14.169.134.100

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Brute force attempt	2020-04-07 00:38:35

相同子网IP讨论:

IP	类型	评论内容	时间
14.169.134.140	attack	2020-07-0401:15:021jrUtZ-0000ye-F2\<=info@whatsup2013.chH=$localhost$[14.169.134.140]:46493P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2887id=256807545f74a1ad8acf792ade19939faaa2f79f@whatsup2013.chT="Hookupclubhouseinvite"foremonred58@gmail.comangelglenn123@gmail.comgarypain9@gmail.com2020-07-0401:10:571jrUpZ-0000dO-6Z\<=info@whatsup2013.chH=$localhost$[113.172.145.74]:39305P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2944id=2ea9a3848fa47182a15fa9faf1251cb0937fdb7a7c@whatsup2013.chT="Sexclubhouseinvitation"foroebayanez725@gmail.commy.2email33@gmail.commadijr642@gmail.com2020-07-0401:15:121jrUtj-0000zb-RX\<=info@whatsup2013.chH=$localhost$[113.172.127.82]:51361P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2877id=0a7cca9992b9939b0702b418ff8ba1bbd3096f@whatsup2013.chT="Here'syourownadultclubhouseinvite"forcameroningles4@gmail.comjosephgmail@icloud.comvalariekirkla	2020-07-04 10:04:58
14.169.134.24	attack	Invalid user admin from 14.169.134.24 port 47224	2020-06-06 01:56:52
14.169.134.193	attack	2020-05-0805:52:361jWu3v-0001e0-1L\<=info@whatsup2013.chH=$localhost$[14.169.134.193]:51863P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3129id=8e0005343f14c13211ef194a4195ac80a349f2ab5c@whatsup2013.chT="Angerlheresearchingforwings."forsturmheydrich42@gmail.comsmoothfingerz.lewis@gmail.com2020-05-0805:55:121jWu6S-0001oi-6N\<=info@whatsup2013.chH=045-238-121-229.provecom.com.br$localhost$[45.238.121.229]:33057P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3152id=a2ad1b484368424ad6d365c92edaf0ec627fea@whatsup2013.chT="Seekingmybetterhalf"forjlinthorne@mail.comcarldbobb@icloud.com2020-05-0805:55:021jWu6H-0001nh-D6\<=info@whatsup2013.chH=$localhost$[14.231.159.186]:32920P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3215id=82299fccc7ecc6ce5257e14daa5e7468248a43@whatsup2013.chT="I'mreallybored"forkingofsecrets15@gmail.comnk210413@gmail.com2020-05-0805:52:271jWu3m-0001dN-	2020-05-08 15:05:07
14.169.134.48	attackspambots	SpamReport	2019-12-03 04:24:38
14.169.134.69	attack	Invalid user admin from 14.169.134.69 port 34604	2019-10-20 02:14:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.134.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62901
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.169.134.100.			IN	A

;; AUTHORITY SECTION:
.			149	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040600 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 07 00:38:28 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

100.134.169.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
100.134.169.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
132.145.82.178	attackbotsspam	SSH attack	2020-02-12 19:54:58
150.95.54.138	attackbots	WordPress login Brute force / Web App Attack on client site.	2020-02-12 20:07:14
118.24.153.230	attackspam	$f2bV_matches_ltvn	2020-02-12 19:37:13
27.79.205.97	attackbotsspam	2020-02-1205:48:521j1jxD-0005IY-TF\<=verena@rs-solution.chH=$localhost$[37.114.149.159]:47094P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3081id=252096C5CE1A34875B5E17AF5BD963D6@rs-solution.chT="\;\)Iwouldbepleasedtoreceiveyourmail\	2020-02-12 20:03:25
190.47.129.213	attackbotsspam	Feb 12 08:18:33 firewall sshd[7481]: Failed password for invalid user samulesen from 190.47.129.213 port 55596 ssh2 Feb 12 08:22:16 firewall sshd[7619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.47.129.213 user=root Feb 12 08:22:18 firewall sshd[7619]: Failed password for root from 190.47.129.213 port 54982 ssh2 ...	2020-02-12 20:06:15
74.208.42.188	attackbots	Scanning and Vuln Attempts	2020-02-12 19:58:19
49.88.112.70	attackspam	Trying ports that it shouldn't be.	2020-02-12 19:42:53
82.251.138.44	attackspam	Feb 12 09:03:16 legacy sshd[14866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.251.138.44 Feb 12 09:03:18 legacy sshd[14866]: Failed password for invalid user jboss from 82.251.138.44 port 41238 ssh2 Feb 12 09:06:17 legacy sshd[15081]: Failed password for root from 82.251.138.44 port 41148 ssh2 ...	2020-02-12 19:58:02
84.115.27.92	attackbots	Feb 12 06:21:25 mail sshd\[45483\]: Invalid user ezdvr from 84.115.27.92 Feb 12 06:21:25 mail sshd\[45483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.115.27.92 ...	2020-02-12 19:59:49
42.177.143.203	attackbots	firewall-block, port(s): 23/tcp	2020-02-12 19:52:40
185.53.88.26	attackspam	[2020-02-12 06:22:36] NOTICE[1148][C-0000857f] chan_sip.c: Call from '' (185.53.88.26:54672) to extension '9011442037694876' rejected because extension not found in context 'public'. [2020-02-12 06:22:36] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-02-12T06:22:36.312-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442037694876",SessionID="0x7fd82c2348d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.26/54672",ACLName="no_extension_match" [2020-02-12 06:23:14] NOTICE[1148][C-00008580] chan_sip.c: Call from '' (185.53.88.26:63895) to extension '8011442037694876' rejected because extension not found in context 'public'. ...	2020-02-12 19:27:52
89.163.132.37	attack	Invalid user uis from 89.163.132.37 port 40924	2020-02-12 20:10:12
49.232.160.120	attackbots	"INDICATOR-SCAN PHP backdoor scan attempt"	2020-02-12 19:51:42
107.6.21.100	attackspam	Feb 12 07:07:20 debian-2gb-nbg1-2 kernel: \[3746870.974570\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=107.6.21.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=10629 PROTO=TCP SPT=49199 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-12 19:28:55
185.156.73.52	attack	ET DROP Dshield Block Listed Source group 1 - port: 24539 proto: TCP cat: Misc Attack	2020-02-12 20:08:58

最近上报的IP列表

185.48.39.23	198.102.200.241	248.170.158.69	188.168.9.252
127.172.143.101	255.250.204.103	146.82.39.153	156.67.174.146
48.101.20.170	36.227.136.62	59.63.163.45	37.130.56.76
183.89.94.103	119.166.98.20	177.105.94.71	113.8.204.200
14.248.212.195	190.217.171.179	122.114.120.213	93.170.118.183