14.169.191.39 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt detected from IP address 14.169.191.39 to port 80 [J]	2020-01-20 18:16:58

相同子网IP讨论:

IP	类型	评论内容	时间
14.169.191.95	attack	2020-04-20 17:18:24 login_virtual_exim authenticator failed for ([127.0.0.1]) [14.169.191.95]: 535 Incorrect authentication data (set_id=demo) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.169.191.95	2020-04-21 02:36:37
14.169.191.244	attackspam	Invalid user admin from 14.169.191.244 port 32897	2020-04-20 23:38:10
14.169.191.182	attackbots	2020-03-1304:50:001jCbKh-0002yq-Ur\<=info@whatsup2013.chH=\(localhost\)[14.169.191.182]:54562P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2359id=EAEF590A01D5FB489491D86094B8A83E@whatsup2013.chT="fromDarya"foralex7658@gmail.compropussieatn@gmail.com2020-03-1304:48:391jCbJP-0002tB-IO\<=info@whatsup2013.chH=\(localhost\)[89.232.34.13]:50538P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2301id=7174C2919A4E60D30F0A43FB0FC48629@whatsup2013.chT="fromDarya"formixitmac@gmail.comcatcity2010@gmail.com2020-03-1304:47:281jCbIF-0002pI-UP\<=info@whatsup2013.chH=\(localhost\)[113.173.244.90]:60466P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2423id=7F7ACC9F94406EDD01044DF501058670@whatsup2013.chT="fromDarya"formlindzid@gmail.comiamnoahprather@gmail.com2020-03-1304:48:551jCbJa-0002sZ-Tp\<=info@whatsup2013.chH=\(localhost\)[113.173.95.74]:37376P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384	2020-03-13 17:57:20
14.169.191.219	attackbots	Brute-force attempt banned	2020-01-04 02:48:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.191.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61950
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.169.191.39.			IN	A

;; AUTHORITY SECTION:
.			424	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012000 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 20 18:16:55 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

