14.169.14.248 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 81, PTR: static.vnpt.vn.	2020-05-11 04:23:47

相同子网IP讨论:

IP	类型	评论内容	时间
14.169.141.209	attack	xmlrpc attack	2020-07-25 02:55:55
14.169.144.50	attackbotsspam	(eximsyntax) Exim syntax errors from 14.169.144.50 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-18 05:11:07 SMTP call from [14.169.144.50] dropped: too many syntax or protocol errors (last command was "?\034?\032?\027?\031?\034?\033?\030?\032?\026?\016?\r?\v?\f? ?")	2020-06-18 08:49:09
14.169.144.182	attackbotsspam	Invalid user admin from 14.169.144.182 port 44767	2020-04-21 02:37:00
14.169.148.196	attack	Invalid user admin from 14.169.148.196 port 51159	2020-03-22 02:53:55
14.169.146.24	attackbotsspam	SpamScore above: 10.0	2020-03-17 13:24:44
14.169.140.253	attackbotsspam	2020-03-1304:46:391jCbHS-0002kW-27\<=info@whatsup2013.chH=$localhost$[171.4.0.237]:36179P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2313id=DFDA6C3F34E0CE7DA1A4ED55A1892042@whatsup2013.chT="fromDarya"forroxas023@gmail.combrockdurflinger@yahoo.com2020-03-1304:46:501jCbHd-0002lI-Mr\<=info@whatsup2013.chH=$localhost$[123.24.205.125]:36066P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2303id=D0D563303BEFC172AEABE25AAE9DEBDF@whatsup2013.chT="fromDarya"fordcitrano00@gmail.comroylind1967@gmail.com2020-03-1304:46:231jCbHC-0002jO-4p\<=info@whatsup2013.chH=$localhost$[14.169.140.253]:57374P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2341id=232690C3C81C32815D5811A95DAF0E43@whatsup2013.chT="fromDarya"forposliguarivaldo@gmail.coma.a.s.makita@gmail.com2020-03-1304:46:001jCbGq-0002gJ-1p\<=info@whatsup2013.chH=$localhost$[183.89.238.187]:48338P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-	2020-03-13 19:56:49
14.169.147.0	attackspambots	$f2bV_matches	2020-03-12 20:26:05
14.169.142.43	attackspam	Lines containing failures of 14.169.142.43 Mar 11 11:33:32 shared06 sshd[28296]: Invalid user admin from 14.169.142.43 port 47490 Mar 11 11:33:32 shared06 sshd[28296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.169.142.43 Mar 11 11:33:34 shared06 sshd[28296]: Failed password for invalid user admin from 14.169.142.43 port 47490 ssh2 Mar 11 11:33:34 shared06 sshd[28296]: Connection closed by invalid user admin 14.169.142.43 port 47490 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.169.142.43	2020-03-12 00:34:03
14.169.144.193	attackbots	Unauthorized connection attempt from IP address 14.169.144.193 on Port 445(SMB)	2020-01-16 04:44:57
14.169.144.67	attack	Unauthorized connection attempt from IP address 14.169.144.67 on Port 445(SMB)	2019-10-10 02:09:14
14.169.144.80	attackspam	Autoban 14.169.144.80 AUTH/CONNECT	2019-09-24 05:02:08
14.169.142.118	attackspambots	Fail2Ban Ban Triggered	2019-09-06 21:53:02
14.169.146.195	attackbots	Aug 6 03:36:04 master sshd[13138]: Failed password for invalid user admin from 14.169.146.195 port 55260 ssh2	2019-08-06 16:22:20
14.169.148.33	attackspambots	Invalid user admin from 14.169.148.33 port 43034	2019-07-28 03:31:36
14.169.141.135	attackbotsspam	Jun 30 15:06:21 vps34202 sshd[8665]: Address 14.169.141.135 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 30 15:06:21 vps34202 sshd[8665]: Invalid user admin from 14.169.141.135 Jun 30 15:06:21 vps34202 sshd[8665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.169.141.135 Jun 30 15:06:23 vps34202 sshd[8665]: Failed password for invalid user admin from 14.169.141.135 port 36330 ssh2 Jun 30 15:06:23 vps34202 sshd[8665]: Connection closed by 14.169.141.135 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.169.141.135	2019-07-01 00:59:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.14.248
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14644
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.169.14.248.			IN	A

;; AUTHORITY SECTION:
.			420	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051001 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 11 04:23:42 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

