14.169.14.248 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 81, PTR: static.vnpt.vn.	2020-05-11 04:23:47

相同子网IP讨论:

IP	类型	评论内容	时间
14.169.141.209	attack	xmlrpc attack	2020-07-25 02:55:55
14.169.144.50	attackbotsspam	(eximsyntax) Exim syntax errors from 14.169.144.50 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-18 05:11:07 SMTP call from [14.169.144.50] dropped: too many syntax or protocol errors (last command was "?\034?\032?\027?\031?\034?\033?\030?\032?\026?\016?\r?\v?\f? ?")	2020-06-18 08:49:09
14.169.144.182	attackbotsspam	Invalid user admin from 14.169.144.182 port 44767	2020-04-21 02:37:00
14.169.148.196	attack	Invalid user admin from 14.169.148.196 port 51159	2020-03-22 02:53:55
14.169.146.24	attackbotsspam	SpamScore above: 10.0	2020-03-17 13:24:44
14.169.140.253	attackbotsspam	2020-03-1304:46:391jCbHS-0002kW-27\<=info@whatsup2013.chH=$localhost$[171.4.0.237]:36179P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2313id=DFDA6C3F34E0CE7DA1A4ED55A1892042@whatsup2013.chT="fromDarya"forroxas023@gmail.combrockdurflinger@yahoo.com2020-03-1304:46:501jCbHd-0002lI-Mr\<=info@whatsup2013.chH=$localhost$[123.24.205.125]:36066P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2303id=D0D563303BEFC172AEABE25AAE9DEBDF@whatsup2013.chT="fromDarya"fordcitrano00@gmail.comroylind1967@gmail.com2020-03-1304:46:231jCbHC-0002jO-4p\<=info@whatsup2013.chH=$localhost$[14.169.140.253]:57374P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2341id=232690C3C81C32815D5811A95DAF0E43@whatsup2013.chT="fromDarya"forposliguarivaldo@gmail.coma.a.s.makita@gmail.com2020-03-1304:46:001jCbGq-0002gJ-1p\<=info@whatsup2013.chH=$localhost$[183.89.238.187]:48338P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-	2020-03-13 19:56:49
14.169.147.0	attackspambots	$f2bV_matches	2020-03-12 20:26:05
14.169.142.43	attackspam	Lines containing failures of 14.169.142.43 Mar 11 11:33:32 shared06 sshd[28296]: Invalid user admin from 14.169.142.43 port 47490 Mar 11 11:33:32 shared06 sshd[28296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.169.142.43 Mar 11 11:33:34 shared06 sshd[28296]: Failed password for invalid user admin from 14.169.142.43 port 47490 ssh2 Mar 11 11:33:34 shared06 sshd[28296]: Connection closed by invalid user admin 14.169.142.43 port 47490 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.169.142.43	2020-03-12 00:34:03
14.169.144.193	attackbots	Unauthorized connection attempt from IP address 14.169.144.193 on Port 445(SMB)	2020-01-16 04:44:57
14.169.144.67	attack	Unauthorized connection attempt from IP address 14.169.144.67 on Port 445(SMB)	2019-10-10 02:09:14
14.169.144.80	attackspam	Autoban 14.169.144.80 AUTH/CONNECT	2019-09-24 05:02:08
14.169.142.118	attackspambots	Fail2Ban Ban Triggered	2019-09-06 21:53:02
14.169.146.195	attackbots	Aug 6 03:36:04 master sshd[13138]: Failed password for invalid user admin from 14.169.146.195 port 55260 ssh2	2019-08-06 16:22:20
14.169.148.33	attackspambots	Invalid user admin from 14.169.148.33 port 43034	2019-07-28 03:31:36
14.169.141.135	attackbotsspam	Jun 30 15:06:21 vps34202 sshd[8665]: Address 14.169.141.135 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 30 15:06:21 vps34202 sshd[8665]: Invalid user admin from 14.169.141.135 Jun 30 15:06:21 vps34202 sshd[8665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.169.141.135 Jun 30 15:06:23 vps34202 sshd[8665]: Failed password for invalid user admin from 14.169.141.135 port 36330 ssh2 Jun 30 15:06:23 vps34202 sshd[8665]: Connection closed by 14.169.141.135 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.169.141.135	2019-07-01 00:59:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.14.248
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14644
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.169.14.248.			IN	A

