14.166.14.234 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 06:56:04,082 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.166.14.234)	2019-07-05 20:23:32

相同子网IP讨论:

IP	类型	评论内容	时间
14.166.144.74	attack	20/8/24@23:59:20: FAIL: Alarm-Network address from=14.166.144.74 20/8/24@23:59:21: FAIL: Alarm-Network address from=14.166.144.74 ...	2020-08-25 12:40:55
14.166.14.149	attack	07/25/2020-23:54:21.224421 14.166.14.149 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-07-26 16:44:04
14.166.144.94	attack	port scan and connect, tcp 22 (ssh)	2020-05-20 22:41:16
14.166.142.220	attackbotsspam	Automatic report - SSH Brute-Force Attack	2020-04-22 19:09:08
14.166.145.41	attackbotsspam	Unauthorized connection attempt from IP address 14.166.145.41 on Port 445(SMB)	2020-02-18 05:59:11
14.166.14.127	attackspam	1576940012 - 12/21/2019 15:53:32 Host: 14.166.14.127/14.166.14.127 Port: 445 TCP Blocked	2019-12-22 01:55:45
14.166.149.47	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 16-10-2019 04:30:23.	2019-10-16 13:28:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.166.14.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40981
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.166.14.234.			IN	A

;; AUTHORITY SECTION:
.			2571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070500 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 05 20:23:20 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

234.14.166.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
234.14.166.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
200.73.14.196	attackbotsspam	Scanning and Vuln Attempts	2019-07-05 22:40:50
217.112.128.189	attackbots	Postfix DNSBL listed. Trying to send SPAM.	2019-07-05 22:39:39
198.108.67.89	attack	Portscan or hack attempt detected by psad/fwsnort	2019-07-05 22:55:05
51.38.48.127	attackspam	Jul 5 10:17:50 mail sshd\[20504\]: Failed password for invalid user admin from 51.38.48.127 port 35542 ssh2 Jul 5 10:34:08 mail sshd\[20707\]: Invalid user hm from 51.38.48.127 port 45784 Jul 5 10:34:08 mail sshd\[20707\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.48.127 ...	2019-07-05 23:07:26
202.83.58.138	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2019-07-05 23:03:18
221.229.162.169	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-05 22:32:41
94.23.144.102	attack	WordPress wp-login brute force :: 94.23.144.102 0.044 BYPASS [05/Jul/2019:20:54:15 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-05 22:35:34
77.247.110.123	attackspambots	2019-07-05T09:42:52.049843stt-1.[munged] kernel: [6365794.848355] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=77.247.110.123 DST=[mungedIP1] LEN=442 TOS=0x08 PREC=0x20 TTL=53 ID=33072 DF PROTO=UDP SPT=5078 DPT=65001 LEN=422 2019-07-05T09:42:52.050306stt-1.[munged] kernel: [6365794.848850] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=77.247.110.123 DST=[mungedIP1] LEN=443 TOS=0x08 PREC=0x20 TTL=53 ID=33082 DF PROTO=UDP SPT=5078 DPT=65011 LEN=423 2019-07-05T09:42:52.050422stt-1.[munged] kernel: [6365794.848981] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=77.247.110.123 DST=[mungedIP1] LEN=444 TOS=0x08 PREC=0x20 TTL=54 ID=33085 DF PROTO=UDP SPT=5078 DPT=65014 LEN=424 2019-07-05T09:42:52.050464stt-1.[munged] kernel: [6365794.849027] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=77.247.110.123 DST=[mungedIP1] LEN=441 TOS=0x08 PREC=0x20 TTL=53 ID=330	2019-07-05 22:09:31
112.217.225.59	attackspambots	2019-07-05T10:00:41.441683abusebot-8.cloudsearch.cf sshd\[9218\]: Invalid user mc123 from 112.217.225.59 port 43468	2019-07-05 22:18:52
140.143.134.86	attackspam	Jul 5 14:12:10 tux-35-217 sshd\[5686\]: Invalid user kuai from 140.143.134.86 port 47777 Jul 5 14:12:10 tux-35-217 sshd\[5686\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.134.86 Jul 5 14:12:12 tux-35-217 sshd\[5686\]: Failed password for invalid user kuai from 140.143.134.86 port 47777 ssh2 Jul 5 14:15:08 tux-35-217 sshd\[5708\]: Invalid user user1 from 140.143.134.86 port 60410 Jul 5 14:15:08 tux-35-217 sshd\[5708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.134.86 ...	2019-07-05 22:22:43
218.92.0.132	attackspambots	Jul 5 14:43:19 meumeu sshd[11421]: Failed password for root from 218.92.0.132 port 41719 ssh2 Jul 5 14:43:32 meumeu sshd[11421]: Failed password for root from 218.92.0.132 port 41719 ssh2 Jul 5 14:43:35 meumeu sshd[11421]: Failed password for root from 218.92.0.132 port 41719 ssh2 Jul 5 14:43:36 meumeu sshd[11421]: error: maximum authentication attempts exceeded for root from 218.92.0.132 port 41719 ssh2 [preauth] ...	2019-07-05 22:59:38
218.92.0.172	attackspam	2019-07-05T13:23:52.348792abusebot-3.cloudsearch.cf sshd\[8594\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root	2019-07-05 22:53:59
142.93.39.181	attack	$f2bV_matches	2019-07-05 23:09:43
194.228.3.191	attackspambots	Jul 5 04:42:59 vps200512 sshd\[27332\]: Invalid user che from 194.228.3.191 Jul 5 04:42:59 vps200512 sshd\[27332\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.228.3.191 Jul 5 04:43:01 vps200512 sshd\[27332\]: Failed password for invalid user che from 194.228.3.191 port 60840 ssh2 Jul 5 04:45:03 vps200512 sshd\[27386\]: Invalid user files from 194.228.3.191 Jul 5 04:45:03 vps200512 sshd\[27386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.228.3.191	2019-07-05 23:09:14
222.186.42.149	attackbots	Attempting SSH intrusion	2019-07-05 23:11:24

最近上报的IP列表

7.249.229.9	142.11.196.104	113.90.94.196	218.61.16.186
45.67.230.128	3.90.103.34	180.242.49.0	104.140.188.42
40.113.104.81	119.132.27.47	45.63.66.83	45.179.164.44
79.127.108.121	144.123.17.226	147.195.209.71	125.162.215.225
212.34.236.4	182.61.168.122	45.251.58.69	79.150.134.217