14.186.20.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Nov 30 01:10:18 penfold postfix/smtpd[2042]: warning: hostname static.vnpt.vn does not resolve to address 14.186.20.139 Nov 30 01:10:18 penfold postfix/smtpd[2042]: connect from unknown[14.186.20.139] Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.186.20.139	2019-11-30 22:10:05

类型

评论内容

时间

attackspam

Nov 30 01:10:18 penfold postfix/smtpd[2042]: warning: hostname static.vnpt.vn does not resolve to address 14.186.20.139
Nov 30 01:10:18 penfold postfix/smtpd[2042]: connect from unknown[14.186.20.139]
Nov x@x
Nov x@x
Nov x@x
Nov x@x
Nov x@x
Nov x@x
Nov x@x
Nov x@x
Nov x@x
Nov x@x
Nov x@x
Nov x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.186.20.139

2019-11-30 22:10:05

相同子网IP讨论:

IP	类型	评论内容	时间
14.186.20.11	attackbotsspam	Jun 14 23:27:05 hell sshd[16942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.186.20.11 Jun 14 23:27:07 hell sshd[16942]: Failed password for invalid user admin from 14.186.20.11 port 38122 ssh2 ...	2020-06-15 06:51:14
14.186.201.21	attack	2020-04-2514:10:591jSJe6-0001KP-16\<=info@whatsup2013.chH=\(localhost\)[222.188.101.254]:34267P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3087id=aae355060d260c04989d2b876094bea2ce1ec8@whatsup2013.chT="Yousparkmyheartandsoul."forqeslovelmp@gmail.comjamesdale1971@yahoo.com2020-04-2514:12:141jSJfJ-0001S3-DR\<=info@whatsup2013.chH=\(localhost\)[95.54.114.5]:43548P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3164id=acc317323912c73417e91f4c4793aa86a54f1fbad2@whatsup2013.chT="Tryingtofindmybesthalf"forpasammonasda@gmail.comguillermov61@yahoo.com2020-04-2514:10:321jSJdb-00016i-HV\<=info@whatsup2013.chH=\(localhost\)[171.242.125.95]:45228P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3188id=a8893f6c674c666ef2f741ed0afed4c854a005@whatsup2013.chT="Iwishtofeelyou"fortjgarner@live.comstandridgedavid317@gmail.com2020-04-2514:11:501jSJeu-0001Lq-8P\<=info@whatsup2013.chH=\(localhost\)[	2020-04-26 02:33:08
14.186.209.252	attackspambots	Unauthorized access to SSH at 20/Mar/2020:03:49:57 +0000. Received: (SSH-2.0-libssh2_1.8.0)	2020-03-20 20:46:45
14.186.205.228	attackbots	2020-03-0913:25:091jBHT2-0002Fw-PD\<=verena@rs-solution.chH=\(localhost\)[14.248.16.32]:44694P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3046id=8e85f44e456ebb486b9563303befd6fad933eb1451@rs-solution.chT="fromCorinatoblwash316"forblwash316@gmail.comokraykellan@gmail.com2020-03-0913:25:441jBHTb-0002Q9-Kr\<=verena@rs-solution.chH=\(localhost\)[14.186.205.228]:54394P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3107id=a70652010a21f4f8df9a2c7f8b4c464a7928f303@rs-solution.chT="fromCherisetosjangulo24"forsjangulo24@gmail.comgallardojesse269@gmail.com2020-03-0913:25:551jBHTn-0002RV-2c\<=verena@rs-solution.chH=\(localhost\)[117.5.240.94]:51153P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3078id=009127747f547e76eaef59f512e6ccd05b30ae@rs-solution.chT="fromDeedratonmaloney68"fornmaloney68@gmail.comlexissingleton89@gmail.com2020-03-0913:25:231jBHTF-0002NW-PN\<=verena@rs-soluti	2020-03-10 02:06:25
14.186.200.99	attackbots	2020-03-0913:29:421jBHXR-00030N-Mv\<=verena@rs-solution.chH=\(localhost\)[221.163.36.161]:40317P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3038id=2dd686d5def5202c0b4ef8ab5f98929ead706c2f@rs-solution.chT="NewlikefromMyrna"fordillbob280@gmail.comkenyattawilliams4810@gmail.com2020-03-0913:29:321jBHXH-0002ys-P4\<=verena@rs-solution.chH=\(localhost\)[123.20.162.70]:45075P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3052id=07d640131833e6eacd883e6d995e54586b7a9e16@rs-solution.chT="fromHarmontojmook5"forjmook5@hotmail.commichaelslaughter414@gmail.com2020-03-0913:30:251jBHY5-00036x-Se\<=verena@rs-solution.chH=\(localhost\)[41.72.4.119]:35877P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3071id=a65eba232803d62506f80e5d5682bb97b45e8be872@rs-solution.chT="YouhavenewlikefromCarla"forthomasmartinez@gmail.comsassysusie@hotmail.com2020-03-0913:29:121jBHWy-0002tB-3z\<=verena@rs-so	2020-03-09 22:12:21
14.186.201.63	attackbotsspam	2020-03-01 14:03:19 plain_virtual_exim authenticator failed for ([127.0.0.1]) [14.186.201.63]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.186.201.63	2020-03-02 02:25:45
14.186.204.134	attack	Attempts against SMTP/SSMTP	2020-02-24 18:25:16
14.186.209.69	attack	unauthorized connection attempt	2020-02-16 15:19:49
14.186.201.244	attackbotsspam	(sshd) Failed SSH login from 14.186.201.244 (VN/Vietnam/static.vnpt.vn): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 3 04:46:57 andromeda sshd[1260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.186.201.244 user=admin Feb 3 04:47:00 andromeda sshd[1260]: Failed password for admin from 14.186.201.244 port 42678 ssh2 Feb 3 04:47:05 andromeda sshd[1266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.186.201.244 user=admin	2020-02-03 19:13:55
14.186.207.196	attackspam	Email server abuse	2020-01-19 02:09:49
14.186.205.248	attackbotsspam	Brute force SMTP login attempts.	2020-01-10 14:28:05
14.186.204.75	attackspambots	Lines containing failures of 14.186.204.75 Dec 31 15:38:30 MAKserver05 sshd[21933]: Invalid user admin from 14.186.204.75 port 44574 Dec 31 15:38:30 MAKserver05 sshd[21933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.186.204.75 Dec 31 15:38:33 MAKserver05 sshd[21933]: Failed password for invalid user admin from 14.186.204.75 port 44574 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.186.204.75	2020-01-01 06:16:38
14.186.205.236	attackspambots	SpamReport	2019-12-01 15:29:16
14.186.204.180	attackspam	Tried sshing with brute force.	2019-11-04 14:50:34
14.186.200.156	attack	Chat Spam	2019-10-02 07:57:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.186.20.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63332
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.186.20.139.			IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019113000 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 22:09:58 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