39.191.169.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
39.191.169.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
67.248.141.225	attackbotsspam	Sep 8 11:39:21 MK-Soft-VM5 sshd\[32373\]: Invalid user payme from 67.248.141.225 port 45902 Sep 8 11:39:21 MK-Soft-VM5 sshd\[32373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.248.141.225 Sep 8 11:39:23 MK-Soft-VM5 sshd\[32373\]: Failed password for invalid user payme from 67.248.141.225 port 45902 ssh2 ...	2019-09-08 20:21:38
51.255.162.65	attackspambots	Sep 8 12:43:31 localhost sshd\[76314\]: Invalid user ts from 51.255.162.65 port 37097 Sep 8 12:43:31 localhost sshd\[76314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.162.65 Sep 8 12:43:33 localhost sshd\[76314\]: Failed password for invalid user ts from 51.255.162.65 port 37097 ssh2 Sep 8 12:48:03 localhost sshd\[76493\]: Invalid user test from 51.255.162.65 port 58950 Sep 8 12:48:03 localhost sshd\[76493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.162.65 ...	2019-09-08 21:00:16
92.118.37.74	attackbotsspam	Sep 8 14:24:11 mc1 kernel: \[496027.363335\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.74 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=34902 PROTO=TCP SPT=46525 DPT=36952 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 8 14:27:10 mc1 kernel: \[496206.065793\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.74 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=16589 PROTO=TCP SPT=46525 DPT=21320 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 8 14:28:53 mc1 kernel: \[496309.071694\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.74 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=46505 PROTO=TCP SPT=46525 DPT=53921 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-09-08 20:30:39
138.68.208.149	attackbots	992/tcp 465/tcp 9042/tcp... [2019-09-06/07]5pkt,5pt.(tcp)	2019-09-08 20:47:03
192.241.211.215	attack	F2B jail: sshd. Time: 2019-09-08 13:52:13, Reported by: VKReport	2019-09-08 20:09:41
178.63.13.154	attack	20 attempts against mh-misbehave-ban on pluto.magehost.pro	2019-09-08 20:48:24
62.210.172.23	attack	Sep 8 14:21:49 OPSO sshd\[32228\]: Invalid user a1b1c3 from 62.210.172.23 port 47822 Sep 8 14:21:49 OPSO sshd\[32228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.172.23 Sep 8 14:21:51 OPSO sshd\[32228\]: Failed password for invalid user a1b1c3 from 62.210.172.23 port 47822 ssh2 Sep 8 14:25:30 OPSO sshd\[32632\]: Invalid user student1 from 62.210.172.23 port 34072 Sep 8 14:25:30 OPSO sshd\[32632\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.172.23	2019-09-08 20:49:20
104.229.177.64	attack	TCP Port: 25 _ invalid blocked dnsbl-sorbs abuseat-org _ _ _ _ (766)	2019-09-08 20:31:40
112.85.42.188	attackspam	Sep 8 07:14:01 debian sshd[7533]: Unable to negotiate with 112.85.42.188 port 16163: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 8 07:20:36 debian sshd[7949]: Unable to negotiate with 112.85.42.188 port 46573: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] ...	2019-09-08 20:59:40
60.28.253.182	attackspam	Sep 8 13:52:23 meumeu sshd[1178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.28.253.182 Sep 8 13:52:24 meumeu sshd[1178]: Failed password for invalid user ftptest1 from 60.28.253.182 port 56476 ssh2 Sep 8 13:55:55 meumeu sshd[1679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.28.253.182 ...	2019-09-08 20:31:08
181.115.140.79	attackbots	TCP Port: 25 _ invalid blocked dnsbl-sorbs abuseat-org _ _ _ _ (757)	2019-09-08 20:53:36
119.148.35.142	attack	445/tcp 445/tcp 445/tcp [2019-09-02/08]3pkt	2019-09-08 20:40:03
208.90.180.55	attack	Sep 8 10:13:32 tuxlinux sshd[55426]: Invalid user felipe from 208.90.180.55 port 38478 Sep 8 10:13:32 tuxlinux sshd[55426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.90.180.55 Sep 8 10:13:32 tuxlinux sshd[55426]: Invalid user felipe from 208.90.180.55 port 38478 Sep 8 10:13:32 tuxlinux sshd[55426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.90.180.55 Sep 8 10:13:32 tuxlinux sshd[55426]: Invalid user felipe from 208.90.180.55 port 38478 Sep 8 10:13:32 tuxlinux sshd[55426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.90.180.55 Sep 8 10:13:34 tuxlinux sshd[55426]: Failed password for invalid user felipe from 208.90.180.55 port 38478 ssh2 ...	2019-09-08 20:58:22
123.207.233.79	attackbots	Sep 8 01:54:39 lcprod sshd\[19975\]: Invalid user 12345 from 123.207.233.79 Sep 8 01:54:39 lcprod sshd\[19975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.233.79 Sep 8 01:54:41 lcprod sshd\[19975\]: Failed password for invalid user 12345 from 123.207.233.79 port 46804 ssh2 Sep 8 01:57:53 lcprod sshd\[20264\]: Invalid user 123 from 123.207.233.79 Sep 8 01:57:53 lcprod sshd\[20264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.233.79	2019-09-08 20:57:36
121.201.17.131	attackbotsspam	23/tcp 23/tcp [2019-09-06/08]2pkt	2019-09-08 20:27:27

最近上报的IP列表

81.201.201.163	78.189.116.213	78.5.26.41	77.159.91.44
67.177.206.166	60.208.166.240	60.48.82.221	46.1.24.148
45.185.167.82	41.211.122.70	36.77.92.237	5.202.77.121
2.84.115.93	1.53.19.239	213.81.159.76	204.48.25.195
200.161.137.105	200.119.222.134	200.53.20.108	194.8.147.60