14.169.134.100

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Brute force attempt	2020-04-07 00:38:35

相同子网IP讨论:

IP	类型	评论内容	时间
14.169.134.140	attack	2020-07-0401:15:021jrUtZ-0000ye-F2\<=info@whatsup2013.chH=$localhost$[14.169.134.140]:46493P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2887id=256807545f74a1ad8acf792ade19939faaa2f79f@whatsup2013.chT="Hookupclubhouseinvite"foremonred58@gmail.comangelglenn123@gmail.comgarypain9@gmail.com2020-07-0401:10:571jrUpZ-0000dO-6Z\<=info@whatsup2013.chH=$localhost$[113.172.145.74]:39305P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2944id=2ea9a3848fa47182a15fa9faf1251cb0937fdb7a7c@whatsup2013.chT="Sexclubhouseinvitation"foroebayanez725@gmail.commy.2email33@gmail.commadijr642@gmail.com2020-07-0401:15:121jrUtj-0000zb-RX\<=info@whatsup2013.chH=$localhost$[113.172.127.82]:51361P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2877id=0a7cca9992b9939b0702b418ff8ba1bbd3096f@whatsup2013.chT="Here'syourownadultclubhouseinvite"forcameroningles4@gmail.comjosephgmail@icloud.comvalariekirkla	2020-07-04 10:04:58
14.169.134.24	attack	Invalid user admin from 14.169.134.24 port 47224	2020-06-06 01:56:52
14.169.134.193	attack	2020-05-0805:52:361jWu3v-0001e0-1L\<=info@whatsup2013.chH=$localhost$[14.169.134.193]:51863P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3129id=8e0005343f14c13211ef194a4195ac80a349f2ab5c@whatsup2013.chT="Angerlheresearchingforwings."forsturmheydrich42@gmail.comsmoothfingerz.lewis@gmail.com2020-05-0805:55:121jWu6S-0001oi-6N\<=info@whatsup2013.chH=045-238-121-229.provecom.com.br$localhost$[45.238.121.229]:33057P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3152id=a2ad1b484368424ad6d365c92edaf0ec627fea@whatsup2013.chT="Seekingmybetterhalf"forjlinthorne@mail.comcarldbobb@icloud.com2020-05-0805:55:021jWu6H-0001nh-D6\<=info@whatsup2013.chH=$localhost$[14.231.159.186]:32920P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3215id=82299fccc7ecc6ce5257e14daa5e7468248a43@whatsup2013.chT="I'mreallybored"forkingofsecrets15@gmail.comnk210413@gmail.com2020-05-0805:52:271jWu3m-0001dN-	2020-05-08 15:05:07
14.169.134.48	attackspambots	SpamReport	2019-12-03 04:24:38
14.169.134.69	attack	Invalid user admin from 14.169.134.69 port 34604	2019-10-20 02:14:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.134.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62901
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.169.134.100.			IN	A

;; AUTHORITY SECTION:
.			149	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040600 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 07 00:38:28 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

