14.169.255.42 - IPInfo

基本信息:

城市(city): Ho Chi Minh City

省份(region): Ho Chi Minh

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jul 4 23:30:34 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:34 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:37 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL PLAIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL LOGIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL CRAM-MD5 authentication failed: authentication failure Jul 4 23:30:39 offspring postfix/smtpd[11628]: disconnect from unknown[14.169.255.42] Jul 4 23:30:39 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:39 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:42 offspring postfix/smtpd[11628]: warning: unknown[1........ -------------------------------	2020-07-05 07:19:00

类型

评论内容

时间

attack

Jul  4 23:30:34 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42
Jul  4 23:30:34 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42]
Jul  4 23:30:37 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL PLAIN authentication failed: authentication failure
Jul  4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL LOGIN authentication failed: authentication failure
Jul  4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL CRAM-MD5 authentication failed: authentication failure
Jul  4 23:30:39 offspring postfix/smtpd[11628]: disconnect from unknown[14.169.255.42]
Jul  4 23:30:39 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42
Jul  4 23:30:39 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42]
Jul  4 23:30:42 offspring postfix/smtpd[11628]: warning: unknown[1........
-------------------------------

2020-07-05 07:19:00

相同子网IP讨论:

IP	类型	评论内容	时间
14.169.255.216	attackbots	smtp probe/invalid login attempt	2020-01-02 13:21:23
14.169.255.16	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/14.169.255.16/ VN - 1H : (45) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : VN NAME ASN : ASN45899 IP : 14.169.255.16 CIDR : 14.169.224.0/19 PREFIX COUNT : 2411 UNIQUE IP COUNT : 7209216 ATTACKS DETECTED ASN45899 : 1H - 9 3H - 10 6H - 12 12H - 16 24H - 24 DateTime : 2019-11-12 23:36:42 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-13 06:51:33

类型

评论内容

时间

14.169.255.216

attackbots

smtp probe/invalid login attempt

2020-01-02 13:21:23

14.169.255.16

attack

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/14.169.255.16/ 
 
 VN - 1H : (45)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : VN 
 NAME ASN : ASN45899 
 
 IP : 14.169.255.16 
 
 CIDR : 14.169.224.0/19 
 
 PREFIX COUNT : 2411 
 
 UNIQUE IP COUNT : 7209216 
 
 
 ATTACKS DETECTED ASN45899 :  
  1H - 9 
  3H - 10 
  6H - 12 
 12H - 16 
 24H - 24 
 
 DateTime : 2019-11-12 23:36:42 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-11-13 06:51:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.255.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26832
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.169.255.42.			IN	A

;; AUTHORITY SECTION:
.			545	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070401 1800 900 604800 86400

;; Query time: 267 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 05 07:18:57 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