139.20.186.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.20.186.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
159.89.50.15	attackspam	SSH Scan	2020-04-14 16:12:40
182.61.185.205	attackbotsspam	SSH Brute Force	2020-04-14 16:13:41
218.92.0.172	attack	Apr 14 07:36:06 localhost sshd[105434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Apr 14 07:36:08 localhost sshd[105434]: Failed password for root from 218.92.0.172 port 29234 ssh2 Apr 14 07:36:11 localhost sshd[105434]: Failed password for root from 218.92.0.172 port 29234 ssh2 Apr 14 07:36:06 localhost sshd[105434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Apr 14 07:36:08 localhost sshd[105434]: Failed password for root from 218.92.0.172 port 29234 ssh2 Apr 14 07:36:11 localhost sshd[105434]: Failed password for root from 218.92.0.172 port 29234 ssh2 Apr 14 07:36:06 localhost sshd[105434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Apr 14 07:36:08 localhost sshd[105434]: Failed password for root from 218.92.0.172 port 29234 ssh2 Apr 14 07:36:11 localhost sshd[105434]: Failed pa ...	2020-04-14 15:38:29
14.232.160.213	attackbots	Apr 14 09:18:42 v22019038103785759 sshd\[17054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.160.213 user=root Apr 14 09:18:44 v22019038103785759 sshd\[17054\]: Failed password for root from 14.232.160.213 port 34704 ssh2 Apr 14 09:23:58 v22019038103785759 sshd\[17479\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.160.213 user=root Apr 14 09:24:00 v22019038103785759 sshd\[17479\]: Failed password for root from 14.232.160.213 port 48280 ssh2 Apr 14 09:27:16 v22019038103785759 sshd\[17717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.160.213 user=root ...	2020-04-14 15:34:18
95.135.110.185	attack	firewall-block, port(s): 9530/tcp	2020-04-14 16:15:18
51.75.248.241	attackbots	Apr 14 12:32:18 webhost01 sshd[2420]: Failed password for root from 51.75.248.241 port 41394 ssh2 ...	2020-04-14 15:43:43
180.166.141.58	attackbotsspam	Apr 14 09:34:56 debian-2gb-nbg1-2 kernel: \[9108687.220033\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.166.141.58 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=237 ID=55103 PROTO=TCP SPT=50029 DPT=46332 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-14 15:53:58
162.243.131.67	attackspambots	Port 49152 scan denied	2020-04-14 16:10:23
94.191.50.57	attack	2020-04-14T08:09:58.457454librenms sshd[24203]: Failed password for invalid user administrator from 94.191.50.57 port 43744 ssh2 2020-04-14T08:17:46.434662librenms sshd[25089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.50.57 user=root 2020-04-14T08:17:48.437961librenms sshd[25089]: Failed password for root from 94.191.50.57 port 38636 ssh2 ...	2020-04-14 15:28:25
211.180.175.198	attackspambots	Apr 14 05:50:14 [host] sshd[27760]: Invalid user m Apr 14 05:50:14 [host] sshd[27760]: pam_unix(sshd: Apr 14 05:50:16 [host] sshd[27760]: Failed passwor	2020-04-14 15:59:32
185.176.27.246	attack	04/14/2020-03:50:21.581900 185.176.27.246 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-14 16:09:54
46.38.145.179	attack	2020-04-14T08:44:24.118530www postfix/smtpd[7804]: warning: unknown[46.38.145.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-04-14T08:44:32.031302www postfix/smtpd[7804]: warning: unknown[46.38.145.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-04-14T08:44:44.428687www postfix/smtpd[7804]: warning: unknown[46.38.145.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-14 16:08:00
111.199.184.92	attack	04/13/2020-23:50:23.381945 111.199.184.92 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-04-14 16:00:35
81.30.196.250	attack	20/4/13@23:50:10: FAIL: Alarm-Network address from=81.30.196.250 ...	2020-04-14 16:14:34
43.246.162.187	attackspam	Icarus honeypot on github	2020-04-14 16:11:20

最近上报的IP列表

14.248.71.135	14.236.185.62	41.41.185.163	39.42.106.83
95.152.21.124	179.145.191.56	94.25.60.244	38.121.63.198
180.152.140.181	218.37.15.181	125.26.96.207	159.203.201.200
151.45.127.94	45.82.32.103	104.211.218.235	152.32.187.177
125.214.52.123	222.240.152.230	12.31.251.16	167.160.160.145