100.134.169.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
100.134.169.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
122.228.19.79	attackspambots	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-11-01 04:01:36
180.169.136.138	attack	2019-10-30 17:40:26,673 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 17:44:19,379 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 18:01:13,635 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 18:17:53,046 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 18:34:41,574 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 17:40:26,673 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 17:44:19,379 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 18:01:13,635 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 18:17:53,046 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 18:34:41,574 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 180.169.136.138 2019-10-30 17:40:26,673 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 180.16	2019-11-01 03:45:39
80.255.130.197	attackspam	Oct 31 14:52:46 DAAP sshd[14944]: Invalid user smmsp from 80.255.130.197 port 44902 Oct 31 14:52:46 DAAP sshd[14944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.255.130.197 Oct 31 14:52:46 DAAP sshd[14944]: Invalid user smmsp from 80.255.130.197 port 44902 Oct 31 14:52:48 DAAP sshd[14944]: Failed password for invalid user smmsp from 80.255.130.197 port 44902 ssh2 Oct 31 14:57:19 DAAP sshd[14969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.255.130.197 user=root Oct 31 14:57:21 DAAP sshd[14969]: Failed password for root from 80.255.130.197 port 35790 ssh2 ...	2019-11-01 04:04:55
14.116.194.20	attackbotsspam	2019-10-31 09:05:08,648 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 09:29:52,447 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 09:45:02,240 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 10:04:03,921 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 10:22:55,481 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 09:05:08,648 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 09:29:52,447 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 09:45:02,240 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 10:04:03,921 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 10:22:55,481 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 09:05:08,648 fail2ban.actions \[1865\]: NOTICE \[ssh\] Ban 14.116.194.20 2019-10-31 0	2019-11-01 03:54:39
45.40.244.197	attack	Oct 31 18:44:10 srv01 sshd[4673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.244.197 user=root Oct 31 18:44:12 srv01 sshd[4673]: Failed password for root from 45.40.244.197 port 40760 ssh2 Oct 31 18:48:40 srv01 sshd[4996]: Invalid user hm from 45.40.244.197 Oct 31 18:48:40 srv01 sshd[4996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.244.197 Oct 31 18:48:40 srv01 sshd[4996]: Invalid user hm from 45.40.244.197 Oct 31 18:48:41 srv01 sshd[4996]: Failed password for invalid user hm from 45.40.244.197 port 47114 ssh2 ...	2019-11-01 04:00:09
179.233.31.10	attackspambots	Oct 31 18:04:18 work-partkepr sshd\[5559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.233.31.10 user=root Oct 31 18:04:20 work-partkepr sshd\[5559\]: Failed password for root from 179.233.31.10 port 20918 ssh2 ...	2019-11-01 04:13:01
133.130.123.238	attack	2019-10-30 13:27:10,099 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 13:48:35,975 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 14:09:58,791 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 14:31:20,555 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 15:06:11,991 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 13:27:10,099 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 13:48:35,975 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 14:09:58,791 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 14:31:20,555 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 15:06:11,991 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.130.123.238 2019-10-30 13:27:10,099 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 133.13	2019-11-01 03:56:19
149.202.115.157	attackspambots	k+ssh-bruteforce	2019-11-01 03:50:05
175.6.5.233	attackspam	$f2bV_matches_ltvn	2019-11-01 04:03:51
200.116.195.122	attackspam	$f2bV_matches	2019-11-01 04:02:29
167.71.141.204	attackspam	PostgreSQL port 5432	2019-11-01 03:47:37
162.209.225.90	attack	[ThuOct3112:57:23.1536112019][:error][pid24150:tid47654458226432][client162.209.225.90:57172][client162.209.225.90]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\$\\|\?=\?f$\?:open\\|write$\?\\\\\\\\$\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress$\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"148.251.104.81"][uri"/5168fb94/admin.php"][unique_id"XbrMI8oEtBiITytShBu9ngAAAAo"][ThuOct3112:57:23.5074682019][:error][pid24410:tid47654456125184][client162.209.225.90:57306][client162.209.225.90]ModSecurity:Accessdeniedwithcode403\(	2019-11-01 04:09:29
139.59.190.69	attackspambots	Oct 31 03:25:27 eddieflores sshd\[3404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.190.69 user=root Oct 31 03:25:29 eddieflores sshd\[3404\]: Failed password for root from 139.59.190.69 port 42039 ssh2 Oct 31 03:29:23 eddieflores sshd\[3698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.190.69 user=root Oct 31 03:29:25 eddieflores sshd\[3698\]: Failed password for root from 139.59.190.69 port 33497 ssh2 Oct 31 03:33:22 eddieflores sshd\[4010\]: Invalid user tanner from 139.59.190.69 Oct 31 03:33:22 eddieflores sshd\[4010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.190.69	2019-11-01 04:09:06
185.216.27.64	attack	Oct 31 03:08:04 * sshd[24409]: Address 185.216.27.64 maps to 64.27.216.185.static.reveeclipse.proxgroup.fr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 31 03:08:04 * sshd[24409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.216.27.64 user=r.r Oct 31 03:08:05 * sshd[24409]: Failed password for r.r from 185.216.27.64 port 42304 ssh2 Oct 31 03:08:05 * sshd[24409]: Received disconnect from 185.216.27.64: 11: Bye Bye [preauth] Oct 31 04:10:45 * sshd[1360]: Address 185.216.27.64 maps to 64.27.216.185.static.reveeclipse.proxgroup.fr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 31 04:10:45 * sshd[1360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.216.27.64 user=r.r Oct 31 04:10:47 * sshd[1360]: Failed password for r.r from 185.216.27.64 port 42764 ssh2 Oct 31 04:10:47 * sshd[1360]: Received disconnect from........ -------------------------------	2019-11-01 03:47:11
138.197.176.130	attackspam	2019-10-30 10:24:32,302 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 10:47:18,950 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 11:04:40,327 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 11:22:46,172 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 11:40:00,574 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 10:24:32,302 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 10:47:18,950 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 11:04:40,327 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 11:22:46,172 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 11:40:00,574 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.197.176.130 2019-10-30 10:24:32,302 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 138.19	2019-11-01 03:55:22

最近上报的IP列表

185.48.39.23	198.102.200.241	248.170.158.69	188.168.9.252
127.172.143.101	255.250.204.103	146.82.39.153	156.67.174.146
48.101.20.170	36.227.136.62	59.63.163.45	37.130.56.76
183.89.94.103	119.166.98.20	177.105.94.71	113.8.204.200
14.248.212.195	190.217.171.179	122.114.120.213	93.170.118.183