;; AUTHORITY SECTION:
.			420	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051001 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 11 04:23:42 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

248.14.169.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
248.14.169.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
198.108.67.86	attack	Fail2Ban Ban Triggered	2019-12-20 02:20:49
186.67.129.34	attack	...	2019-12-20 02:26:05
178.62.108.111	attack	SSH bruteforce	2019-12-20 02:28:56
35.226.26.122	attackbots	RDPBruteCAu	2019-12-20 02:34:55
125.227.223.41	attackbotsspam	Dec 19 09:35:22 TORMINT sshd\[32700\]: Invalid user swinton from 125.227.223.41 Dec 19 09:35:22 TORMINT sshd\[32700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.227.223.41 Dec 19 09:35:23 TORMINT sshd\[32700\]: Failed password for invalid user swinton from 125.227.223.41 port 46662 ssh2 ...	2019-12-20 02:25:05
68.183.86.76	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 64 - port: 1927 proto: TCP cat: Misc Attack	2019-12-20 02:26:59
218.253.193.235	attackspam	Dec 19 16:47:10 srv206 sshd[19771]: Invalid user khalijah from 218.253.193.235 Dec 19 16:47:10 srv206 sshd[19771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.253.193.235 Dec 19 16:47:10 srv206 sshd[19771]: Invalid user khalijah from 218.253.193.235 Dec 19 16:47:12 srv206 sshd[19771]: Failed password for invalid user khalijah from 218.253.193.235 port 34720 ssh2 ...	2019-12-20 02:37:51
80.213.194.56	attackspam	$f2bV_matches	2019-12-20 02:37:36
177.85.111.188	attackspambots	Dec 19 16:04:09 grey postfix/smtpd\[15111\]: NOQUEUE: reject: RCPT from unknown\[177.85.111.188\]: 554 5.7.1 Service unavailable\; Client host \[177.85.111.188\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[177.85.111.188\]\; from=\ to=\ proto=ESMTP helo=\<17785111188.mcinfor.com.br\> ...	2019-12-20 02:45:07
177.67.83.139	attackspambots	Dec 19 17:59:28 IngegnereFirenze sshd[8629]: Failed password for invalid user test from 177.67.83.139 port 53872 ssh2 ...	2019-12-20 02:22:22
222.186.173.154	attackspam	Dec 19 19:46:15 icinga sshd[28841]: Failed password for root from 222.186.173.154 port 24162 ssh2 Dec 19 19:46:38 icinga sshd[28841]: error: maximum authentication attempts exceeded for root from 222.186.173.154 port 24162 ssh2 [preauth] ...	2019-12-20 02:47:22
118.24.208.67	attackbots	$f2bV_matches	2019-12-20 02:39:00
54.36.241.186	attack	2019-12-18 16:07:03 server sshd[68704]: Failed password for invalid user atun from 54.36.241.186 port 56328 ssh2	2019-12-20 02:14:12
222.186.175.169	attack	SSH Brute Force, server-1 sshd[25831]: Failed password for root from 222.186.175.169 port 58360 ssh2	2019-12-20 02:15:37
116.108.64.43	attack	TCP Port: 25 invalid blocked dnsbl-sorbs also abuseat-org and barracuda (750)	2019-12-20 02:32:11

最近上报的IP列表

93.92.113.240	183.89.214.206	77.216.176.136	220.143.157.156
106.75.30.228	14.248.85.69	103.146.161.137	118.173.113.143
188.166.36.83	46.35.214.127	71.121.144.25	79.25.136.179
197.247.164.82	51.91.139.192	47.54.35.136	39.45.159.208
172.86.216.140	135.12.222.10	152.65.191.34	81.34.181.226