42.255.169.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.255.169.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.195.24.120	attack	2020-06-18T06:56:30.592510sd-86998 sshd[22240]: Invalid user wizard from 185.195.24.120 port 54471 2020-06-18T06:56:30.597803sd-86998 sshd[22240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.195.24.120 2020-06-18T06:56:30.592510sd-86998 sshd[22240]: Invalid user wizard from 185.195.24.120 port 54471 2020-06-18T06:56:32.865851sd-86998 sshd[22240]: Failed password for invalid user wizard from 185.195.24.120 port 54471 ssh2 2020-06-18T07:02:23.683303sd-86998 sshd[23144]: Invalid user wwz from 185.195.24.120 port 54398 ...	2020-06-18 14:08:11
92.63.196.3	attackbotsspam	Jun 18 08:04:42 debian-2gb-nbg1-2 kernel: \[14718977.566629\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.63.196.3 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=11185 PROTO=TCP SPT=47615 DPT=3370 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-18 14:15:58
84.51.52.138	attackbotsspam	20/6/18@01:02:11: FAIL: Alarm-Network address from=84.51.52.138 ...	2020-06-18 13:58:07
49.248.215.5	attack	Invalid user ann from 49.248.215.5 port 58744	2020-06-18 13:43:39
85.209.0.237	attackbotsspam	Automatic report - Port Scan	2020-06-18 13:43:11
138.19.115.47	attackbotsspam	SSH Brute Force	2020-06-18 13:59:24
122.51.241.109	attackbotsspam	Jun 18 08:11:53 lukav-desktop sshd\[17443\]: Invalid user support from 122.51.241.109 Jun 18 08:11:53 lukav-desktop sshd\[17443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.241.109 Jun 18 08:11:55 lukav-desktop sshd\[17443\]: Failed password for invalid user support from 122.51.241.109 port 42812 ssh2 Jun 18 08:16:32 lukav-desktop sshd\[9851\]: Invalid user sinus1 from 122.51.241.109 Jun 18 08:16:32 lukav-desktop sshd\[9851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.241.109	2020-06-18 13:53:56
185.86.164.107	attackspambots	Website administration hacking try	2020-06-18 14:13:20
165.227.179.138	attackspambots	2020-06-18T05:57:10.783114shield sshd\[1904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 user=root 2020-06-18T05:57:12.424600shield sshd\[1904\]: Failed password for root from 165.227.179.138 port 46488 ssh2 2020-06-18T06:00:17.842510shield sshd\[2518\]: Invalid user mhq from 165.227.179.138 port 46136 2020-06-18T06:00:17.846206shield sshd\[2518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 2020-06-18T06:00:19.492658shield sshd\[2518\]: Failed password for invalid user mhq from 165.227.179.138 port 46136 ssh2	2020-06-18 14:18:38
219.144.67.60	attack	Jun 18 07:55:48 lukav-desktop sshd\[31730\]: Invalid user wwwroot from 219.144.67.60 Jun 18 07:55:48 lukav-desktop sshd\[31730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.144.67.60 Jun 18 07:55:50 lukav-desktop sshd\[31730\]: Failed password for invalid user wwwroot from 219.144.67.60 port 36490 ssh2 Jun 18 07:59:33 lukav-desktop sshd\[31794\]: Invalid user vianney from 219.144.67.60 Jun 18 07:59:33 lukav-desktop sshd\[31794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.144.67.60	2020-06-18 13:50:17
51.38.129.120	attackbotsspam	2020-06-18T06:55:19.604761vps751288.ovh.net sshd\[18705\]: Invalid user backup from 51.38.129.120 port 33406 2020-06-18T06:55:19.614495vps751288.ovh.net sshd\[18705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.ip-51-38-129.eu 2020-06-18T06:55:21.806512vps751288.ovh.net sshd\[18705\]: Failed password for invalid user backup from 51.38.129.120 port 33406 ssh2 2020-06-18T06:58:37.243775vps751288.ovh.net sshd\[18770\]: Invalid user sysadmin from 51.38.129.120 port 60678 2020-06-18T06:58:37.255371vps751288.ovh.net sshd\[18770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.ip-51-38-129.eu	2020-06-18 13:52:54
206.189.187.13	attackbotsspam	windhundgang.de 206.189.187.13 [18/Jun/2020:07:20:31 +0200] "POST /wp-login.php HTTP/1.1" 200 8455 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" windhundgang.de 206.189.187.13 [18/Jun/2020:07:20:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4185 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-18 14:12:23
49.232.17.36	attackspambots	Jun 18 07:33:28 OPSO sshd\[2487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.17.36 user=root Jun 18 07:33:30 OPSO sshd\[2487\]: Failed password for root from 49.232.17.36 port 54524 ssh2 Jun 18 07:37:14 OPSO sshd\[3392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.17.36 user=root Jun 18 07:37:15 OPSO sshd\[3392\]: Failed password for root from 49.232.17.36 port 38054 ssh2 Jun 18 07:41:00 OPSO sshd\[4083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.17.36 user=root	2020-06-18 14:08:31
80.82.64.213	attackspam	Attempt to log in with non-existing username: admin	2020-06-18 13:42:01
121.147.156.9	attackbotsspam	Invalid user fx from 121.147.156.9 port 44172	2020-06-18 13:57:42

最近上报的IP列表

177.158.114.153	64.116.12.90	208.93.252.138	177.228.105.195
80.75.152.162	76.235.62.46	132.22.236.123	176.76.26.58
217.227.40.232	161.116.8.91	75.246.106.48	93.151.195.198
220.23.147.4	151.41.212.177	75.162.4.38	189.148.156.181
171.83.4.159	187.84.3.182	95.234.188.137	37.98.179.90