14.161.49.22 - IPInfo

基本信息:

城市(city): Ho Chi Minh City

省份(region): Ho Chi Minh

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-05-05 12:26:08
attackspambots	unauthorized connection attempt	2020-02-19 20:49:28
attack	1576334540 - 12/14/2019 15:42:20 Host: 14.161.49.22/14.161.49.22 Port: 445 TCP Blocked	2019-12-15 03:14:39

相同子网IP讨论:

IP	类型	评论内容	时间
14.161.49.29	attackbotsspam	Unauthorized connection attempt from IP address 14.161.49.29 on port 993	2020-08-06 18:53:31
14.161.49.29	attackspambots	Dovecot Invalid User Login Attempt.	2020-05-08 04:21:01
14.161.49.16	attack	445/tcp [2020-03-28]1pkt	2020-03-29 07:47:22
14.161.49.16	attackspambots	Unauthorized connection attempt from IP address 14.161.49.16 on Port 445(SMB)	2020-03-17 14:01:47
14.161.49.111	attackspam	Sun, 21 Jul 2019 07:37:06 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 19:50:00
14.161.49.137	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-02 02:57:46,404 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.161.49.137)	2019-07-02 12:24:44
14.161.49.80	attackbotsspam	Unauthorized connection attempt from IP address 14.161.49.80 on Port 445(SMB)	2019-06-29 21:53:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.161.49.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15552
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.161.49.22.			IN	A

;; AUTHORITY SECTION:
.			450	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121401 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 15 03:14:36 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

22.49.161.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.49.161.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.13.38.59	attackbotsspam	Oct 31 21:04:05 game-panel sshd[3068]: Failed password for root from 106.13.38.59 port 62370 ssh2 Oct 31 21:08:14 game-panel sshd[3226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.38.59 Oct 31 21:08:17 game-panel sshd[3226]: Failed password for invalid user audelaevent from 106.13.38.59 port 43741 ssh2	2019-11-01 05:24:07
134.175.192.246	attack	Oct 31 11:00:36 hanapaa sshd\[27465\]: Invalid user danilete123 from 134.175.192.246 Oct 31 11:00:36 hanapaa sshd\[27465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.192.246 Oct 31 11:00:38 hanapaa sshd\[27465\]: Failed password for invalid user danilete123 from 134.175.192.246 port 52748 ssh2 Oct 31 11:04:53 hanapaa sshd\[27821\]: Invalid user bajyipkf from 134.175.192.246 Oct 31 11:04:53 hanapaa sshd\[27821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.192.246	2019-11-01 05:21:42
106.12.33.50	attackspambots	Oct 31 21:08:39 MK-Soft-VM7 sshd[5515]: Failed password for root from 106.12.33.50 port 46586 ssh2 Oct 31 21:15:28 MK-Soft-VM7 sshd[5604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.50 ...	2019-11-01 04:48:13
94.21.174.58	attack	Oct 31 22:15:10 server sshd\[18033\]: Invalid user pi from 94.21.174.58 port 50290 Oct 31 22:15:10 server sshd\[18033\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.174.58 Oct 31 22:15:10 server sshd\[18068\]: Invalid user pi from 94.21.174.58 port 50294 Oct 31 22:15:10 server sshd\[18068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.174.58 Oct 31 22:15:12 server sshd\[18033\]: Failed password for invalid user pi from 94.21.174.58 port 50290 ssh2	2019-11-01 04:55:26
177.241.245.226	attackbots	Automatic report - XMLRPC Attack	2019-11-01 04:59:11
46.38.144.32	attack	Oct 31 21:49:00 webserver postfix/smtpd\[20056\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 31 21:50:11 webserver postfix/smtpd\[20056\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 31 21:51:20 webserver postfix/smtpd\[20056\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 31 21:52:29 webserver postfix/smtpd\[20056\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 31 21:53:38 webserver postfix/smtpd\[20944\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-01 04:58:16
213.148.213.99	attackbots	Oct 31 21:14:25 cavern sshd[2808]: Failed password for root from 213.148.213.99 port 44198 ssh2	2019-11-01 05:27:00
222.186.180.6	attackspam	Oct 31 22:02:37 MK-Soft-Root2 sshd[2309]: Failed password for root from 222.186.180.6 port 1250 ssh2 Oct 31 22:02:42 MK-Soft-Root2 sshd[2309]: Failed password for root from 222.186.180.6 port 1250 ssh2 ...	2019-11-01 05:07:12
133.130.89.115	attack	2019-10-31T20:47:51.975046abusebot-3.cloudsearch.cf sshd\[6328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v133-130-89-115.a01e.g.tyo1.static.cnode.io user=root	2019-11-01 05:10:22
200.165.167.10	attack	Oct 31 20:14:51 venus sshd\[16354\]: Invalid user pegasus from 200.165.167.10 port 41791 Oct 31 20:14:51 venus sshd\[16354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.165.167.10 Oct 31 20:14:53 venus sshd\[16354\]: Failed password for invalid user pegasus from 200.165.167.10 port 41791 ssh2 ...	2019-11-01 05:11:55
194.247.26.62	attackspambots	slow and persistent scanner	2019-11-01 05:27:21
185.175.93.104	attack	10/31/2019-16:15:07.187189 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-01 05:04:23
92.115.208.29	attackbots	DATE:2019-10-31 21:14:56, IP:92.115.208.29, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-11-01 05:09:17
164.132.145.70	attackbots	Oct 31 23:05:24 server sshd\[23040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu user=root Oct 31 23:05:26 server sshd\[23040\]: Failed password for root from 164.132.145.70 port 40266 ssh2 Oct 31 23:14:33 server sshd\[24775\]: Invalid user byte from 164.132.145.70 Oct 31 23:14:33 server sshd\[24775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip70.ip-164-132-145.eu Oct 31 23:14:35 server sshd\[24775\]: Failed password for invalid user byte from 164.132.145.70 port 49946 ssh2 ...	2019-11-01 05:20:29
187.189.198.18	attack	Unauthorized connection attempt from IP address 187.189.198.18 on Port 445(SMB)	2019-11-01 04:59:36

最近上报的IP列表

80.44.226.247	186.199.210.107	2.201.94.86	90.25.101.27
1.205.149.103	74.237.58.183	91.68.97.112	123.148.144.224
117.207.221.225	108.189.101.77	207.17.232.70	52.213.110.147
54.173.81.250	82.229.80.37	80.5.202.79	178.66.62.212
209.33.39.72	121.90.227.145	32.230.241.192	191.132.226.104