14.169.109.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	2020-03-0605:56:331jA52G-000421-Rh\<=verena@rs-solution.chH=\(localhost\)[206.214.7.173]:49694P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2282id=CDC87E2D26F2DC6FB3B6FF47B34C6C52@rs-solution.chT="Justchosetogettoknowyou"forjaidinmair95@gmail.comkerdinc1986@outlook.com2020-03-0605:56:001jA51j-0003zg-Bq\<=verena@rs-solution.chH=static-170-246-152-182.ideay.net.ni\(localhost\)[170.246.152.182]:55487P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2304id=5257E1B2B96D43F02C2960D82C6BF4A3@rs-solution.chT="Youhappentobelookingforlove\?"forkevinbuchholtz22@gmail.comsex20juicy@gmail.com2020-03-0605:57:261jA537-00047L-Ms\<=verena@rs-solution.chH=\(localhost\)[14.169.109.42]:33100P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2275id=383D8BD8D307299A46430AB24608E45B@rs-solution.chT="Onlyneedjustabitofyourattention"forjrealmusic309@gmail.comphillipacodd66@gmail.com2020-03-0605:56:	2020-03-06 14:42:14

类型

评论内容

时间

attackbots

2020-03-0605:56:331jA52G-000421-Rh\<=verena@rs-solution.chH=\(localhost\)[206.214.7.173]:49694P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2282id=CDC87E2D26F2DC6FB3B6FF47B34C6C52@rs-solution.chT="Justchosetogettoknowyou"forjaidinmair95@gmail.comkerdinc1986@outlook.com2020-03-0605:56:001jA51j-0003zg-Bq\<=verena@rs-solution.chH=static-170-246-152-182.ideay.net.ni\(localhost\)[170.246.152.182]:55487P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2304id=5257E1B2B96D43F02C2960D82C6BF4A3@rs-solution.chT="Youhappentobelookingforlove\?"forkevinbuchholtz22@gmail.comsex20juicy@gmail.com2020-03-0605:57:261jA537-00047L-Ms\<=verena@rs-solution.chH=\(localhost\)[14.169.109.42]:33100P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2275id=383D8BD8D307299A46430AB24608E45B@rs-solution.chT="Onlyneedjustabitofyourattention"forjrealmusic309@gmail.comphillipacodd66@gmail.com2020-03-0605:56:

2020-03-06 14:42:14

相同子网IP讨论:

IP	类型	评论内容	时间
14.169.109.188	attackspambots	1595505723 - 07/23/2020 14:02:03 Host: 14.169.109.188/14.169.109.188 Port: 445 TCP Blocked	2020-07-23 22:25:35
14.169.109.18	attackspam	Brute force attempt	2019-12-22 03:36:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.109.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14414
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.169.109.42.			IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030600 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 06 14:42:09 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

42.109.169.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.109.169.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.163.56.82	attackspambots	TCP (SYN) 201.163.56.82:393 -> port 22, len 48	2020-06-11 14:45:23
106.13.101.75	attackspambots	ssh brute force	2020-06-11 14:49:32
71.6.232.6	attackspam	06/11/2020-02:35:33.863122 71.6.232.6 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2020-06-11 14:38:45
212.70.149.2	attack	Jun 11 08:38:41 srv01 postfix/smtpd\[30236\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 08:38:53 srv01 postfix/smtpd\[30236\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 08:38:59 srv01 postfix/smtpd\[31634\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 08:39:16 srv01 postfix/smtpd\[30236\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 08:39:28 srv01 postfix/smtpd\[30236\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-11 14:40:27
113.183.65.183	attack	20/6/10@23:56:27: FAIL: Alarm-Network address from=113.183.65.183 20/6/10@23:56:27: FAIL: Alarm-Network address from=113.183.65.183 ...	2020-06-11 14:19:29
49.234.98.155	attackbots	Jun 10 19:36:09 tdfoods sshd\[26109\]: Invalid user osboxes from 49.234.98.155 Jun 10 19:36:09 tdfoods sshd\[26109\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.98.155 Jun 10 19:36:12 tdfoods sshd\[26109\]: Failed password for invalid user osboxes from 49.234.98.155 port 47772 ssh2 Jun 10 19:38:21 tdfoods sshd\[26293\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.98.155 user=root Jun 10 19:38:24 tdfoods sshd\[26293\]: Failed password for root from 49.234.98.155 port 44496 ssh2	2020-06-11 14:22:14
177.134.103.241	attackspam	$f2bV_matches	2020-06-11 14:20:52
91.134.242.199	attack	Jun 11 06:29:40 ns381471 sshd[4648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.242.199 Jun 11 06:29:42 ns381471 sshd[4648]: Failed password for invalid user ghost from 91.134.242.199 port 56842 ssh2	2020-06-11 14:34:09
134.122.120.74	attack	134.122.120.74 - - \[11/Jun/2020:08:08:57 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 134.122.120.74 - - \[11/Jun/2020:08:09:09 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 134.122.120.74 - - \[11/Jun/2020:08:09:15 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-06-11 14:23:45
134.209.152.201	attackbots	Jun 11 01:07:14 plusreed sshd[27997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.201 user=root Jun 11 01:07:16 plusreed sshd[27997]: Failed password for root from 134.209.152.201 port 38480 ssh2 Jun 11 01:10:52 plusreed sshd[28934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.201 user=root Jun 11 01:10:55 plusreed sshd[28934]: Failed password for root from 134.209.152.201 port 44996 ssh2 Jun 11 01:14:27 plusreed sshd[29743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.201 user=root Jun 11 01:14:29 plusreed sshd[29743]: Failed password for root from 134.209.152.201 port 51408 ssh2 ...	2020-06-11 14:37:46
178.136.235.119	attackspam	no	2020-06-11 14:20:29
46.38.145.250	attack	2020-06-11 09:18:23 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=rproxy@com.ua) 2020-06-11 09:19:56 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=ruben@com.ua) ...	2020-06-11 14:27:05
165.22.69.147	attackspambots	SSH login attempts.	2020-06-11 14:59:07
87.63.87.34	attackspambots	Hit honeypot r.	2020-06-11 14:30:10
133.130.119.178	attack	SSH Brute-Force. Ports scanning.	2020-06-11 14:49:10

最近上报的IP列表

235.51.65.171	22.42.60.184	51.230.156.14	223.223.50.162
32.33.67.60	73.53.57.250	213.13.150.184	137.250.185.236
216.147.57.91	164.136.60.1	181.186.192.3	11.228.211.173
36.238.25.231	212.118.40.210	188.166.5.56	171.240.4.139
106.77.185.244	188.159.46.118	221.87.184.200	185.173.37.9