248.14.169.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
248.14.169.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
218.92.0.134	attackspam	Dec 5 06:24:01 localhost sshd[37358]: Failed none for root from 218.92.0.134 port 59887 ssh2 Dec 5 06:24:03 localhost sshd[37358]: Failed password for root from 218.92.0.134 port 59887 ssh2 Dec 5 06:24:06 localhost sshd[37358]: Failed password for root from 218.92.0.134 port 59887 ssh2	2019-12-05 13:28:44
51.254.32.102	attack	Dec 5 05:13:44 zeus sshd[23302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.32.102 Dec 5 05:13:47 zeus sshd[23302]: Failed password for invalid user vensha from 51.254.32.102 port 48024 ssh2 Dec 5 05:18:58 zeus sshd[23431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.32.102 Dec 5 05:19:00 zeus sshd[23431]: Failed password for invalid user pi from 51.254.32.102 port 58774 ssh2	2019-12-05 13:27:51
82.196.15.195	attackbotsspam	Dec 5 07:47:40 sauna sshd[87922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.196.15.195 Dec 5 07:47:41 sauna sshd[87922]: Failed password for invalid user mangelsdorf from 82.196.15.195 port 48000 ssh2 ...	2019-12-05 13:52:55
144.202.34.43	attackbotsspam	Dec 5 05:20:28 venus sshd\[27467\]: Invalid user test from 144.202.34.43 port 45503 Dec 5 05:20:29 venus sshd\[27467\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.202.34.43 Dec 5 05:20:31 venus sshd\[27467\]: Failed password for invalid user test from 144.202.34.43 port 45503 ssh2 ...	2019-12-05 13:37:15
144.217.243.216	attackbotsspam	Dec 5 06:29:00 ns381471 sshd[16341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.243.216 Dec 5 06:29:03 ns381471 sshd[16341]: Failed password for invalid user hamsa from 144.217.243.216 port 37370 ssh2	2019-12-05 13:42:48
164.132.54.215	attackbotsspam	Dec 5 07:47:34 server sshd\[22584\]: Invalid user chacon from 164.132.54.215 Dec 5 07:47:34 server sshd\[22584\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.ip-164-132-54.eu Dec 5 07:47:36 server sshd\[22584\]: Failed password for invalid user chacon from 164.132.54.215 port 38700 ssh2 Dec 5 07:56:33 server sshd\[25070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.ip-164-132-54.eu user=root Dec 5 07:56:34 server sshd\[25070\]: Failed password for root from 164.132.54.215 port 42268 ssh2 ...	2019-12-05 13:58:48
178.128.247.181	attackspam	Dec 4 19:42:00 hpm sshd\[16342\]: Invalid user yoyo from 178.128.247.181 Dec 4 19:42:00 hpm sshd\[16342\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.247.181 Dec 4 19:42:02 hpm sshd\[16342\]: Failed password for invalid user yoyo from 178.128.247.181 port 35292 ssh2 Dec 4 19:47:39 hpm sshd\[16804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.247.181 user=root Dec 4 19:47:41 hpm sshd\[16804\]: Failed password for root from 178.128.247.181 port 46866 ssh2	2019-12-05 13:54:49
104.236.127.247	attack	104.236.127.247 - - \[05/Dec/2019:05:57:02 +0100\] "POST /wp-login.php HTTP/1.0" 200 3079 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 104.236.127.247 - - \[05/Dec/2019:05:57:03 +0100\] "POST /wp-login.php HTTP/1.0" 200 3037 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 104.236.127.247 - - \[05/Dec/2019:05:57:05 +0100\] "POST /wp-login.php HTTP/1.0" 200 3047 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-12-05 13:31:14
182.106.217.138	attack	Dec 5 00:41:33 TORMINT sshd\[20329\]: Invalid user test from 182.106.217.138 Dec 5 00:41:33 TORMINT sshd\[20329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.106.217.138 Dec 5 00:41:36 TORMINT sshd\[20329\]: Failed password for invalid user test from 182.106.217.138 port 43688 ssh2 ...	2019-12-05 13:53:43
205.211.166.7	attackspam	Dec 5 05:51:18 sbg01 sshd[10067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.211.166.7 Dec 5 05:51:20 sbg01 sshd[10067]: Failed password for invalid user mysql from 205.211.166.7 port 53450 ssh2 Dec 5 05:56:36 sbg01 sshd[10116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.211.166.7	2019-12-05 13:56:04
175.197.233.197	attackspambots	Dec 5 06:22:22 nextcloud sshd\[4085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.233.197 user=root Dec 5 06:22:25 nextcloud sshd\[4085\]: Failed password for root from 175.197.233.197 port 51766 ssh2 Dec 5 06:32:49 nextcloud sshd\[15487\]: Invalid user lisa from 175.197.233.197 Dec 5 06:32:49 nextcloud sshd\[15487\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.233.197 ...	2019-12-05 13:34:16
59.148.173.231	attackbotsspam	2019-12-05T05:28:06.246312shield sshd\[19180\]: Invalid user cav from 59.148.173.231 port 35360 2019-12-05T05:28:06.250537shield sshd\[19180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059148173231.ctinets.com 2019-12-05T05:28:08.631294shield sshd\[19180\]: Failed password for invalid user cav from 59.148.173.231 port 35360 ssh2 2019-12-05T05:34:01.795505shield sshd\[20594\]: Invalid user webadmin from 59.148.173.231 port 46850 2019-12-05T05:34:01.799766shield sshd\[20594\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059148173231.ctinets.com	2019-12-05 13:40:19
220.194.237.43	attackbots	firewall-block, port(s): 6380/tcp, 6381/tcp	2019-12-05 13:54:28
160.153.234.236	attack	$f2bV_matches	2019-12-05 13:29:26
218.93.27.230	attackbotsspam	Dec 5 06:37:56 legacy sshd[30689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.93.27.230 Dec 5 06:37:58 legacy sshd[30689]: Failed password for invalid user rosch from 218.93.27.230 port 52129 ssh2 Dec 5 06:46:29 legacy sshd[31567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.93.27.230 ...	2019-12-05 13:57:04

最近上报的IP列表

93.92.113.240	183.89.214.206	77.216.176.136	220.143.157.156
106.75.30.228	14.248.85.69	103.146.161.137	118.173.113.143
188.166.36.83	46.35.214.127	71.121.144.25	79.25.136.179
197.247.164.82	51.91.139.192	47.54.35.136	39.45.159.208
172.86.216.140	135.12.222.10	152.65.191.34	81.34.181.226