attack detected by fail2ban	2019-09-22 12:21:20
51.254.37.192	attackspam	Sep 21 18:13:03 web1 sshd\[21029\]: Invalid user 1 from 51.254.37.192 Sep 21 18:13:03 web1 sshd\[21029\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.192 Sep 21 18:13:05 web1 sshd\[21029\]: Failed password for invalid user 1 from 51.254.37.192 port 52552 ssh2 Sep 21 18:17:16 web1 sshd\[21434\]: Invalid user password from 51.254.37.192 Sep 21 18:17:16 web1 sshd\[21434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.192	2019-09-22 12:17:55
118.25.237.124	attack	Sep 21 16:13:58 eddieflores sshd\[16221\]: Invalid user n from 118.25.237.124 Sep 21 16:13:58 eddieflores sshd\[16221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.237.124 Sep 21 16:14:00 eddieflores sshd\[16221\]: Failed password for invalid user n from 118.25.237.124 port 42972 ssh2 Sep 21 16:19:20 eddieflores sshd\[16751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.237.124 user=root Sep 21 16:19:21 eddieflores sshd\[16751\]: Failed password for root from 118.25.237.124 port 54206 ssh2	2019-09-22 10:25:55
68.183.85.75	attackspambots	Sep 22 06:52:48 site1 sshd\[51442\]: Invalid user super from 68.183.85.75Sep 22 06:52:51 site1 sshd\[51442\]: Failed password for invalid user super from 68.183.85.75 port 59594 ssh2Sep 22 06:57:42 site1 sshd\[51597\]: Invalid user cav from 68.183.85.75Sep 22 06:57:45 site1 sshd\[51597\]: Failed password for invalid user cav from 68.183.85.75 port 44734 ssh2Sep 22 07:02:33 site1 sshd\[51772\]: Invalid user raiz from 68.183.85.75Sep 22 07:02:35 site1 sshd\[51772\]: Failed password for invalid user raiz from 68.183.85.75 port 58110 ssh2 ...	2019-09-22 12:05:00
84.170.104.157	attackspam	Sep 22 06:49:37 intra sshd\[64105\]: Invalid user dpisklo from 84.170.104.157Sep 22 06:49:39 intra sshd\[64105\]: Failed password for invalid user dpisklo from 84.170.104.157 port 25463 ssh2Sep 22 06:53:42 intra sshd\[64177\]: Invalid user isar from 84.170.104.157Sep 22 06:53:44 intra sshd\[64177\]: Failed password for invalid user isar from 84.170.104.157 port 17518 ssh2Sep 22 06:57:43 intra sshd\[64451\]: Invalid user ubuntu from 84.170.104.157Sep 22 06:57:45 intra sshd\[64451\]: Failed password for invalid user ubuntu from 84.170.104.157 port 25915 ssh2 ...	2019-09-22 12:16:01
113.161.52.231	attackbots	Chat Spam	2019-09-22 12:32:31
81.147.105.145	attackbots	Automatic report - Port Scan Attack	2019-09-22 12:31:36
104.236.250.88	attackspambots	Sep 22 06:16:21 core sshd[31409]: Invalid user webshop from 104.236.250.88 port 50316 Sep 22 06:16:23 core sshd[31409]: Failed password for invalid user webshop from 104.236.250.88 port 50316 ssh2 ...	2019-09-22 12:20:18
90.188.114.107	attackspam	Sep 22 04:18:32 markkoudstaal sshd[27611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.188.114.107 Sep 22 04:18:34 markkoudstaal sshd[27611]: Failed password for invalid user NetLinx from 90.188.114.107 port 55126 ssh2 Sep 22 04:22:44 markkoudstaal sshd[27985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.188.114.107	2019-09-22 10:27:27
149.56.100.237	attack	Sep 21 17:52:50 tdfoods sshd\[22515\]: Invalid user ju from 149.56.100.237 Sep 21 17:52:50 tdfoods sshd\[22515\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=237.ip-149-56-100.net Sep 21 17:52:52 tdfoods sshd\[22515\]: Failed password for invalid user ju from 149.56.100.237 port 37378 ssh2 Sep 21 17:57:22 tdfoods sshd\[22905\]: Invalid user student from 149.56.100.237 Sep 21 17:57:22 tdfoods sshd\[22905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=237.ip-149-56-100.net	2019-09-22 12:32:04
217.73.83.96	attackspam	$f2bV_matches	2019-09-22 10:29:39

最近上报的IP列表

219.130.137.197	181.41.51.78	219.40.37.72	186.13.194.22
86.253.137.2	177.147.208.28	109.138.186.214	5.48.17.195
97.177.75.235	188.149.209.147	114.35.250.107	150.201.63.170
108.250.232.48	32.98.223.104	68.46.196.163	85.203.44.78
120.188.79.128	171.243.77.214	49.161.177.232	45.40.217.228